Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1277c797-1181-445f-b798-ef72bbfc284c.roa
File: 1277c797-1181-445f-b798-ef72bbfc284c.roa (raw, json)
Hash identifier: +TKRu/zBl84KZfKq9Nkm9r9u1sa7/2qkciolskyiHHw=
Subject key identifier: 96:32:33:77:44:74:9C:1A:AC:AF:9F:01:1F:F8:35:B8:31:2E:C3:0A
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3C24C2F83E5508717DC8350CF494AD6E09D34F7C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1277c797-1181-445f-b798-ef72bbfc284c.roa
Signing time: Fri 08 May 2026 03:20:53 +0000
ROA not before: Fri 08 May 2026 03:20:53 +0000
ROA not after: Thu 06 Aug 2026 23:59:59 +0000
asID: 14618
IP address blocks: 2a05:d074:e000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:24:c2:f8:3e:55:08:71:7d:c8:35:0c:f4:94:ad:6e:09:d3:4f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 8 03:20:53 2026 GMT
Not After : Aug 6 23:59:59 2026 GMT
Subject: serialNumber=e7694e9e4182d7b5e215b7ced79f6f98217788cc990c539b5bef54a891c3901f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:28:75:d3:49:61:16:e4:5f:4d:64:16:b6:25:
f4:34:bd:ce:1d:01:6e:5a:2a:c8:31:f9:30:11:ad:
8e:d0:43:56:5a:23:90:21:17:33:3b:34:f0:95:1e:
8e:58:0c:0b:21:d6:21:f9:24:b6:3d:34:c7:b7:40:
df:ba:ff:5c:05:be:2e:15:9e:5a:1d:83:4a:8e:bb:
a1:68:2a:64:eb:ad:54:92:a1:91:2c:99:a7:fa:27:
a4:2f:b2:bc:a0:38:af:1c:43:5b:9b:dd:25:5c:33:
15:07:be:e6:c9:77:a7:2b:00:32:89:b4:d9:f3:17:
34:e4:45:da:8e:a7:4c:93:92:57:04:8e:67:2c:1d:
0e:32:c9:ff:c5:74:5a:93:1c:8e:c8:df:61:91:20:
fd:d0:46:cc:8a:d8:58:70:77:7e:75:8d:1e:de:c2:
22:8d:8d:0f:0e:c4:c2:2f:16:a8:46:3c:bf:e1:8f:
ca:45:f0:49:1b:22:e1:f0:55:97:de:01:8e:b6:d7:
64:3d:dd:93:d1:8a:89:b4:10:bb:a7:28:41:1b:f0:
25:c7:7d:19:95:60:3b:d5:8a:f2:71:85:10:d8:9b:
9f:b7:c7:c2:0e:cc:e8:93:a6:af:72:a0:9a:ae:a2:
96:1d:27:8c:50:11:00:9c:09:ad:e5:e1:a0:5a:2f:
5c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:32:33:77:44:74:9C:1A:AC:AF:9F:01:1F:F8:35:B8:31:2E:C3:0A
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1277c797-1181-445f-b798-ef72bbfc284c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:e000::/40
Signature Algorithm: sha256WithRSAEncryption
14:32:2f:5c:92:b8:b5:56:41:03:3c:cf:ad:b7:47:87:51:1e:
15:a6:d3:3e:6b:28:8e:b1:76:c0:c9:24:a0:5d:a5:00:32:34:
c3:ec:4b:06:f8:a2:25:78:5d:6f:ce:7e:02:f4:eb:f5:23:b8:
c3:ac:c7:7b:16:0e:1a:bb:b1:77:79:ab:fa:53:7a:e3:ad:77:
d1:5d:73:3c:56:30:e4:36:38:92:8e:42:62:d0:90:a7:d6:fe:
b5:6a:d6:d6:59:e2:71:59:7d:2e:c1:32:78:d8:09:b6:4d:3f:
1e:b8:f4:b9:e1:d6:f9:10:b2:b6:2a:d4:da:49:d5:d6:d5:b7:
bb:13:ba:24:ef:73:d4:9f:f2:ff:04:be:c3:90:e8:99:d8:11:
52:7e:5c:d9:d0:f5:e6:bc:ca:75:fc:d5:ad:68:14:46:9d:66:
7e:1a:a5:08:ae:d1:33:ac:0d:b8:67:1a:d9:ef:a6:57:f4:88:
b1:fa:59:54:de:1c:99:e9:72:a2:b3:6c:a4:67:79:49:6a:e0:
1b:7c:79:97:ad:83:50:88:a3:a1:d3:04:f4:82:6b:a4:ef:07:
36:48:7f:49:9d:09:4b:4a:d9:68:19:93:a2:26:9b:08:18:93:
5c:ef:5c:0c:a2:3d:e4:09:60:cb:d9:f0:ed:18:af:2c:d9:7e:
ba:1c:d4:37
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUPCTC+D5VCHF9yDUM9JStbgnTT3wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNjA1MDgwMzIwNTNaFw0yNjA4MDYyMzU5NTlaMHoxSTBHBgNV
BAUTQGU3Njk0ZTllNDE4MmQ3YjVlMjE1YjdjZWQ3OWY2Zjk4MjE3Nzg4Y2M5OTBj
NTM5YjViZWY1NGE4OTFjMzkwMWYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOsoddNJYRbkX01kFrYl9DS9zh0BbloqyDH5MBGtjtBDVlojkCEXMzs08JUe
jlgMCyHWIfkktj00x7dA37r/XAW+LhWeWh2DSo67oWgqZOutVJKhkSyZp/onpC+y
vKA4rxxDW5vdJVwzFQe+5sl3pysAMom02fMXNORF2o6nTJOSVwSOZywdDjLJ/8V0
WpMcjsjfYZEg/dBGzIrYWHB3fnWNHt7CIo2NDw7Ewi8WqEY8v+GPykXwSRsi4fBV
l94BjrbXZD3dk9GKibQQu6coQRvwJcd9GZVgO9WK8nGFENibn7fHwg7M6JOmr3Kg
mq6ilh0njFARAJwJreXhoFovXK8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSWMjN3
RHScGqyvnwEf+DW4MS7DCjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MTI3N2M3OTctMTE4MS00NDVmLWI3OTgtZWY3MmJiZmMyODRjLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HTg
MA0GCSqGSIb3DQEBCwUAA4IBAQAUMi9ckri1VkEDPM+tt0eHUR4VptM+ayiOsXbA
ySSgXaUAMjTD7EsG+KIleF1vzn4C9Ov1I7jDrMd7Fg4au7F3eav6U3rjrXfRXXM8
VjDkNjiSjkJi0JCn1v61atbWWeJxWX0uwTJ42Am2TT8euPS54db5ELK2KtTaSdXW
1be7E7ok73PUn/L/BL7DkOiZ2BFSflzZ0PXmvMp1/NWtaBRGnWZ+GqUIrtEzrA24
ZxrZ76ZX9Iix+llU3hyZ6XKis2ykZ3lJauAbfHmXrYNQiKOh0wT0gmuk7wc2SH9J
nQlLStloGZOiJpsIGJNc71wMoj3kCWDL2fDtGK8s2X66HNQ3
-----END CERTIFICATE-----
Generated at Wed May 13 00:15:18 2026 by rpki-client