Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa
File: 16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa (raw, json)
Hash identifier: eCI9gXJtfPjqofp+Y5FLFGJlrDT8JLz6uSpe3dsKdkU=
Subject key identifier: A6:9D:6A:76:5C:A5:27:38:7F:59:4B:37:04:F5:50:67:F2:BD:9C:57
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3CEA1D654D66FA8A890069A89F51086C69CE4772
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa
Signing time: Tue 19 May 2026 05:20:18 +0000
ROA not before: Tue 19 May 2026 05:20:18 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d078:b000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:ea:1d:65:4d:66:fa:8a:89:00:69:a8:9f:51:08:6c:69:ce:47:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 05:20:18 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=c368930f1280810a3a651ba5dc1f7f8ad7c97d24db453c426196eb727d6d4b3e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c4:84:19:9f:79:5c:b9:a5:eb:e8:6d:d5:ea:
20:a8:8a:67:ef:b5:b7:ca:a6:09:c1:07:10:44:84:
7e:3a:d6:5b:70:b3:28:18:ce:12:19:b3:61:73:d9:
7e:00:59:6b:75:f1:75:4f:f1:e3:a7:ad:fb:5d:ad:
2f:2f:c7:c0:c9:ea:9d:3a:4d:24:ef:21:07:e7:49:
6d:71:40:92:dd:25:ed:d9:ea:91:63:7f:fe:84:24:
c1:f0:8b:cc:b9:90:85:80:fc:7f:95:3c:82:4c:17:
ac:71:db:a2:5c:a2:69:24:6e:62:6d:05:b7:50:c6:
4d:31:23:2b:c6:de:3e:4c:13:9d:60:e6:ce:df:49:
e0:ee:b6:6a:96:0c:cc:ed:c8:01:78:be:03:23:ca:
9f:82:e5:3e:4e:09:c3:30:d9:4f:db:85:2b:50:fa:
ed:9e:0c:4e:75:70:c6:f6:28:e4:80:12:2d:df:d1:
7f:21:a9:35:38:af:82:29:08:e4:fb:b2:af:01:2b:
10:84:ed:fc:9c:61:a1:7c:b3:bb:a1:55:f7:6a:6b:
f2:2e:c1:31:f6:a7:6e:6a:eb:02:c7:99:90:c6:7d:
0d:6f:a6:f6:a0:be:31:52:99:b7:e0:7b:d0:47:1c:
90:4d:dc:57:0a:dd:93:43:f2:58:ee:ae:c2:c4:cb:
98:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:9D:6A:76:5C:A5:27:38:7F:59:4B:37:04:F5:50:67:F2:BD:9C:57
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d078:b000::/40
Signature Algorithm: sha256WithRSAEncryption
93:5e:77:d6:e0:5c:81:09:40:93:a5:cd:1f:3d:47:f2:b1:af:
29:ad:e6:bf:53:6b:07:73:c0:ae:4f:ac:8f:cf:7e:35:70:04:
c0:f3:1d:fb:2b:73:49:ac:56:b4:da:b5:f9:34:ec:bf:e9:01:
09:b6:c6:f1:a5:08:dd:a6:f3:2d:70:fb:60:40:b3:0c:60:4a:
6f:74:5a:6c:52:10:da:6e:af:cb:f1:af:c4:a5:db:ed:04:f6:
36:41:36:f6:37:60:96:92:9e:b2:04:b4:8e:4e:3e:3c:21:99:
bd:f1:48:7a:e7:49:d8:f8:9b:0c:04:9f:ab:02:4e:08:cb:fd:
4e:d6:81:1d:8a:11:fa:1e:2f:d7:d8:07:72:48:60:ae:70:b8:
02:e0:ce:6b:6c:5e:a4:9e:f6:57:8d:b6:fa:04:a0:a0:fb:80:
d3:48:da:fd:fb:d3:03:a2:44:18:84:52:cb:5c:32:c9:2b:b0:
de:cf:38:26:3c:b1:1b:e3:50:e1:2d:e7:98:90:14:2b:5c:80:
f5:a2:c0:e0:de:ef:97:48:bb:6c:19:3b:7e:94:99:73:30:9c:
37:60:24:22:0b:2c:dd:22:22:2b:c3:5f:ab:68:ad:de:82:af:
85:41:f2:30:13:20:8f:08:e5:97:a6:01:cc:7b:c9:20:12:3e:
65:2e:f2:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:41 2026 by rpki-client