Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa
File: b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa (raw, json)
Hash identifier: 5mOfrhceYhO3+xXD4jMX+hT1jVsT5GeqfPKZs8T04M0=
Subject key identifier: C0:F6:B7:2C:B3:26:DD:6A:A0:FE:9E:9F:FD:9D:48:AE:0C:AA:FE:8B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0FD8A5576B67ABD5E7EF6D270188887DB1F0B023
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa
Signing time: Fri 08 May 2026 03:30:13 +0000
ROA not before: Fri 08 May 2026 03:30:13 +0000
ROA not after: Thu 06 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 46.51.160.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:d8:a5:57:6b:67:ab:d5:e7:ef:6d:27:01:88:88:7d:b1:f0:b0:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 8 03:30:13 2026 GMT
Not After : Aug 6 23:59:59 2026 GMT
Subject: serialNumber=63b2654913b30a0dceafc31d0a1e00a143e1e9a118624109ba5680f77f07d628, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:43:9e:e0:a6:87:79:3a:11:ba:9f:1f:49:f0:
49:20:8d:2a:bc:07:02:5a:41:83:6e:72:bd:eb:ed:
d9:28:eb:be:f4:5a:db:7b:26:4a:fa:d0:ec:43:05:
c6:12:e7:04:0e:41:f1:c4:57:7b:f6:ac:50:31:1e:
d3:b7:e2:63:c0:e0:5c:fe:e2:85:db:7d:99:91:f7:
df:fa:46:12:d4:58:7f:03:b8:fb:9d:de:06:07:6a:
f2:ca:09:f7:5c:ce:c7:7f:b5:be:8e:8d:90:5e:ce:
45:78:48:82:81:3a:46:72:7f:ff:fd:d6:78:4d:24:
12:52:01:00:fb:c9:77:be:6d:63:be:a6:0b:31:56:
ef:99:2c:ac:b2:0d:a7:1a:82:86:25:39:1f:17:ec:
9c:2f:5a:4b:13:c3:ac:e7:b6:e8:e2:ca:5b:93:f8:
02:16:61:59:44:c1:1c:09:6c:44:2b:81:8e:38:f3:
57:6f:f4:8e:ea:d4:23:4c:93:fb:a9:c6:e5:29:c3:
f6:be:18:bc:8e:9d:a1:a0:95:dc:a6:bc:da:59:e4:
f6:63:1a:3f:d6:a0:93:ea:38:24:05:39:3a:04:a7:
f6:e8:27:05:94:33:44:47:a9:5d:65:9c:95:dd:ce:
77:94:3b:e4:f9:6c:b4:36:34:12:24:2f:5a:65:03:
ac:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F6:B7:2C:B3:26:DD:6A:A0:FE:9E:9F:FD:9D:48:AE:0C:AA:FE:8B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.160.0/21
Signature Algorithm: sha256WithRSAEncryption
31:91:12:49:97:2b:15:4d:10:77:3c:2f:c9:bf:cc:40:10:f4:
30:7c:37:67:48:41:5d:8f:74:87:25:8a:22:27:46:ae:d8:e4:
16:b5:6c:cd:93:3b:0b:6a:71:6d:02:0a:1b:c1:c1:97:5b:3d:
73:72:bd:f4:7f:df:89:cc:29:8a:ba:33:e9:75:6f:05:c9:ea:
c9:e3:ba:e6:07:29:5f:13:26:8e:a2:30:ce:e6:51:4b:9c:63:
cc:fc:03:60:fc:41:5f:6b:fd:fd:12:ad:0b:0c:5d:fa:83:d4:
24:bc:fb:49:b4:4c:fa:fb:da:f2:2d:57:7c:3c:24:49:4d:08:
9f:82:86:53:f4:9b:f2:d0:27:0c:24:f6:af:3f:e5:b3:03:2f:
87:39:32:d5:98:02:eb:6a:6b:eb:3a:97:91:14:07:20:5d:9c:
f6:c6:59:bd:e7:35:5a:c8:94:0b:24:a6:a1:72:05:7f:cf:07:
c0:1c:5e:b5:19:ac:44:d2:d4:9a:d6:e6:9e:fb:dd:f7:2a:8e:
6a:88:29:57:60:53:b8:6d:d6:6c:36:eb:32:c6:74:6a:e4:93:
9f:7f:e5:59:0f:5e:eb:f8:a8:64:61:1c:de:c9:e9:66:eb:09:
01:f8:b7:5a:6a:87:2f:43:a1:30:bc:a0:b1:04:d6:ac:3b:0d:
75:26:4e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:12:49 2026 by rpki-client