Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c46a0827-1052-46e2-ad52-4a27d9a65f24.roa
File: c46a0827-1052-46e2-ad52-4a27d9a65f24.roa (raw, json)
Hash identifier: zh4EVm5ZuEVCC5UrBAnF2JDFyUGv9KOZXoiRVpt6j70=
Subject key identifier: 9B:8D:49:51:4B:D8:64:1A:15:95:01:80:1B:7B:C9:7E:E7:A0:05:9E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 5CD596FF058AEBB29C0F981E14661BD003AD8E1D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c46a0827-1052-46e2-ad52-4a27d9a65f24.roa
Signing time: Tue 19 May 2026 04:50:10 +0000
ROA not before: Tue 19 May 2026 04:50:10 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d014::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:d5:96:ff:05:8a:eb:b2:9c:0f:98:1e:14:66:1b:d0:03:ad:8e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 04:50:10 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=37a3dbe07ffd9a2c5b6279e63d4f99847e1ca939b09c4144bb1e6424dc7be583, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:69:38:ca:48:e4:60:1b:5c:6b:6b:38:60:f8:
a7:4e:ff:1f:c9:d4:7a:55:1e:38:52:49:28:5e:03:
0c:e8:e3:1a:29:71:04:72:97:f3:e6:4d:ca:18:4b:
31:c5:c8:4c:d9:d2:89:df:94:9c:5d:8d:6e:95:65:
60:07:23:aa:2d:66:cd:69:53:f3:28:63:ca:81:1d:
dd:75:d6:a1:8e:77:4b:3d:76:a4:1c:46:5b:2b:47:
28:85:3c:62:8b:7d:eb:1d:28:df:42:b7:07:5d:65:
98:a4:d9:79:68:1a:bb:6a:a7:7b:69:7a:f6:e8:df:
2b:e9:b4:da:8e:6f:fe:a2:4f:08:f4:50:7b:7a:54:
5c:d6:6c:24:9d:82:52:88:78:30:68:be:21:72:7d:
b2:15:c3:1e:37:93:25:22:c6:7c:8b:74:ad:07:58:
e1:59:e7:ed:42:e7:4b:9e:df:3c:01:bd:75:a5:3d:
a0:e6:55:33:b8:1f:75:bd:31:1a:9e:99:50:db:30:
3e:9d:80:28:de:91:46:1a:0f:9e:62:c7:9f:13:c6:
6d:a5:e7:72:fa:18:62:f7:6b:86:7e:6a:f3:ac:a9:
7b:cd:4f:ca:21:c9:da:5f:94:e2:da:c3:1d:9e:e2:
8b:97:61:2c:eb:2e:a7:1b:5d:69:a4:01:04:e2:99:
c0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8D:49:51:4B:D8:64:1A:15:95:01:80:1B:7B:C9:7E:E7:A0:05:9E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c46a0827-1052-46e2-ad52-4a27d9a65f24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d014::/36
Signature Algorithm: sha256WithRSAEncryption
02:fa:dc:c6:8d:59:c6:07:37:4f:46:6a:48:c6:31:96:16:40:
d0:26:c8:46:26:bc:52:36:3b:b4:06:57:ad:2b:08:cd:d8:86:
b6:d6:69:98:fd:cc:0c:c3:3c:4c:e8:3a:2f:17:d7:37:d2:83:
27:26:31:f9:dc:e4:9a:ad:76:d7:e6:7a:e3:52:a7:08:13:d4:
f1:86:6b:bd:2e:c9:b7:66:ca:5f:84:f8:64:4f:93:84:2a:46:
e4:78:52:30:d2:09:56:88:74:e5:76:5b:30:1e:c1:12:5c:72:
fb:13:89:3f:34:07:45:51:fa:eb:46:a9:ac:e4:f3:5f:fc:56:
68:5c:e4:71:47:e4:42:d4:1a:2c:72:16:08:e0:bb:d8:20:bc:
e0:b0:25:55:d1:55:a6:2a:9f:05:00:1b:95:fb:6c:b8:69:bc:
d0:22:fa:54:90:72:95:dc:db:c4:2c:89:73:da:bd:e8:59:c3:
33:0d:dd:f1:68:6e:f5:0f:7b:c2:8d:5f:76:7c:92:dc:de:d4:
1d:15:cc:0a:7e:01:15:59:83:e8:fd:97:2b:f9:75:c0:03:1e:
15:1d:8c:5c:e5:65:3b:9a:10:1b:b2:e6:1c:e3:cf:c1:93:dd:
da:91:ee:93:78:1a:4d:89:77:4c:43:b5:84:9b:51:c8:ca:cf:
e8:31:46:f5
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUXNWW/wWK67KcD5geFGYb0AOtjh0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNjA1MTkwNDUwMTBaFw0yNjA4MTcyMzU5NTlaMHoxSTBHBgNV
BAUTQDM3YTNkYmUwN2ZmZDlhMmM1YjYyNzllNjNkNGY5OTg0N2UxY2E5MzliMDlj
NDE0NGJiMWU2NDI0ZGM3YmU1ODMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJdpOMpI5GAbXGtrOGD4p07/H8nUelUeOFJJKF4DDOjjGilxBHKX8+ZNyhhL
McXITNnSid+UnF2NbpVlYAcjqi1mzWlT8yhjyoEd3XXWoY53Sz12pBxGWytHKIU8
Yot96x0o30K3B11lmKTZeWgau2qne2l69ujfK+m02o5v/qJPCPRQe3pUXNZsJJ2C
Uoh4MGi+IXJ9shXDHjeTJSLGfIt0rQdY4Vnn7ULnS57fPAG9daU9oOZVM7gfdb0x
Gp6ZUNswPp2AKN6RRhoPnmLHnxPGbaXncvoYYvdrhn5q86ype81PyiHJ2l+U4trD
HZ7ii5dhLOsupxtdaaQBBOKZwD8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSbjUlR
S9hkGhWVAYAbe8l+56AFnjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YzQ2YTA4MjctMTA1Mi00NmUyLWFkNTItNGEyN2Q5YTY1ZjI0LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0BQA
MA0GCSqGSIb3DQEBCwUAA4IBAQAC+tzGjVnGBzdPRmpIxjGWFkDQJshGJrxSNju0
BletKwjN2Ia21mmY/cwMwzxM6DovF9c30oMnJjH53OSarXbX5nrjUqcIE9Txhmu9
Lsm3ZspfhPhkT5OEKkbkeFIw0glWiHTldlswHsESXHL7E4k/NAdFUfrrRqms5PNf
/FZoXORxR+RC1BoschYI4LvYILzgsCVV0VWmKp8FABuV+2y4abzQIvpUkHKV3NvE
LIlz2r3oWcMzDd3xaG71D3vCjV92fJLc3tQdFcwKfgEVWYPo/Zcr+XXAAx4VHYxc
5WU7mhAbsuYc48/Bk93ake6TeBpNiXdMQ7WEm1HIys/oMUb1
-----END CERTIFICATE-----
Generated at Sat Jun 13 08:01:12 2026 by rpki-client