Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/48b510e0-0d59-48d3-96c5-ddb87c118e43.roa
File: 48b510e0-0d59-48d3-96c5-ddb87c118e43.roa (raw, json)
Hash identifier: S8iyGViijzasZMmGTMwwuXDP9juaAgsBPH2LOEzCltg=
Subject key identifier: 76:47:0C:9B:6B:BD:0E:95:46:30:3F:25:1F:03:A6:04:30:A8:8D:FA
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0C2CBDDF3C53D88344A57CF95CD68B92E0CCB1B9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/48b510e0-0d59-48d3-96c5-ddb87c118e43.roa
Signing time: Tue 19 May 2026 04:40:27 +0000
ROA not before: Tue 19 May 2026 04:40:27 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:4020::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:2c:bd:df:3c:53:d8:83:44:a5:7c:f9:5c:d6:8b:92:e0:cc:b1:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 04:40:27 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=b0d88041821c79f8db789f043f7d2876d1cbc1cd9f80f141b137cb4925aaff6c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c6:6a:62:5d:1f:91:63:5e:36:06:1b:61:a9:
dc:21:e5:c5:1c:0e:9c:8f:b1:81:76:2a:c4:f0:a3:
23:d9:1b:a7:2a:00:74:3f:d7:8e:c5:d6:b1:79:e3:
6a:50:7f:32:f6:4d:f0:2b:b8:9b:a3:33:c1:72:96:
07:3f:4b:e5:9a:ba:4c:d0:ae:c7:64:08:35:fb:d6:
e2:90:4f:73:76:04:49:f5:df:bd:dc:a2:5a:fd:fc:
a1:15:a8:c4:f4:79:d6:7a:e3:9c:93:eb:60:e8:32:
99:ba:4e:bc:9a:b8:d1:09:84:39:fe:9d:87:58:77:
ff:6c:a0:ea:6a:62:11:52:7b:40:34:5d:83:1e:bd:
98:d0:47:f8:79:e0:38:19:ee:24:43:f3:8a:8d:6c:
e3:ee:d1:a4:4c:af:13:ce:d7:fd:bf:ab:07:82:17:
88:d9:88:b1:53:d8:b9:77:5d:28:28:5d:df:b3:98:
4a:83:9e:80:8b:f0:94:df:6e:25:a8:59:16:2f:e2:
30:bf:77:98:90:c3:c4:f8:56:5c:3d:41:f5:90:5c:
36:4a:a9:7a:22:40:64:b7:39:c2:4b:fe:3b:a6:1e:
fe:1b:7b:52:9b:9f:20:79:69:3a:17:1b:cf:2c:64:
e7:fd:a3:1c:2e:47:7e:be:67:21:c1:fc:c5:cf:9a:
7f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:47:0C:9B:6B:BD:0E:95:46:30:3F:25:1F:03:A6:04:30:A8:8D:FA
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/48b510e0-0d59-48d3-96c5-ddb87c118e43.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:4020::/48
Signature Algorithm: sha256WithRSAEncryption
a5:86:c0:56:5c:d8:cc:d6:09:42:f9:e9:74:4a:bf:02:2a:67:
22:46:3d:98:9f:4a:50:fa:49:2e:36:4f:99:53:76:42:fa:43:
36:e6:07:20:cc:f6:09:05:91:f8:ba:98:50:61:35:54:ae:1d:
51:46:23:ff:48:1e:a2:5a:2d:9e:37:64:61:fb:7c:87:a4:2a:
22:cd:44:57:99:2f:c2:29:3e:fa:8f:34:63:df:77:7d:7e:9a:
8a:6a:6f:28:9e:84:bb:57:e2:ba:7a:c1:bc:34:a7:1c:c6:05:
ce:b9:90:68:cd:6c:2b:47:15:bb:80:ea:19:6d:12:05:1b:06:
38:af:a4:93:aa:4b:f9:ed:2e:c9:cf:f8:2d:d6:bc:6c:8f:c1:
39:16:c4:69:7f:09:b0:65:39:13:67:97:b3:0e:a0:da:fa:18:
71:08:f8:c2:f6:9a:cf:b8:d7:6e:63:1f:01:e4:c5:2f:94:53:
2f:38:14:f4:2d:1d:8d:bd:61:6d:43:e2:6d:f4:d1:3c:72:90:
e0:be:44:d6:ee:6a:8c:87:6d:fa:42:72:dd:aa:e5:bd:f7:2e:
88:cf:33:02:9b:99:cf:15:fa:db:2c:f7:08:b8:04:a8:69:5a:
b1:d5:df:cb:cd:74:97:8c:9a:60:00:8f:29:76:81:be:c2:bd:
f1:2e:e9:18
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUDCy93zxT2INEpXz5XNaLkuDMsbkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNjA1MTkwNDQwMjdaFw0yNjA4MTcyMzU5NTlaMHoxSTBHBgNV
BAUTQGIwZDg4MDQxODIxYzc5ZjhkYjc4OWYwNDNmN2QyODc2ZDFjYmMxY2Q5Zjgw
ZjE0MWIxMzdjYjQ5MjVhYWZmNmMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANjGamJdH5FjXjYGG2Gp3CHlxRwOnI+xgXYqxPCjI9kbpyoAdD/XjsXWsXnj
alB/MvZN8Cu4m6MzwXKWBz9L5Zq6TNCux2QINfvW4pBPc3YESfXfvdyiWv38oRWo
xPR51nrjnJPrYOgymbpOvJq40QmEOf6dh1h3/2yg6mpiEVJ7QDRdgx69mNBH+Hng
OBnuJEPzio1s4+7RpEyvE87X/b+rB4IXiNmIsVPYuXddKChd37OYSoOegIvwlN9u
JahZFi/iML93mJDDxPhWXD1B9ZBcNkqpeiJAZLc5wkv+O6Ye/ht7UpufIHlpOhcb
zyxk5/2jHC5Hfr5nIcH8xc+af0cCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBR2Rwyb
a70OlUYwPyUfA6YEMKiN+jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NDhiNTEwZTAtMGQ1OS00OGQzLTk2YzUtZGRiODdjMTE4ZTQzLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ABA
IDANBgkqhkiG9w0BAQsFAAOCAQEApYbAVlzYzNYJQvnpdEq/AipnIkY9mJ9KUPpJ
LjZPmVN2QvpDNuYHIMz2CQWR+LqYUGE1VK4dUUYj/0geolotnjdkYft8h6QqIs1E
V5kvwik++o80Y993fX6aimpvKJ6Eu1fiunrBvDSnHMYFzrmQaM1sK0cVu4DqGW0S
BRsGOK+kk6pL+e0uyc/4Lda8bI/BORbEaX8JsGU5E2eXsw6g2voYcQj4wvaaz7jX
bmMfAeTFL5RTLzgU9C0djb1hbUPibfTRPHKQ4L5E1u5qjIdt+kJy3arlvfcuiM8z
ApuZzxX62yz3CLgEqGlasdXfy810l4yaYACPKXaBvsK98S7pGA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:25:22 2026 by rpki-client