Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa
File: 07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa (raw, json)
Hash identifier: xaoHvNahW0gOrLM5rlp0yf8J47BiBCSCHhvbQtWTLSU=
Subject key identifier: 58:A0:3B:86:39:61:1F:8A:15:C7:6B:C5:F4:D2:31:43:E6:9C:0F:E7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 28C3A3E060A2528DBAE824F6A1DE28788B3FB841
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa
Signing time: Tue 17 Feb 2026 03:00:48 +0000
ROA not before: Tue 17 Feb 2026 03:00:48 +0000
ROA not after: Mon 18 May 2026 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.176.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:c3:a3:e0:60:a2:52:8d:ba:e8:24:f6:a1:de:28:78:8b:3f:b8:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Feb 17 03:00:48 2026 GMT
Not After : May 18 23:59:59 2026 GMT
Subject: serialNumber=145966c4f14083f50cb79fc5b2e4aaa0706fdf71fd4a3ce2d1c8e81363d2f206, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ee:aa:0b:dc:a0:35:8a:8e:e1:c2:cd:b8:b2:
5e:4f:c1:9d:1d:52:6c:fc:ad:37:cd:c7:ec:21:6d:
71:6f:76:6d:bd:98:37:e0:1d:03:af:81:ce:99:ac:
5b:b2:f0:8a:36:d5:28:74:90:e2:90:c4:93:1c:05:
9e:31:47:e4:45:9a:fb:3a:88:00:5a:19:aa:35:cf:
98:dc:86:3e:8e:27:de:66:29:bc:c3:e7:4f:03:0f:
42:c3:52:3d:82:c9:b8:b8:04:7f:fd:6c:7d:3e:f0:
62:4d:aa:d8:d2:25:eb:bb:b9:bf:09:67:89:7f:bc:
ec:da:6e:77:95:ff:d6:fb:16:66:32:6a:5b:49:f2:
6c:3d:c8:52:ab:84:66:61:43:c5:f3:ae:70:f2:23:
ab:1e:c6:c6:50:c1:d9:a1:b2:e9:12:02:a1:a1:22:
9a:13:3f:f4:2e:0e:e6:7d:3e:e2:25:2f:94:97:a7:
e3:7c:d5:f1:7a:c3:20:a3:f3:63:5b:22:bf:18:61:
6a:65:a4:1d:51:31:cb:96:8e:5b:c2:2f:39:fb:65:
af:b1:98:18:a8:9c:7b:b8:3e:28:b4:2f:f9:52:88:
be:ae:c8:d4:4a:84:cf:b1:69:5a:00:f0:60:0c:2f:
a2:89:74:18:21:5a:7d:e3:d4:14:4c:e8:9a:49:81:
b1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A0:3B:86:39:61:1F:8A:15:C7:6B:C5:F4:D2:31:43:E6:9C:0F:E7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.176.0/20
Signature Algorithm: sha256WithRSAEncryption
13:f4:97:92:6e:1e:4d:b2:c5:0b:ac:c2:30:0a:d8:fa:80:9a:
f4:44:fe:f0:84:bd:91:35:86:01:bc:6f:93:d7:21:43:a6:f6:
d0:af:e1:5c:f0:fc:5e:22:80:c6:1d:28:b7:77:3f:45:be:86:
5b:46:cc:7b:35:87:b5:06:49:ec:27:80:3b:66:85:24:41:4c:
09:d4:77:87:4e:02:b7:71:6c:83:80:60:e2:db:cb:e9:3b:03:
23:9e:a8:e8:a9:c0:fe:55:57:2e:d0:95:da:56:b4:cd:4d:3a:
76:64:47:74:91:af:ab:a5:03:33:ce:ed:77:7b:5c:3e:d1:f7:
5b:8b:1b:62:ad:1f:17:2d:ae:5b:9d:91:44:f7:32:98:8a:fd:
46:2e:9d:18:60:21:c5:fa:23:57:69:a9:52:d0:92:39:00:c3:
06:20:bd:3b:6a:07:9b:65:3f:fd:dd:e8:7d:d7:43:0c:a7:c6:
66:f1:90:ee:16:40:c9:a0:f8:ce:68:54:67:a1:62:b9:3e:24:
c4:18:8c:69:75:02:fb:8a:3c:61:69:83:8e:39:cb:e4:fa:fa:
3c:91:6e:d4:85:a1:30:74:d6:ea:fd:56:2d:77:09:e1:8c:45:
f8:81:34:2c:c2:20:5d:23:a0:3b:c4:57:db:8a:66:ae:43:e4:
14:df:34:83
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUKMOj4GCiUo266CT2od4oeIs/uEEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNjAyMTcwMzAwNDhaFw0yNjA1MTgyMzU5NTlaMHoxSTBHBgNV
BAUTQDE0NTk2NmM0ZjE0MDgzZjUwY2I3OWZjNWIyZTRhYWEwNzA2ZmRmNzFmZDRh
M2NlMmQxYzhlODEzNjNkMmYyMDYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAPXuqgvcoDWKjuHCzbiyXk/BnR1SbPytN83H7CFtcW92bb2YN+AdA6+Bzpms
W7LwijbVKHSQ4pDEkxwFnjFH5EWa+zqIAFoZqjXPmNyGPo4n3mYpvMPnTwMPQsNS
PYLJuLgEf/1sfT7wYk2q2NIl67u5vwlniX+87Npud5X/1vsWZjJqW0nybD3IUquE
ZmFDxfOucPIjqx7GxlDB2aGy6RICoaEimhM/9C4O5n0+4iUvlJen43zV8XrDIKPz
Y1sivxhhamWkHVExy5aOW8IvOftlr7GYGKice7g+KLQv+VKIvq7I1EqEz7FpWgDw
YAwvool0GCFafePUFEzomkmBsT0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRYoDuG
OWEfihXHa8X00jFD5pwP5zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MDcxNDRmMzgtZWQ0Ni00MGJjLWEzZWQtMzA3ODVjMGNjM2UyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBC6JsDAN
BgkqhkiG9w0BAQsFAAOCAQEAE/SXkm4eTbLFC6zCMArY+oCa9ET+8IS9kTWGAbxv
k9chQ6b20K/hXPD8XiKAxh0ot3c/Rb6GW0bMezWHtQZJ7CeAO2aFJEFMCdR3h04C
t3Fsg4Bg4tvL6TsDI56o6KnA/lVXLtCV2la0zU06dmRHdJGvq6UDM87td3tcPtH3
W4sbYq0fFy2uW52RRPcymIr9Ri6dGGAhxfojV2mpUtCSOQDDBiC9O2oHm2U//d3o
fddDDKfGZvGQ7hZAyaD4zmhUZ6FiuT4kxBiMaXUC+4o8YWmDjjnL5Pr6PJFu1IWh
MHTW6v1WLXcJ4YxF+IE0LMIgXSOgO8RX24pmrkPkFN80gw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:38:22 2026 by rpki-client