Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
File: 9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa (raw, json)
Hash identifier: TF043SMCPJElZ66GwVZ45dAi8cbWIzlr49e8o6hNQ7Q=
Subject key identifier: 47:82:CC:27:E1:A6:6C:BC:88:05:62:20:F7:F4:D9:D9:C2:E9:93:57
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4FE982904A2C9E48A5A46F0B0015A518CB8B2FCC
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
Signing time: Tue 19 May 2026 04:30:09 +0000
ROA not before: Tue 19 May 2026 04:30:09 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:9080::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:e9:82:90:4a:2c:9e:48:a5:a4:6f:0b:00:15:a5:18:cb:8b:2f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 04:30:09 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=8cf038b4ddd678003f76473adc9e41c88fd9d4457e0e0b12393df7cfa8bc65f5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:71:b8:29:53:23:02:90:fa:0b:f8:b2:c0:3d:
62:77:00:d8:d1:7c:7a:ae:59:21:85:9c:86:42:4d:
8f:9c:31:63:1c:77:46:64:c5:19:d3:4a:af:8f:dc:
25:7a:cf:d7:23:9b:85:ed:f5:a0:ea:6e:12:3d:02:
a1:f4:14:87:38:c4:a0:fb:03:91:43:27:e7:a2:23:
c2:56:8f:10:fc:d0:8c:f0:6a:6d:d1:06:a0:e3:01:
f2:f6:fa:df:99:c4:94:c3:3c:88:6e:a3:66:07:9a:
52:e2:d7:dd:90:ea:e7:98:80:fd:d1:b3:a8:23:28:
3b:74:e4:9d:30:ec:9b:b4:33:ee:a2:bf:13:6a:3c:
71:ec:1c:e5:94:21:9d:9c:d7:40:20:1d:25:34:53:
76:e5:64:e4:c2:83:aa:d6:c6:c5:7d:53:5f:e8:e9:
c6:9f:80:fc:73:02:a6:51:ec:70:17:31:8d:c7:67:
19:79:5e:ca:fd:15:3a:25:06:9c:59:7d:06:08:48:
8f:53:63:45:a4:50:f6:a7:e8:3c:ad:b0:db:c2:89:
92:ad:f8:ee:7b:0f:ac:1c:b6:ca:fe:05:2d:bd:51:
37:85:ba:61:f8:36:e1:df:45:15:ff:36:b1:b6:dc:
01:a8:71:80:24:c8:88:c7:a2:3f:8d:49:67:9b:52:
ad:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:82:CC:27:E1:A6:6C:BC:88:05:62:20:F7:F4:D9:D9:C2:E9:93:57
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:9080::/48
Signature Algorithm: sha256WithRSAEncryption
58:9f:07:d4:14:bf:ee:95:9f:83:41:b9:d7:7d:79:af:7f:be:
d9:20:10:32:1b:0e:01:50:59:08:02:96:7d:61:80:3c:55:f6:
8a:a8:aa:f3:30:7e:03:a6:55:c8:98:2b:12:88:ba:94:ea:13:
02:9a:a5:cf:fc:23:02:d7:6c:aa:e7:bf:bf:38:b5:f4:9e:af:
71:a6:08:57:4a:5c:2c:62:41:d3:ba:b8:32:60:5e:c3:fb:55:
d2:d1:58:14:89:60:2e:05:10:33:97:6a:8c:08:ce:7c:7b:4f:
33:ca:26:39:d7:23:7a:38:2b:0e:58:6f:5c:c7:2f:86:4f:b7:
27:53:97:4f:03:99:e1:c5:ca:6a:60:6c:2f:21:73:1d:2a:1a:
c9:92:83:ae:37:5d:19:d4:3e:bb:96:5a:0a:e0:04:1f:6c:55:
ba:ed:14:c9:13:26:c5:d4:e7:d2:ed:35:70:f9:41:a4:b7:a3:
df:89:64:18:eb:05:e9:b9:d8:9a:74:d0:b7:ee:1b:9e:08:3e:
a9:d1:41:79:17:68:5d:03:06:30:56:a5:94:9f:2b:05:19:3e:
ff:85:e6:bb:ff:c8:7c:c7:da:6d:0d:9d:64:93:00:66:55:ca:
e6:a5:f2:2e:43:3e:c9:14:87:93:1e:0a:06:fc:2f:d1:43:e5:
42:58:7c:bc
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUT+mCkEosnkilpG8LABWlGMuLL8wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNjA1MTkwNDMwMDlaFw0yNjA4MTcyMzU5NTlaMHoxSTBHBgNV
BAUTQDhjZjAzOGI0ZGRkNjc4MDAzZjc2NDczYWRjOWU0MWM4OGZkOWQ0NDU3ZTBl
MGIxMjM5M2RmN2NmYThiYzY1ZjUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMRxuClTIwKQ+gv4ssA9YncA2NF8eq5ZIYWchkJNj5wxYxx3RmTFGdNKr4/c
JXrP1yObhe31oOpuEj0CofQUhzjEoPsDkUMn56IjwlaPEPzQjPBqbdEGoOMB8vb6
35nElMM8iG6jZgeaUuLX3ZDq55iA/dGzqCMoO3TknTDsm7Qz7qK/E2o8cewc5ZQh
nZzXQCAdJTRTduVk5MKDqtbGxX1TX+jpxp+A/HMCplHscBcxjcdnGXleyv0VOiUG
nFl9BghIj1NjRaRQ9qfoPK2w28KJkq347nsPrBy2yv4FLb1RN4W6Yfg24d9FFf82
sbbcAahxgCTIiMeiP41JZ5tSrScCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRHgswn
4aZsvIgFYiD39NnZwumTVzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
OTkyNmExNWUtZDdmZC00ZDdiLWFkMWUtZDBkZjk4ZjU0NmNiLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H+Q
gDANBgkqhkiG9w0BAQsFAAOCAQEAWJ8H1BS/7pWfg0G51315r3++2SAQMhsOAVBZ
CAKWfWGAPFX2iqiq8zB+A6ZVyJgrEoi6lOoTApqlz/wjAtdsque/vzi19J6vcaYI
V0pcLGJB07q4MmBew/tV0tFYFIlgLgUQM5dqjAjOfHtPM8omOdcjejgrDlhvXMcv
hk+3J1OXTwOZ4cXKamBsLyFzHSoayZKDrjddGdQ+u5ZaCuAEH2xVuu0UyRMmxdTn
0u01cPlBpLej34lkGOsF6bnYmnTQt+4bngg+qdFBeRdoXQMGMFallJ8rBRk+/4Xm
u//IfMfabQ2dZJMAZlXK5qXyLkM+yRSHkx4KBvwv0UPlQlh8vA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:44:56 2026 by rpki-client