Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1730fb0f-afd2-4a40-b218-7d0df2b2a1e5.roa
File: 1730fb0f-afd2-4a40-b218-7d0df2b2a1e5.roa (raw, json)
Hash identifier: KSHDWYQg3J1twn4xWW1uq6lR6GyujgcVroFKwxkOUDo=
Subject key identifier: F6:80:FE:57:41:F3:F8:49:C9:A6:03:29:14:1D:25:DC:64:D2:CA:5B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1C8151322D1FCC60C113DEBAF80F76A6670AEEB9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1730fb0f-afd2-4a40-b218-7d0df2b2a1e5.roa
Signing time: Fri 13 Feb 2026 15:30:11 +0000
ROA not before: Fri 13 Feb 2026 15:30:11 +0000
ROA not after: Thu 14 May 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d073:80c0::/46 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:81:51:32:2d:1f:cc:60:c1:13:de:ba:f8:0f:76:a6:67:0a:ee:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Feb 13 15:30:11 2026 GMT
Not After : May 14 23:59:59 2026 GMT
Subject: serialNumber=e9b65d1047d6b7bc74c4dc53bba98fed445661fc995077a99d2dd40bba4e7b92, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:98:fa:42:38:b1:16:d8:c3:18:2d:07:fd:13:
af:1c:a5:d1:22:11:f1:bf:f3:31:9c:d9:f1:91:19:
59:6a:56:7c:c8:a6:06:6c:de:78:94:2d:17:70:7b:
f3:d9:e4:5b:9f:66:4e:ad:dc:90:4d:06:2a:c2:11:
1b:2b:7a:d3:02:b9:17:95:37:68:26:80:07:61:e5:
cb:7b:11:46:62:69:58:86:ba:b4:45:41:d7:26:da:
fa:37:35:42:f4:18:f8:6c:cd:0b:f1:39:45:7a:4b:
e1:7e:0a:10:08:22:e6:d4:4e:8a:ae:9a:e0:d5:9d:
3d:cb:b2:8b:58:2d:7e:e2:cd:40:e0:ec:01:8c:7b:
20:ea:46:fd:52:ce:c5:49:ad:b3:bf:0d:d0:73:12:
cf:16:41:97:8a:89:1d:d2:da:f2:a2:42:81:a9:05:
7e:f4:08:eb:2f:e7:44:e1:40:90:d8:35:b1:6b:63:
f6:3b:b7:e6:24:fb:76:e9:75:28:26:d5:bc:28:3c:
8b:e0:0c:9f:ee:bd:8b:12:24:6b:92:95:5e:83:70:
5b:7f:f8:a8:a7:28:d3:57:db:a1:4e:05:18:82:2a:
4b:8d:4d:dc:55:63:be:0f:98:6b:f7:54:2f:a0:e8:
76:01:8f:69:d5:c3:96:24:b5:c0:67:6d:97:12:f0:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:80:FE:57:41:F3:F8:49:C9:A6:03:29:14:1D:25:DC:64:D2:CA:5B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1730fb0f-afd2-4a40-b218-7d0df2b2a1e5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d073:80c0::/46
Signature Algorithm: sha256WithRSAEncryption
8e:bd:ac:e5:b4:3a:53:e5:dd:0a:6d:08:a6:b8:44:ad:6e:8d:
0b:ff:a9:89:28:0f:74:2a:ff:2c:c0:b6:fb:33:63:57:d3:27:
51:3f:ac:af:ca:09:34:b5:8b:9f:7e:cd:12:4c:87:f0:d4:59:
a0:2a:e3:a1:d1:27:36:17:a8:7b:91:87:b0:7e:7b:b5:04:bb:
1b:7a:ae:11:ff:02:b9:93:52:ac:68:d7:a8:3f:8d:51:4a:3a:
a8:4d:13:21:94:21:70:d0:40:95:f3:b5:af:1c:7f:72:f3:ac:
5c:32:e8:b5:d1:77:85:bb:6c:32:9c:db:8d:01:6d:71:cd:70:
13:a5:93:78:55:41:11:e9:84:ac:15:64:18:22:64:61:04:6d:
c3:c7:36:6c:73:d3:d3:7c:10:7c:8d:2a:1b:61:b1:5e:91:1a:
52:1a:97:88:5f:c2:f3:80:53:eb:e1:46:fc:d4:ca:5c:ab:a9:
13:8e:62:3b:41:f6:74:05:6a:e3:fa:d6:69:f5:1c:20:53:a3:
06:ad:ca:36:66:95:9b:f5:9d:6b:5a:e9:78:92:03:cd:91:c8:
e1:d6:21:a7:b8:9a:3f:ae:f3:49:ca:22:d0:8c:6d:90:81:70:
99:cb:c8:68:93:24:98:94:14:09:4c:13:cb:63:f9:27:62:75:
03:58:fa:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:43:59 2026 by rpki-client