Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa
File: 113e55fd-9531-4700-bcdc-5abe9a806b41.roa (raw, json)
Hash identifier: J/218OzuHp59gYNeyjMZNo/BGFlxKeUEEd0NaRJPIac=
Subject key identifier: 36:12:42:F9:27:A5:CF:6C:70:5E:CF:8B:F9:19:3F:AB:36:59:FD:59
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 09DB5765E3FA91BEB41E378B6DA981E08F82262B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa
Signing time: Sat 16 May 2026 00:40:03 +0000
ROA not before: Sat 16 May 2026 00:40:03 +0000
ROA not after: Fri 14 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d076:800::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:db:57:65:e3:fa:91:be:b4:1e:37:8b:6d:a9:81:e0:8f:82:26:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 16 00:40:03 2026 GMT
Not After : Aug 14 23:59:59 2026 GMT
Subject: serialNumber=05f0f976ecb63ccd18a98301cda96e845c61d0968f1963f751a2a5d2dd60a6af, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cc:23:6e:2d:ef:fd:49:50:1f:0a:5f:d6:17:
99:54:79:18:7c:d6:61:2f:9a:80:a6:36:50:a8:3c:
8e:d2:26:21:1e:2e:de:63:bd:82:11:8b:60:78:40:
d6:fc:b9:3d:c2:37:76:9e:33:47:a2:13:84:99:1f:
78:5d:4e:29:8d:51:2c:1a:48:89:c3:88:5f:38:9d:
c4:d6:fd:6d:4a:d7:d3:5a:f7:8b:7b:8c:b4:3e:9f:
de:94:77:c8:be:21:92:4f:12:52:01:e7:1d:b4:db:
2c:b4:b6:e6:98:f6:2b:40:50:56:44:0a:70:f5:7d:
6e:90:1e:da:7d:56:0f:8f:ce:59:04:97:5a:a2:f6:
8d:d0:00:28:74:aa:bb:ca:15:2c:f0:c1:c7:1d:ce:
89:bc:fb:97:65:6b:e8:67:61:0f:23:e1:a1:d9:27:
f5:b4:0f:90:ad:6c:6f:a0:fe:cb:c6:a0:5d:13:df:
fd:76:60:d0:3f:6a:21:67:cf:73:8f:61:52:7f:8c:
1c:d2:54:eb:0b:fd:68:c0:23:ca:a3:db:40:58:ef:
f6:a4:0b:c7:c2:76:27:0e:3d:dd:2d:3f:da:f9:0a:
51:53:e6:15:ed:e3:a0:82:5c:3c:8a:dc:86:e6:0b:
21:13:16:63:2e:69:24:82:d4:64:e0:a7:76:89:8a:
ad:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:12:42:F9:27:A5:CF:6C:70:5E:CF:8B:F9:19:3F:AB:36:59:FD:59
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d076:800::/40
Signature Algorithm: sha256WithRSAEncryption
11:5c:48:9b:69:9e:4b:27:67:14:94:5b:83:36:32:d8:8e:87:
b2:b6:7b:09:a5:7e:b1:34:a0:97:66:69:da:90:03:d2:41:e0:
b1:dc:3d:48:35:fe:e3:3d:a1:9f:48:82:a0:4e:95:7e:7f:89:
f1:67:3c:6e:90:f3:24:e0:1b:9f:3a:9b:05:f8:13:3f:c8:be:
7f:ea:a5:b7:04:18:a3:fc:f1:00:d0:c9:b8:1a:5c:8f:1b:7b:
9a:0a:c0:dc:ba:14:8f:d5:5d:6a:19:9e:68:ec:64:02:fd:50:
d0:48:e1:31:3e:53:8d:d1:f5:42:26:ab:c6:d0:2c:f8:1b:37:
0a:b5:60:ec:e7:ff:d8:cd:5f:cb:d5:6c:6d:1a:09:75:01:e0:
c7:aa:94:5f:48:63:56:3d:68:32:42:91:ff:31:1b:cb:b5:07:
c6:12:79:38:12:91:31:59:f0:35:a0:28:25:ee:b1:97:38:ee:
86:ed:31:bd:c3:9b:c1:51:f1:bb:23:e8:e3:e1:63:a3:e0:c5:
84:16:8b:b1:f8:56:ba:29:90:e5:ca:c8:76:5e:03:94:5f:68:
17:cb:8b:1d:b5:d0:11:f3:d3:2a:09:84:3c:5d:1a:f9:d8:06:
9f:ac:cc:00:60:1d:a0:aa:95:3a:c6:ca:cf:f7:31:a6:fd:48:
b6:ae:72:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:00:37 2026 by rpki-client