Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/54957543-b22c-43fb-b523-8f40c64fe15d.roa
File: 54957543-b22c-43fb-b523-8f40c64fe15d.roa (raw, json)
Hash identifier: 9M6EUu3atlbo//fpdTBjHLTiAshvNzPSv3hzYqrVAzE=
Subject key identifier: 6E:5B:DD:5C:2F:AB:F3:ED:97:C0:AF:3A:17:1B:3B:A0:BC:3A:21:0B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 47B033C91E1E4BF538E4341291732309E248847E
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/54957543-b22c-43fb-b523-8f40c64fe15d.roa
Signing time: Thu 14 May 2026 01:40:07 +0000
ROA not before: Thu 14 May 2026 01:40:07 +0000
ROA not after: Wed 12 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.192.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:b0:33:c9:1e:1e:4b:f5:38:e4:34:12:91:73:23:09:e2:48:84:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 14 01:40:07 2026 GMT
Not After : Aug 12 23:59:59 2026 GMT
Subject: serialNumber=d0f7a27bd586e4f6458b8d12495e5806ecd301eb3a2d104c6b565ab23bcf4a5a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2e:0f:28:41:06:f1:03:5a:72:b5:03:3f:11:
05:dc:8a:41:db:ef:fb:6f:93:0a:f7:1e:f8:17:69:
00:e3:ca:05:36:fe:02:31:6d:75:bb:6c:20:6e:b0:
ea:61:e4:f0:be:c1:41:2f:54:5c:ff:f3:dd:db:75:
b7:33:dd:0a:66:34:cd:f7:a0:33:c4:e8:16:9b:1c:
5f:72:af:c0:13:af:04:f8:6f:26:36:1f:dc:63:32:
bc:0c:9f:3a:20:5e:2b:77:dd:86:ff:1f:11:55:0b:
b7:16:fb:bf:dc:d9:56:ef:8c:33:6e:3b:aa:19:e0:
ab:5f:22:37:fe:7a:7f:2f:2a:06:33:46:1d:06:e9:
51:78:f1:5c:6b:2f:6e:24:5b:5e:6e:e0:39:b0:cf:
dd:ef:31:15:8c:bb:09:b9:3e:03:54:45:cb:bb:fc:
e8:84:d0:2d:db:94:e6:7d:ed:da:90:3c:6b:09:80:
e2:3f:39:53:3a:97:4c:b6:79:8c:9f:29:58:7e:f9:
9b:81:b2:58:82:ce:25:cf:83:dc:20:05:1f:83:f3:
e3:fc:98:f1:69:19:ae:a9:40:bf:41:83:1c:6b:08:
73:ae:c7:57:c2:4c:e3:47:5d:d9:c2:ef:f8:bb:25:
82:00:60:ff:1c:6e:b8:a7:ad:81:d0:ec:c8:e2:4f:
7b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5B:DD:5C:2F:AB:F3:ED:97:C0:AF:3A:17:1B:3B:A0:BC:3A:21:0B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/54957543-b22c-43fb-b523-8f40c64fe15d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.192.0/19
Signature Algorithm: sha256WithRSAEncryption
7b:1c:f6:72:a4:7c:aa:64:a0:dc:f1:a6:fd:29:1d:d8:38:e8:
05:71:5e:0b:a8:6d:55:97:73:05:b3:4d:de:c2:cb:45:03:47:
ea:b7:04:e6:5e:4a:ad:4e:70:59:c1:20:41:1f:70:aa:1e:e0:
15:9d:06:f6:cb:c8:46:73:cf:24:aa:ff:ad:46:db:30:fb:ca:
35:cd:a9:a0:f5:d7:af:80:f5:9a:71:6b:06:90:c0:72:14:8b:
18:31:51:17:8a:a6:11:1d:11:b3:4c:38:0d:52:4b:a8:50:4b:
95:3c:a2:f9:df:df:cb:1d:b9:9d:88:c9:65:e5:d1:ff:c9:bf:
73:36:95:46:ef:f0:36:db:2a:f7:8e:d5:b7:d1:cb:ba:fc:56:
5c:61:50:99:c3:79:f3:b1:71:a3:12:73:61:d4:8d:d8:f6:92:
5b:74:49:a3:1a:2a:c7:2e:cd:12:d7:74:56:bf:36:64:9b:09:
c4:44:b1:59:3b:89:08:9f:12:ca:81:5f:e8:12:da:e9:d2:84:
97:c3:bc:4f:28:db:e3:84:d6:11:1c:5a:bb:2f:42:d7:c8:37:
bc:5d:4c:93:f2:e7:dd:8c:69:93:c2:29:22:f1:9f:f7:65:25:
70:45:9e:3b:1d:f6:ab:48:a0:c7:f8:13:c9:6d:d7:3f:59:86:
ca:10:0e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:01:18 2026 by rpki-client