Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa
File: 183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa (raw, json)
Hash identifier: h2wKRad8GEpkP/WXz4nMSZIhx/hSGe00qaxwlPKngns=
Subject key identifier: 65:18:98:A2:4C:B1:50:09:93:B3:90:F1:3D:10:BC:B0:E8:22:D5:99
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 260334E5BDA5087298DADE7A25306DBCF150969C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa
Signing time: Tue 19 May 2026 05:30:45 +0000
ROA not before: Tue 19 May 2026 05:30:45 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:1000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:03:34:e5:bd:a5:08:72:98:da:de:7a:25:30:6d:bc:f1:50:96:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 05:30:45 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=5836b3857c1829a6715c871e37bb00aea638bf2a65df1048e651584f1f7cd71a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:87:02:f2:cc:a2:27:b7:d0:38:39:c7:86:1e:
83:e2:cd:c3:c8:cc:4f:3b:06:7b:a0:4f:2c:60:60:
1b:08:f5:be:e8:8b:e2:ea:16:7c:9a:5b:39:aa:df:
ab:2b:c0:56:ef:8e:80:fb:c4:13:f5:db:fe:50:f1:
51:d2:e1:e5:aa:c1:a8:bf:eb:19:3f:80:e3:98:b7:
a2:84:0d:96:2a:71:1c:67:20:68:2e:05:18:44:35:
04:5c:f0:60:90:af:c8:dd:1e:3b:44:ff:c1:a1:91:
5f:50:cd:6f:97:d5:e7:81:1c:c4:6f:8b:f0:1a:11:
48:5d:90:82:51:8f:81:f8:6e:23:a5:76:ee:0e:bf:
67:a2:72:11:0e:83:a8:bf:37:ae:28:86:b7:4d:77:
e1:9b:4c:c3:73:b1:0b:26:d2:fb:f0:08:5f:26:90:
95:79:30:e6:bb:ef:78:51:36:61:76:d1:57:dc:b8:
ed:69:00:a6:69:ae:7c:08:48:95:a7:69:10:d9:d4:
5c:47:72:15:d4:ef:7f:d4:66:a2:1d:fc:6d:a8:68:
4c:3a:b6:86:05:44:7e:ad:b1:42:04:ad:10:41:af:
40:a4:ee:1f:61:e3:87:2d:c4:2a:38:05:c6:b5:35:
45:6b:9b:0c:09:3b:0e:c0:59:1d:d4:45:5e:2d:64:
ee:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:18:98:A2:4C:B1:50:09:93:B3:90:F1:3D:10:BC:B0:E8:22:D5:99
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:1000::/40
Signature Algorithm: sha256WithRSAEncryption
c7:1b:2e:32:de:e1:8e:f4:33:ae:43:28:50:4a:c5:21:ad:8a:
e3:52:bd:c5:d7:1c:47:d3:1c:85:10:b5:33:75:93:a2:55:0f:
74:35:99:01:23:7e:31:19:a3:66:70:da:57:55:ec:c1:51:59:
78:6f:7d:59:5b:6c:ea:e9:5d:d1:09:8b:19:bd:1e:45:9f:33:
83:f5:b5:d4:36:bb:c1:a0:9c:f7:86:f2:1d:64:05:75:e4:3a:
6d:3b:7f:9b:df:5a:f9:e7:c5:e1:ea:03:0f:d3:eb:ee:62:0f:
e0:86:a0:9a:49:38:0f:4c:f0:8f:8b:66:99:6e:e5:5d:81:3c:
88:22:af:c2:46:d7:95:5a:0b:48:7f:18:fa:e4:24:2d:45:e8:
67:d5:50:b9:43:ed:69:6c:e2:55:cc:e5:e8:6a:b5:47:a2:88:
5c:36:9b:de:67:1e:b4:d8:79:6e:26:ec:37:09:3b:28:b5:4a:
50:0d:fc:1e:3c:f9:5d:cd:6d:8e:be:f8:a4:f1:c4:85:29:e3:
b7:6f:65:d2:1a:61:ec:ea:5e:4c:78:4b:8a:52:37:78:3c:09:
d8:7c:eb:86:3d:87:a2:70:04:42:f6:40:dc:71:f9:11:e8:55:
9a:4a:5a:13:61:ed:0d:c2:4c:ce:62:ac:f3:9c:1a:da:74:16:
a3:94:2f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:10:53 2026 by rpki-client