Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
File: 82037871-73f4-40ba-be5d-495a41d85184.roa (raw, json)
Hash identifier: EAQmrJ8bHK+JqF8JnTQ1GOzIjGp/6CFE7cQPOYpb3O4=
Subject key identifier: 20:65:3F:63:C2:B0:AC:8B:7F:EF:45:26:BB:38:C9:68:A2:53:34:5D
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 01ECA14C2BEFBEC219D073FF17E715BBAD90CC5F
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
Signing time: Fri 13 Feb 2026 15:21:04 +0000
ROA not before: Fri 13 Feb 2026 15:21:04 +0000
ROA not after: Thu 14 May 2026 23:59:59 +0000
asID: 7224
IP address blocks: 46.51.212.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:ec:a1:4c:2b:ef:be:c2:19:d0:73:ff:17:e7:15:bb:ad:90:cc:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Feb 13 15:21:04 2026 GMT
Not After : May 14 23:59:59 2026 GMT
Subject: serialNumber=9b7e886ef625c1b5375c39fb1e65796ae0b0f7afce31ea8684ca03e6c65e551a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4b:8d:dc:8a:ed:fd:79:31:c9:64:ab:f5:31:
a9:e7:c0:d0:f9:df:e9:0e:99:93:be:e7:24:f9:d4:
04:3e:ac:e7:a8:70:b3:8b:e0:3e:c6:75:16:82:01:
c9:d8:ac:f1:ee:7c:ba:ba:a7:5c:e0:e1:36:c6:59:
a7:6b:1f:82:ac:1e:e3:a5:a4:2b:84:2b:23:44:6f:
5b:75:45:e8:9c:09:b4:ee:da:5d:cd:c5:a9:38:cb:
57:35:c0:da:42:d6:65:02:1e:7c:33:19:31:2d:dd:
57:54:de:75:46:ae:9a:8f:fe:75:66:bc:4b:86:6c:
2a:8d:30:c2:06:f5:a1:c3:b5:36:45:ff:63:67:4b:
1d:1e:11:99:68:dc:46:81:17:a6:6d:4a:22:c3:d1:
60:d5:cc:5e:d6:1b:f4:b4:1a:7b:14:c3:b9:82:f9:
79:76:22:9c:a6:5f:34:39:25:4e:a0:53:27:e7:d9:
06:ab:74:9a:9b:28:26:8e:cd:ec:1e:f8:78:79:51:
af:b2:14:54:f6:08:0b:72:f1:6f:dd:ae:a0:80:78:
ed:88:9e:2c:1d:c5:7a:3e:c4:86:cb:a4:b2:bb:33:
b6:cd:6e:f7:82:6b:2b:7e:00:f9:ef:6c:13:a4:16:
d6:9f:93:62:d8:52:1e:84:90:0a:ea:6b:08:10:b8:
5a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:65:3F:63:C2:B0:AC:8B:7F:EF:45:26:BB:38:C9:68:A2:53:34:5D
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.212.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:c7:38:7f:c8:42:6b:7a:15:60:38:7c:03:fe:8e:75:b8:0e:
f6:5e:bc:32:9a:30:a4:6c:80:ce:8a:b6:28:b2:bf:97:7e:16:
1e:7c:6a:ac:6b:e8:c6:6f:07:a7:27:e4:7a:77:d5:f4:bf:e4:
22:b7:b5:9f:da:e1:6e:50:45:95:53:46:c0:2c:17:fd:af:ce:
7d:92:bf:31:ee:3e:c2:ae:9c:4f:ca:f8:30:03:b5:29:8e:0d:
f9:96:3b:a4:98:49:51:9c:48:00:7b:c9:7a:4e:ec:f5:98:23:
29:0c:d6:66:ad:48:2e:92:61:e6:4b:2f:e1:ff:2f:05:e3:3b:
96:ca:9b:68:8b:cc:02:5b:bb:19:23:fd:c6:04:56:42:95:65:
cd:3c:35:b3:75:60:3c:4f:c1:99:16:30:e2:1a:11:67:7b:f6:
e2:31:1c:a6:84:45:f2:d2:77:ab:8d:a1:5f:20:e3:65:e3:a4:
38:21:71:e3:24:b6:65:7e:5a:e9:b3:f1:09:65:d5:9d:7d:30:
49:7b:50:a8:8a:56:70:1a:0f:66:eb:89:12:90:69:82:05:61:
81:91:8c:0b:9f:aa:99:63:1f:fd:5e:eb:94:55:38:eb:90:4a:
4e:bc:85:3e:07:25:c6:18:63:5e:8c:44:a8:43:e8:c5:71:f3:
f8:4c:30:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:29:02 2026 by rpki-client