Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e15fa0a2-08ef-450a-bcc6-d556e4fd19b1.roa
File: e15fa0a2-08ef-450a-bcc6-d556e4fd19b1.roa (raw, json)
Hash identifier: aMHaiymxAFhv2w8t41Qi/2/zLIPjf682cJNEjanGXf0=
Subject key identifier: B8:84:6F:E4:D3:2C:6E:98:0C:9E:EC:28:42:FA:8D:13:9D:1E:FB:E1
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 576E4F2F41302E356F291697262A96D12A8D1FA9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e15fa0a2-08ef-450a-bcc6-d556e4fd19b1.roa
Signing time: Sun 31 May 2026 01:10:24 +0000
ROA not before: Sun 31 May 2026 01:10:24 +0000
ROA not after: Sat 29 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07d:8080::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:6e:4f:2f:41:30:2e:35:6f:29:16:97:26:2a:96:d1:2a:8d:1f:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 31 01:10:24 2026 GMT
Not After : Aug 29 23:59:59 2026 GMT
Subject: serialNumber=27a5f0666956a4dc0abdc1346456a61226ef468a0e28e462e36fb1cfd9c30f2b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fc:57:b4:00:3f:51:02:9f:30:d3:bc:f2:50:
b5:c6:d5:6b:a4:36:39:f7:3b:37:11:dc:07:36:7f:
2d:5f:eb:60:86:06:ad:d3:64:07:b9:ac:f9:5b:16:
c5:ba:e4:c4:1f:54:1e:8d:12:f1:43:fb:f3:34:97:
96:1e:27:54:01:d9:d7:4c:2a:8f:a3:8d:ba:ef:64:
2b:63:bc:05:f7:ee:a4:00:19:a6:46:42:13:56:43:
84:a0:4a:0d:4f:1a:6a:d6:9b:c0:ca:3b:4f:69:af:
0f:32:95:fd:ca:f8:b1:b2:5f:82:a5:a6:86:42:83:
4b:d6:c7:66:f6:1b:4b:6a:e9:01:96:7e:1d:2b:99:
2d:6a:b7:1a:5e:51:5f:1c:80:35:45:2e:e7:2f:c0:
40:23:78:7c:98:45:2e:b5:0c:ea:12:27:9f:61:68:
d7:bb:ad:d2:a4:13:f2:ae:ad:12:da:39:55:f8:37:
75:6f:1a:da:64:1f:07:ee:7e:d3:e5:c5:57:94:1f:
62:9c:d6:64:52:2c:42:14:a1:30:0e:55:6d:cb:e6:
f2:3a:d0:31:3c:aa:76:82:aa:85:03:65:cc:b6:7e:
09:a9:57:64:29:17:95:2f:de:bf:a7:a8:a1:bb:09:
d7:1d:90:9e:d0:b1:cf:6f:c9:12:56:58:ef:d0:7d:
97:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:84:6F:E4:D3:2C:6E:98:0C:9E:EC:28:42:FA:8D:13:9D:1E:FB:E1
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e15fa0a2-08ef-450a-bcc6-d556e4fd19b1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07d:8080::/48
Signature Algorithm: sha256WithRSAEncryption
63:29:ca:a5:35:1a:15:42:a2:d8:2d:70:e9:fd:b6:3e:63:65:
53:2b:1d:2e:11:27:fd:55:40:11:4c:c3:17:99:df:76:5f:32:
36:a3:c7:2b:6b:52:00:c6:1b:c4:84:b7:e9:a1:13:aa:7a:c5:
0b:50:af:5d:03:c6:66:7e:d8:7d:27:12:a7:99:f1:be:74:d3:
d7:57:fe:4d:0c:4f:47:17:fb:9c:44:4b:c0:ba:d6:af:d8:80:
17:e3:cf:9b:7e:b3:30:58:45:d7:31:10:08:48:13:c0:f6:08:
2b:e7:76:36:0d:46:a0:ba:38:5a:c3:f9:35:6e:16:33:4e:78:
1e:e8:61:0f:d2:9f:8c:ab:3f:0c:b7:7e:6c:4a:38:da:dd:27:
d7:de:b2:cc:2d:ec:1d:df:32:a2:38:5a:54:7b:d7:d7:30:af:
a4:98:a9:3d:e7:44:f7:6e:4c:42:d2:2d:b6:01:62:f9:79:6c:
e8:99:57:bc:77:51:00:17:1c:a3:89:02:15:91:0c:38:e2:cc:
fd:73:a9:6c:2f:22:ab:5c:6c:f9:ba:21:4a:c8:57:0a:f3:86:
73:48:47:a9:64:8c:9b:9f:3d:63:ba:d0:bd:4f:48:64:80:f7:
b2:11:59:0e:71:4a:44:0b:40:ed:e9:a1:78:93:52:15:3c:7b:
24:51:dd:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:56 2026 by rpki-client