Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa
File: c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa (raw, json)
Hash identifier: l4FvjQVOsyJ/U7ckSoZCNcZyzUvt+uLAWY2HJsihBeU=
Subject key identifier: E8:97:21:B4:7B:C3:C1:5A:04:54:C2:98:CA:5D:F4:7A:B3:9C:9E:8B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 243E427C864050CC3111678EC2F988E26040A0FF
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa
Signing time: Tue 19 May 2026 05:20:39 +0000
ROA not before: Tue 19 May 2026 05:20:39 +0000
ROA not after: Mon 17 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d075:2000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:3e:42:7c:86:40:50:cc:31:11:67:8e:c2:f9:88:e2:60:40:a0:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 19 05:20:39 2026 GMT
Not After : Aug 17 23:59:59 2026 GMT
Subject: serialNumber=6e0c24fc0e1a4ef71e2fd307c2c5808c3c1a3fc33efd73f080b21f45184ca8c3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c6:70:c8:9a:6d:1d:c5:d2:3a:d5:c1:52:c2:
a0:b6:a1:42:2d:9a:1d:84:61:b0:d9:61:d5:a1:78:
64:1d:3f:17:56:89:18:ed:08:f9:8d:74:04:bc:73:
18:b3:f2:6f:c1:fc:16:31:7d:8e:89:26:fe:83:26:
a0:8d:d5:db:75:cf:08:cd:b4:fb:7a:35:b5:5d:d9:
54:7a:e3:5b:8c:57:2a:b6:5e:6c:73:d8:0d:a4:52:
06:f6:96:89:5b:0d:4e:ac:ea:e4:d2:14:ad:5f:04:
75:54:7e:f1:e0:a5:d2:9a:22:52:e2:b4:ee:0f:59:
ce:dc:12:18:aa:89:da:32:2e:c8:da:81:1c:49:05:
d3:12:b6:5e:37:df:7f:4c:9d:00:62:52:e8:0d:f1:
d8:99:86:94:a7:5f:1f:40:36:df:e4:86:40:25:f9:
ec:71:48:7b:09:1a:46:2a:dc:93:da:db:76:3f:68:
2e:f1:62:34:a5:60:9a:91:ec:84:1c:88:42:a9:90:
40:18:ab:77:53:cb:6e:3e:85:0c:5b:16:1b:4d:10:
a6:a5:c7:a2:37:93:5f:f6:2a:6c:01:c0:8c:cc:04:
ce:8d:86:55:ec:e5:6a:4c:54:5f:65:1e:0a:e8:bf:
1c:d0:b3:27:e4:86:db:76:6e:f5:9d:85:a3:f9:9d:
76:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:97:21:B4:7B:C3:C1:5A:04:54:C2:98:CA:5D:F4:7A:B3:9C:9E:8B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d075:2000::/40
Signature Algorithm: sha256WithRSAEncryption
9b:e1:59:e2:e9:a9:c7:76:bf:e0:0c:f1:f4:13:2c:65:89:34:
bb:fe:71:b5:13:e0:56:19:4a:2b:54:7d:9a:07:bd:a0:74:59:
cb:83:73:65:86:4e:e6:c6:ff:d8:0d:b5:36:f1:d8:5e:c6:25:
e8:57:83:ca:49:e9:c7:7f:6b:74:ba:bd:e3:6d:6e:e3:dd:84:
12:19:03:73:3d:dc:5e:93:48:e1:ea:ad:98:e4:4b:b2:21:36:
0c:99:3b:c6:07:94:8e:ba:16:70:56:9a:b6:03:5f:e2:a0:4d:
21:47:11:26:27:6b:91:f7:e9:cf:df:e5:c8:16:a6:35:87:cf:
ae:a1:37:6e:cb:78:d3:a6:12:59:46:9b:ce:35:04:38:35:6d:
c1:4e:58:a9:2b:4f:ac:6f:7b:18:2b:bf:a1:c4:2d:3d:44:9e:
89:4c:77:59:90:3a:f9:a9:79:4d:0e:e6:b2:09:1f:8a:e4:ae:
28:a1:4a:5d:82:fb:b6:5d:96:99:c7:ee:eb:c7:14:15:37:e4:
3d:6d:ae:6b:fa:cb:fa:2f:32:f6:d9:0b:a1:fb:2e:04:a7:61:
20:eb:b6:de:df:dd:eb:52:61:77:a1:f8:10:14:ca:b2:73:ae:
29:96:7f:11:8e:a9:c0:9c:f8:b1:23:bb:a7:84:66:06:23:71:
01:ab:8d:80
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUJD5CfIZAUMwxEWeOwvmI4mBAoP8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNjA1MTkwNTIwMzlaFw0yNjA4MTcyMzU5NTlaMHoxSTBHBgNV
BAUTQDZlMGMyNGZjMGUxYTRlZjcxZTJmZDMwN2MyYzU4MDhjM2MxYTNmYzMzZWZk
NzNmMDgwYjIxZjQ1MTg0Y2E4YzMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL7GcMiabR3F0jrVwVLCoLahQi2aHYRhsNlh1aF4ZB0/F1aJGO0I+Y10BLxz
GLPyb8H8FjF9jokm/oMmoI3V23XPCM20+3o1tV3ZVHrjW4xXKrZebHPYDaRSBvaW
iVsNTqzq5NIUrV8EdVR+8eCl0poiUuK07g9ZztwSGKqJ2jIuyNqBHEkF0xK2Xjff
f0ydAGJS6A3x2JmGlKdfH0A23+SGQCX57HFIewkaRirck9rbdj9oLvFiNKVgmpHs
hByIQqmQQBird1PLbj6FDFsWG00QpqXHojeTX/YqbAHAjMwEzo2GVezlakxUX2Ue
Cui/HNCzJ+SG23Zu9Z2Fo/mddicCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTolyG0
e8PBWgRUwpjKXfR6s5yeizAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YzZhNWFjZmYtYjVkOC00YzgwLTllY2MtOTQxNTQwNjU3NmYyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HUg
MA0GCSqGSIb3DQEBCwUAA4IBAQCb4Vni6anHdr/gDPH0EyxliTS7/nG1E+BWGUor
VH2aB72gdFnLg3Nlhk7mxv/YDbU28dhexiXoV4PKSenHf2t0ur3jbW7j3YQSGQNz
Pdxek0jh6q2Y5EuyITYMmTvGB5SOuhZwVpq2A1/ioE0hRxEmJ2uR9+nP3+XIFqY1
h8+uoTduy3jTphJZRpvONQQ4NW3BTlipK0+sb3sYK7+hxC09RJ6JTHdZkDr5qXlN
DuayCR+K5K4ooUpdgvu2XZaZx+7rxxQVN+Q9ba5r+sv6LzL22Quh+y4Ep2Eg67be
393rUmF3ofgQFMqyc64pln8RjqnAnPixI7unhGYGI3EBq42A
-----END CERTIFICATE-----
Generated at Sat Jun 13 11:33:31 2026 by rpki-client