Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46b220b9-837f-4174-97e6-c711958273ea.roa
File: 46b220b9-837f-4174-97e6-c711958273ea.roa (raw, json)
Hash identifier: XM9XPJBLyNB988jQ8ZwPLMiDuq8faUEcuXXcm5t/XXc=
Subject key identifier: 9C:1C:0C:75:1B:EB:EA:02:C8:38:C4:A2:6A:CA:79:2A:85:3E:45:2F
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 572A3B1F53D5B87157277A575047BBCA567B59CD
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46b220b9-837f-4174-97e6-c711958273ea.roa
Signing time: Tue 19 May 2026 05:50:37 +0000
ROA not before: Tue 19 May 2026 05:50:37 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 51.78.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:2a:3b:1f:53:d5:b8:71:57:27:7a:57:50:47:bb:ca:56:7b:59:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 19 05:50:37 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=ce5cf9e01ef1229081d43af7b109bb85da80cf3ff790857a73f0a6e3d2334c7d, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:89:14:db:04:2a:d1:aa:b5:cd:7a:40:ae:cb:
d8:6b:95:84:3c:65:e4:5c:6d:3f:2a:48:ab:1f:bb:
69:05:21:ff:ea:33:56:fc:35:e3:bd:45:1e:8d:e0:
a6:8f:c4:b3:2c:43:65:69:e3:77:5d:ee:2a:db:02:
d0:f1:ef:b3:3a:bb:3a:8b:f8:e4:a0:19:1d:20:2a:
fe:15:4f:a6:0a:c4:6e:60:9d:60:e6:44:03:79:30:
13:e1:5b:73:00:a1:d3:29:d8:fa:c9:94:9a:5c:ed:
b2:ec:c3:6c:75:9b:e3:75:b1:58:4d:0d:67:be:54:
1e:a8:9c:1e:7e:39:fd:19:2e:9a:e2:17:7b:f7:98:
f7:d6:d4:99:52:1a:58:20:fa:90:f0:24:49:d3:6e:
4b:89:ca:5a:5a:7c:b3:c9:6f:c8:e5:8b:e9:39:be:
29:a5:e4:28:18:bf:76:07:1f:1e:d7:00:ba:13:a4:
58:fc:b1:eb:4a:6a:a2:68:a3:9d:28:f1:87:fe:4b:
db:0d:2a:8e:80:e6:be:56:c1:28:40:e9:1e:6c:dc:
33:e6:dc:9b:5f:e2:7b:e5:26:3a:3e:13:a4:ed:ab:
a1:ed:81:e4:8f:6e:73:1b:5f:9a:bb:4d:12:da:3e:
4a:4e:05:70:dc:a8:b8:08:69:8c:15:aa:1c:fc:d1:
eb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1C:0C:75:1B:EB:EA:02:C8:38:C4:A2:6A:CA:79:2A:85:3E:45:2F
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46b220b9-837f-4174-97e6-c711958273ea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.78.0.0/16
Signature Algorithm: sha256WithRSAEncryption
66:6c:32:6a:68:04:10:f9:8f:18:84:df:9b:46:a2:97:a4:da:
11:77:82:0f:47:9e:a1:d5:07:77:4a:b4:b4:9d:1c:d6:c5:97:
e7:bf:5e:74:2f:5b:bd:50:80:01:4a:a2:81:54:23:d0:f3:8b:
07:3a:97:12:01:d9:40:5c:3b:1e:4d:47:4f:c4:45:8a:b2:9b:
be:a1:c6:62:01:0f:0e:7e:cd:5d:3f:7e:57:20:47:03:32:22:
cb:7b:40:81:d3:64:85:16:bf:b4:a2:37:88:f3:ba:cd:d3:db:
54:c6:a6:32:7e:08:98:82:6a:0e:a4:ff:5b:11:e6:dd:6b:32:
3f:82:90:a9:17:e9:34:84:56:2a:d7:ce:a2:06:ca:08:21:33:
49:c3:b7:32:48:c4:33:4b:c0:b6:ba:da:bb:d7:e1:56:82:46:
51:90:f8:12:9a:81:64:16:e4:eb:ea:f4:7f:9c:e7:fd:80:ef:
a4:5c:0b:59:18:4e:ff:3d:3b:53:a2:63:c8:0d:18:95:76:f0:
c5:4b:8c:a7:0b:cb:c4:7c:c8:7b:54:99:d0:ec:df:a0:c8:c9:
51:ec:ec:4b:0b:3d:01:9f:d1:7a:f3:c8:65:31:09:19:2a:4d:
d8:3f:90:38:64:bb:ab:47:c2:74:aa:93:f0:24:12:b6:a5:2b:
78:bf:0b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:01:15 2026 by rpki-client