Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ba2d71-c4db-41f1-a648-b39b354abfa6.roa
File: 55ba2d71-c4db-41f1-a648-b39b354abfa6.roa (raw, json)
Hash identifier: RfULYinJfyHAfhg8rCjNLVmvUN/pHlLqYVWZscByJpU=
Subject key identifier: 5C:F3:BC:F7:82:B8:88:0D:EE:1A:F6:07:E0:A7:06:F8:4F:71:ED:1C
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4C489A83D9AFDA076F1530B4FA54AF916B083BE7
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ba2d71-c4db-41f1-a648-b39b354abfa6.roa
Signing time: Tue 19 May 2026 05:00:38 +0000
ROA not before: Tue 19 May 2026 05:00:38 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:8000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:48:9a:83:d9:af:da:07:6f:15:30:b4:fa:54:af:91:6b:08:3b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 05:00:38 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=a4b937ed0942aeaad837c02791f552645a8fa6be828968b486fdda2c9de58634, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:1f:c7:3f:c2:fd:1e:91:83:30:08:41:96:0c:
aa:e4:f0:04:e0:cd:ea:e5:97:b8:e5:51:a8:3c:fa:
fa:de:c2:a1:e2:dd:4c:f2:f7:7c:a9:58:88:bd:3a:
31:0c:0a:de:e3:38:56:52:79:9a:68:16:05:47:dd:
dd:2c:7a:13:d5:93:21:ab:de:f7:1f:c1:79:bc:4e:
d2:85:53:62:4a:29:eb:84:04:22:1a:6d:9a:e1:98:
49:6c:a5:91:7a:72:c4:c7:5e:d7:67:ad:f1:14:29:
f0:07:e5:fe:0e:9f:58:ec:be:1e:0b:10:b6:28:f0:
38:04:33:46:6c:ed:5e:69:05:98:c5:20:13:88:2d:
6e:44:c2:d9:be:4c:62:03:18:0d:dd:9c:7c:64:36:
02:e4:f3:30:ae:03:d6:33:4d:a0:02:72:b8:9d:23:
29:e3:be:94:3f:e2:1f:84:3c:28:77:b2:28:b0:60:
9d:82:8a:7b:58:da:e4:33:23:d5:7e:c7:7c:f4:d3:
93:f8:8c:df:e8:15:ad:5d:89:d9:e1:75:23:64:30:
5d:41:87:ac:2c:e0:19:2d:0b:5e:a7:dd:84:be:7f:
a0:12:07:31:02:f0:41:2d:3b:46:66:48:a0:4f:9b:
b0:e3:c8:5f:90:60:61:12:a1:d5:ec:81:7d:13:2c:
49:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F3:BC:F7:82:B8:88:0D:EE:1A:F6:07:E0:A7:06:F8:4F:71:ED:1C
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ba2d71-c4db-41f1-a648-b39b354abfa6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:8000::/40
Signature Algorithm: sha256WithRSAEncryption
b5:41:2a:65:18:b4:ba:9c:d2:be:c3:99:91:38:1c:57:3c:67:
a3:f7:49:fe:63:1a:0e:1c:9b:2a:b4:78:01:bf:9c:e7:6b:c8:
0d:fd:95:5f:8d:7f:ec:68:bc:6d:89:ae:69:5d:f0:d9:bf:fe:
a0:56:3e:4f:2d:bc:63:7c:27:65:0c:c1:f5:be:be:ef:3b:89:
9f:21:60:52:96:61:7b:8d:dd:55:7d:b0:0c:2e:e5:99:3b:47:
d6:88:52:df:b0:70:3e:67:59:b4:aa:59:7a:e6:60:03:57:6a:
08:3f:b7:f3:3f:53:d8:db:d6:64:1f:fc:f5:ea:81:ea:5c:9f:
20:a5:db:c9:64:c6:be:70:b5:b4:a4:f6:7e:2c:2e:36:25:7c:
fe:94:a3:34:5a:bb:97:b2:3f:96:ae:71:95:3a:f0:f8:0c:02:
f9:2d:cd:44:f2:fa:9e:14:33:8a:77:63:aa:dd:77:23:d8:64:
9d:94:8f:d8:49:12:66:bd:c7:d4:f4:1f:e8:54:c3:ee:a5:49:
c1:cf:77:8a:8d:3f:3b:10:e5:2f:50:1c:bb:61:c3:1b:0e:f9:
a7:32:64:70:ab:9a:bc:22:83:00:b6:5f:ef:6b:1c:a1:72:79:
d2:9b:98:ad:65:b1:e5:11:4c:2e:c9:b7:c7:4c:b7:50:fe:0e:
23:a8:07:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 12:42:38 2026 by rpki-client