Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa
File: 78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa (raw, json)
Hash identifier: pGOLH3lc6R5vpVnfDOWpT2dJdypH0nS7gYmVlnbuae4=
Subject key identifier: 2A:C5:88:42:DD:2E:B3:73:10:FA:56:B5:05:A5:BB:9D:65:0B:96:56
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 23095F773F472D236E3F4C6506110E4FA78DB189
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa
Signing time: Fri 20 Feb 2026 01:50:30 +0000
ROA not before: Fri 20 Feb 2026 01:50:30 +0000
ROA not after: Thu 21 May 2026 23:59:59 +0000
asID: 14618
IP address blocks: 2a05:d030:c000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:09:5f:77:3f:47:2d:23:6e:3f:4c:65:06:11:0e:4f:a7:8d:b1:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Feb 20 01:50:30 2026 GMT
Not After : May 21 23:59:59 2026 GMT
Subject: serialNumber=e776664f34bb3d1a851b1c10078e024bd325b812bf3d09a04afdbb4dea81c5e9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d2:fa:67:8e:b9:ed:ac:3e:fe:94:f1:92:db:
c8:08:d3:6f:47:b3:b9:ab:4d:e1:6e:b1:dc:2a:1f:
d5:39:b7:3f:77:98:ae:b3:0d:b1:41:67:ae:49:12:
c8:9a:7a:f6:f5:6a:39:45:63:ab:3e:02:4f:4d:38:
78:e3:86:a5:ae:98:e9:f5:0c:69:c7:ed:23:d5:00:
1e:c2:60:b6:49:4a:2d:34:54:4a:93:72:a4:b3:36:
1a:47:46:d7:94:4b:c6:67:28:d6:fd:5c:98:bf:33:
73:1a:97:da:45:82:83:56:80:3b:5f:32:6b:d8:42:
c4:b3:68:51:e4:44:bb:60:d4:c7:76:e8:df:10:d1:
fb:c8:8f:4f:ce:63:b2:80:fb:1b:16:e3:d1:82:1c:
be:cd:78:36:d6:46:82:20:c6:0f:11:be:df:18:91:
ca:3a:6b:ee:ef:06:a5:c9:9d:ee:89:d9:91:f3:c9:
18:5b:cc:2e:ca:b3:18:0f:91:54:a6:38:a9:56:89:
ec:d7:33:2e:ae:24:04:97:a2:19:ad:5c:a5:b7:52:
4f:2f:54:12:6f:04:4b:7f:0e:39:ac:36:21:0c:2e:
d3:ca:58:60:cd:a8:1b:b0:27:cc:6f:62:3d:5f:0e:
70:90:1e:c6:c0:49:43:ae:55:fc:22:1e:f4:1f:d2:
04:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C5:88:42:DD:2E:B3:73:10:FA:56:B5:05:A5:BB:9D:65:0B:96:56
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d030:c000::/40
Signature Algorithm: sha256WithRSAEncryption
2a:61:52:2d:5b:c7:c5:da:8a:07:53:b8:e6:cb:66:c5:6b:46:
ae:b5:21:86:a0:33:66:53:25:fc:cd:86:dc:c0:51:97:75:79:
41:78:c8:52:a3:ac:82:ae:c5:09:5b:7c:ef:9b:a5:af:4b:e0:
79:44:b2:e5:ac:43:43:ee:08:02:62:3a:8f:59:f4:57:c8:71:
64:f8:99:47:eb:62:f0:64:dd:ee:66:cd:e0:f8:b1:bf:2d:af:
24:b5:61:4c:22:7c:3d:93:58:2a:be:c7:56:b3:a2:0d:ac:bf:
25:ef:7f:78:50:64:83:e6:28:6b:cd:62:a4:0d:78:d0:11:44:
b0:e8:35:72:22:c0:14:42:2d:33:dd:cb:d5:c5:17:b4:66:62:
ae:da:20:f3:2f:e5:ba:87:b8:78:67:7d:61:a8:a1:27:65:37:
e3:24:1b:69:5d:56:1b:61:d0:6a:f6:4f:e8:7c:79:b2:1c:66:
58:ab:bc:e8:55:bf:fc:24:f5:d7:dc:7b:2e:1c:7c:8f:2c:30:
1f:43:56:b2:89:b1:eb:e5:c3:d7:92:3e:b0:93:bb:6b:76:19:
6e:44:b7:3f:b7:68:e7:f9:9f:31:10:01:2f:03:ef:40:0a:5e:
eb:5a:d2:5f:1c:fc:71:b0:45:d7:1b:4d:ad:10:4f:f1:e4:47:
8a:c4:22:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:58:31 2026 by rpki-client