Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e9b59cd2-43ef-4533-a5a5-5892471ab64c.roa
File: e9b59cd2-43ef-4533-a5a5-5892471ab64c.roa (raw, json)
Hash identifier: F7Oeyw1WMZXvrYKi8kduymVREGsYAPjLOuTRhW0qUfg=
Subject key identifier: 61:F2:54:06:A5:52:94:49:2E:8D:33:8C:3F:3F:8A:65:C5:97:C4:E1
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 51C82C0EBD85DCC412DCD571D1114582890FC5CD
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e9b59cd2-43ef-4533-a5a5-5892471ab64c.roa
Signing time: Tue 19 May 2026 05:50:33 +0000
ROA not before: Tue 19 May 2026 05:50:33 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 14618
IP address blocks: 51.204.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:c8:2c:0e:bd:85:dc:c4:12:dc:d5:71:d1:11:45:82:89:0f:c5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 19 05:50:33 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=728ae95134fbf1012d0aa2e90371dad1144b428774337e177d001a77d55209a0, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:c8:bb:5a:1c:22:39:17:ea:e0:51:cf:7d:
c6:52:16:e3:f5:d8:2c:4b:56:83:9c:97:47:a9:bc:
b8:b1:7e:15:a1:42:2a:0f:63:33:0f:e2:3c:f9:2a:
69:ce:1d:df:4d:8b:d7:ca:a8:ee:ec:d5:b4:2b:d5:
f8:7d:db:87:cc:8b:e9:77:12:d4:0f:c4:28:8c:c5:
a4:3e:2e:9f:73:db:15:cb:54:8a:b2:fc:eb:cf:c4:
ac:2e:4c:74:dc:f6:d5:d7:a5:ea:39:92:1f:a2:e5:
f9:ee:4b:c4:20:ed:55:cf:b1:cf:a8:49:c7:90:b4:
bb:bc:8f:e6:b4:f8:6c:81:26:9f:21:3e:5f:78:67:
88:5f:bd:f0:8e:04:6a:3d:8f:c7:ad:56:f1:78:a6:
ce:2d:07:0b:a1:8d:c6:dc:f9:1f:8c:e9:f5:25:9b:
71:6d:d6:05:80:69:3f:a8:45:b9:9d:59:a2:1a:2c:
25:47:35:6d:4b:e5:93:8c:ac:cb:9c:03:0e:74:7f:
37:9c:ec:b3:b8:57:53:50:a2:5f:13:b7:03:dc:e9:
cd:ab:74:6d:06:49:f0:68:22:a7:40:f9:3c:f0:92:
db:bd:b6:65:db:11:34:85:74:45:4b:23:16:f9:bc:
b2:84:96:42:5c:86:14:34:ab:7a:2a:d0:34:fe:98:
65:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F2:54:06:A5:52:94:49:2E:8D:33:8C:3F:3F:8A:65:C5:97:C4:E1
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e9b59cd2-43ef-4533-a5a5-5892471ab64c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c8:0c:4a:13:41:e0:1a:fe:82:cf:ec:cd:f5:54:be:f9:44:a2:
4c:36:81:d6:1c:2f:77:ed:0d:88:86:b8:b9:25:f4:38:ed:a0:
4b:af:84:fa:0e:47:b7:8a:2f:fe:97:98:82:e9:c5:80:7b:1a:
6f:04:80:72:e5:cb:e7:b8:af:24:27:05:6d:42:10:45:da:08:
35:f8:ac:0a:a5:8b:fd:c1:23:00:8b:e5:df:2d:b7:70:cd:5a:
cb:c3:22:8f:65:9c:d8:21:63:40:5b:47:d0:b3:34:29:45:a0:
98:a6:3a:1a:94:1b:d9:91:00:38:b8:8e:1a:c6:81:cb:ee:63:
cc:9a:fd:53:02:17:6c:42:85:c0:b8:38:b7:63:ef:ae:93:10:
38:5f:e4:a0:97:41:0f:81:9e:b1:26:d5:ab:24:be:9e:71:31:
0a:a3:e9:d6:fe:17:36:79:f4:60:1c:3a:07:71:20:42:32:19:
39:a5:3e:db:59:58:b3:3c:de:9d:bb:c2:a7:77:cb:ab:bf:55:
f0:e0:f7:7d:65:bd:23:33:5d:c0:f0:d3:35:32:bf:59:0e:65:
7c:d6:d7:ad:d2:76:c6:9b:db:4f:e2:9a:14:16:b6:26:38:16:
21:4c:95:a6:43:e9:31:1e:22:1c:08:4b:33:ba:71:17:34:35:
27:19:fc:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:39:15 2026 by rpki-client