Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/182e091e-259f-44bd-bb67-c5e36fa6958b.roa
File: 182e091e-259f-44bd-bb67-c5e36fa6958b.roa (raw, json)
Hash identifier: 3mM+Ehr1cTxIz55Purgxxg7Fjn/s6aSqw7EylMORQb8=
Subject key identifier: EF:B0:06:90:AF:A2:4F:2E:B8:72:93:E5:D8:BA:8C:38:89:9D:3A:CA
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4002BD38BFF01D4D97E3C570626B98DEE8911FB9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/182e091e-259f-44bd-bb67-c5e36fa6958b.roa
Signing time: Tue 19 May 2026 05:20:22 +0000
ROA not before: Tue 19 May 2026 05:20:22 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d01c:400::/38 maxlen: 38
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:02:bd:38:bf:f0:1d:4d:97:e3:c5:70:62:6b:98:de:e8:91:1f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 05:20:22 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=cf0d82dddf334acf938e3298a4c47f667b3f2fcdb2ebc7bd3aa3969591858b32, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:66:59:42:08:d9:91:2a:b2:9d:dd:4d:32:
82:c2:cf:28:dc:b5:9e:89:ab:88:8b:bf:53:81:52:
e3:40:f9:89:af:08:e1:d2:49:be:54:55:52:c3:61:
e8:e5:8c:66:23:ca:8e:e4:f4:7a:c6:9f:e1:55:fa:
85:d8:11:10:fd:a1:52:de:59:2e:8b:9f:cb:00:6d:
ff:a5:a8:02:49:bc:ce:a7:6a:17:e5:9a:12:8c:69:
d3:1f:33:94:dc:d9:bb:81:e5:3d:68:8a:b5:eb:b7:
f9:67:3f:8e:54:0b:00:f1:13:06:20:99:3c:63:ff:
10:f9:1f:4a:ef:8e:1e:0a:ff:96:e9:74:69:5b:69:
84:04:ca:63:d7:80:cb:f6:62:80:c4:c9:ba:21:ea:
60:d1:37:d8:8e:ab:1b:f6:01:41:3b:53:ce:be:d9:
81:e5:ca:28:6f:66:91:40:44:34:1b:27:52:09:8a:
73:e7:26:ce:bb:4f:e6:49:7d:38:23:ea:2c:e7:fe:
26:d0:f6:45:50:5e:6a:9b:30:ea:89:4a:80:70:c5:
bf:2e:26:21:17:59:2b:68:03:3c:b8:53:fd:69:31:
10:dc:fe:4f:c8:bb:76:83:c8:eb:b6:c1:58:65:7f:
a2:95:0a:7b:65:83:76:45:a8:ad:45:30:fb:84:3a:
eb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B0:06:90:AF:A2:4F:2E:B8:72:93:E5:D8:BA:8C:38:89:9D:3A:CA
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/182e091e-259f-44bd-bb67-c5e36fa6958b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d01c:400::/38
Signature Algorithm: sha256WithRSAEncryption
95:94:2f:91:64:a7:de:dc:51:ae:e6:fa:38:9a:b4:90:2c:ac:
25:6e:90:f3:96:81:af:20:e2:a4:70:50:b5:20:56:66:7a:4c:
d9:98:43:ff:48:cc:a4:77:29:2f:cd:11:3f:e1:e6:48:8d:d2:
05:e3:7a:9c:a7:97:ca:26:43:31:bd:02:c1:35:74:14:b8:f1:
ff:5a:51:0f:57:09:7f:e3:b1:db:48:a7:2a:47:e1:20:dc:51:
e6:f3:cb:b5:74:0a:a9:fb:d6:90:ed:a1:cd:d8:7a:9c:21:2d:
61:e6:4f:5e:b3:fa:9d:56:34:ab:43:2d:1a:a8:8c:40:fe:6a:
d2:5f:34:3f:fe:71:b7:ce:05:ac:7f:4a:93:1b:2c:1b:62:49:
5c:8a:15:d3:55:65:cf:fb:9f:f2:e6:b9:b4:44:70:0b:57:d6:
27:a7:a8:4a:94:e6:f5:b7:25:da:08:52:aa:35:1d:ad:f9:c9:
be:2e:eb:40:75:27:be:fb:4b:4d:b3:d5:c2:f7:1e:36:50:85:
89:8d:3f:dd:bb:5b:ef:98:e4:52:7f:3a:8d:33:6f:9a:cf:4f:
4e:2c:18:cb:98:cc:4c:bf:0f:ed:df:1d:a3:16:ea:d5:bf:05:
41:31:5e:79:fa:f1:ed:f1:ee:86:fb:a8:2f:75:1f:25:c8:41:
08:fb:59:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:33:31 2026 by rpki-client