Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa
File: 513c0075-edb1-461e-a07d-4eb5874bd9ce.roa (raw, json)
Hash identifier: UMPervzSYSFAxSLo0z3Y3Ik1e89xOH7/3Uh4zFckH5g=
Subject key identifier: 6F:A8:82:68:44:62:49:08:BC:55:6A:18:AA:03:4F:13:7F:93:05:C8
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 204256B60AA541A8B94AC164F20956D593E5F1FA
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa
Signing time: Mon 11 May 2026 01:50:38 +0000
ROA not before: Mon 11 May 2026 01:50:38 +0000
ROA not after: Sun 09 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.160.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:42:56:b6:0a:a5:41:a8:b9:4a:c1:64:f2:09:56:d5:93:e5:f1:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 11 01:50:38 2026 GMT
Not After : Aug 9 23:59:59 2026 GMT
Subject: serialNumber=73aa084853577de89e26b5bd384b030cd520c04e8dd559a7ad195cc6941914c7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7a:89:d0:1e:02:ff:26:de:a9:4e:33:f8:a5:
3c:5a:71:2d:00:b8:37:f1:9f:72:fc:14:95:1c:40:
ee:49:8f:df:f0:2d:35:09:49:c4:35:87:85:2a:07:
2a:40:de:cd:cf:0c:38:40:bc:38:0e:f3:a8:b7:8a:
0a:e0:3e:da:98:0c:f1:6c:94:85:41:9a:e8:d6:df:
0a:e4:2c:4b:e6:8e:b2:f4:23:d6:4f:b1:4c:e5:af:
a0:99:bd:5d:de:d0:6e:02:b6:a3:16:22:b6:4a:35:
db:02:a3:95:50:1d:0b:e7:56:13:90:55:8d:b0:fe:
1e:a0:26:02:3e:7a:a7:15:8c:4b:7e:b6:36:1f:4d:
d8:ee:b5:9e:1d:3f:48:60:97:4a:9e:63:ad:e6:2f:
42:26:2b:ac:64:3f:25:87:7c:bc:17:46:dc:00:d7:
30:d5:11:c3:8e:a0:cb:e1:48:de:46:7e:f5:7c:c3:
6e:97:6b:b2:d9:d1:a4:94:db:9a:61:74:34:ce:80:
4f:39:4c:93:ec:0e:a1:69:35:7a:c1:64:58:c5:aa:
db:3c:ef:9c:86:8c:58:ca:54:f7:01:53:02:4d:bd:
d5:52:9b:e0:0c:8e:08:f9:c5:eb:3f:0a:09:39:74:
53:3e:7b:da:ab:81:10:a9:9f:6f:29:e7:ce:2c:e4:
25:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A8:82:68:44:62:49:08:BC:55:6A:18:AA:03:4F:13:7F:93:05:C8
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.160.0/20
Signature Algorithm: sha256WithRSAEncryption
07:65:d9:8c:42:0a:21:37:35:a2:73:e6:d3:91:6d:9b:16:5c:
ce:0f:0f:a3:60:9d:ed:39:e7:c5:9c:0a:b2:a5:77:98:ab:14:
29:85:6e:6a:ef:d6:e5:71:ea:20:3b:17:8d:23:7c:dd:17:04:
75:9b:93:3d:7d:da:5c:15:3c:c2:dd:89:c6:74:f3:d6:58:bb:
a3:ae:6e:bd:fb:0c:44:9a:00:dc:32:f9:2a:df:3b:10:7c:a2:
fe:43:a9:07:bb:91:09:a9:09:61:4e:c5:f6:24:a0:17:23:9a:
47:60:33:06:ab:8b:f1:f1:5e:b2:57:05:e1:93:16:df:6a:4c:
fa:da:90:26:b1:da:37:6a:2f:36:12:c8:49:3d:0d:58:09:96:
9d:83:4a:e9:b1:40:88:60:48:8a:d6:90:d3:14:f8:a3:e9:15:
35:14:8e:14:de:54:d1:78:05:11:55:a4:f9:08:96:99:f9:a0:
50:e2:fa:cd:ce:4b:03:de:a9:7c:44:78:b5:60:28:7a:1e:9e:
b1:01:e3:4c:65:24:ec:6e:eb:08:a9:f1:bf:7e:cc:85:dd:30:
34:21:1b:48:32:f6:aa:12:9b:3b:ca:6c:c4:ce:c1:12:7c:1d:
a6:d4:ae:6e:a6:f0:be:df:73:5d:20:97:13:7d:17:ff:ba:e3:
92:b8:6e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:14:53 2026 by rpki-client