Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa
File: 92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa (raw, json)
Hash identifier: +qvYnM3OMPI0+hKFa+/d3lWO3tUCrUM0owgCbf/hvBw=
Subject key identifier: 8A:14:A7:6A:8E:73:4D:6D:CB:6E:28:A9:CA:B5:8D:9F:E5:F7:24:EF
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4E6E444905D484AE2D91DDC9B2F7DC97902D2E9E
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa
Signing time: Fri 13 Feb 2026 15:20:30 +0000
ROA not before: Fri 13 Feb 2026 15:20:30 +0000
ROA not after: Thu 14 May 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d073:4040::/46 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:6e:44:49:05:d4:84:ae:2d:91:dd:c9:b2:f7:dc:97:90:2d:2e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Feb 13 15:20:30 2026 GMT
Not After : May 14 23:59:59 2026 GMT
Subject: serialNumber=bf6cb408485ee770f38c649a7c42c59580da7745d222d72db60f51eeea5d6b0d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:c5:81:9f:2b:7a:8e:9c:de:7a:91:50:6c:
6c:29:ea:f9:b6:23:81:b8:89:76:38:b0:ef:b9:ec:
da:bb:4e:13:4b:79:97:46:13:cc:75:68:da:57:90:
92:7f:09:80:cb:c0:6e:49:d1:fa:58:3c:05:4a:af:
62:72:33:39:93:25:1c:f9:ef:5c:ba:13:fc:d7:20:
9f:5f:42:7f:82:33:41:d5:2a:54:b4:70:23:24:f7:
9c:93:af:98:4f:ab:10:cb:91:c9:b3:7c:6e:b1:22:
1a:66:19:25:bc:d9:ea:78:c9:87:5c:55:c5:4c:c8:
1f:99:fe:2e:b1:7c:1b:e0:4f:7a:40:b1:49:28:21:
39:d1:d7:2b:ae:8f:f0:c2:1e:12:16:f4:8e:b7:c3:
ba:d7:4e:f9:58:b3:53:22:78:17:f7:13:a7:84:0d:
45:cb:dd:ad:94:7d:99:5d:75:fd:a3:33:79:83:88:
07:32:6d:a9:f4:99:f6:d6:67:4b:e0:0b:7e:d7:6c:
cb:ff:c8:52:f1:ca:d0:38:b0:45:a1:b4:8a:5f:3b:
ce:fd:27:37:c8:16:ab:72:4c:92:c2:69:31:55:f3:
ad:e2:98:e7:2e:ca:d5:06:c7:07:a9:79:ac:43:d4:
8f:6c:9f:9b:db:40:e7:c2:1a:c0:2e:e7:b3:61:9d:
c1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:14:A7:6A:8E:73:4D:6D:CB:6E:28:A9:CA:B5:8D:9F:E5:F7:24:EF
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d073:4040::/46
Signature Algorithm: sha256WithRSAEncryption
b8:94:30:d1:a1:b8:d8:f0:5e:cf:70:9a:b0:7c:58:2a:06:c4:
be:9a:6a:da:d2:6f:2d:a4:a2:ff:6b:83:d2:7c:ac:05:b7:78:
71:9f:e4:10:fc:ee:19:0c:bd:65:0d:86:64:ba:d8:40:06:ea:
c9:90:60:b4:2f:be:eb:59:d0:e0:1a:14:63:16:67:f6:53:86:
a7:1e:a9:ef:e2:8e:ae:10:9a:26:a8:47:34:38:ae:3e:d5:55:
71:09:d5:9c:c3:5d:b2:aa:06:55:10:2e:cc:92:93:d3:41:4a:
1e:ae:d7:ae:c1:0a:e5:5c:83:e9:f3:6d:93:a6:cf:ed:a5:20:
ce:77:84:1f:23:13:a9:d7:da:17:27:ec:ad:fc:37:0f:0d:83:
5e:c4:a6:70:51:63:df:0a:a2:7e:f0:73:f2:84:7f:bd:02:b2:
60:3f:f2:fd:4d:8c:67:90:31:82:c8:2a:f3:c7:e4:92:46:90:
31:fd:96:d7:78:52:98:83:b3:72:49:10:5d:e0:1e:7b:57:b2:
64:cb:68:93:12:d5:fb:32:cd:d1:d1:b2:67:6c:6a:cc:05:29:
74:d1:fc:07:75:56:6e:db:12:32:96:d1:06:d2:9d:32:fe:87:
db:5d:4b:f4:db:b3:cf:29:e6:b0:49:f6:c1:6d:31:f0:a2:8a:
9b:45:70:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:49:09 2026 by rpki-client