Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
File: eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa (raw, json)
Hash identifier: QF8cALpHdIwSx3XmZlxTKy+IylEh7NPo8PHvUnfdewg=
Subject key identifier: BF:58:8A:94:28:38:D5:C5:EA:DE:D2:D4:AD:82:6A:33:18:F1:3D:CC
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 35151C22EA0310C473602F54652AB395C9577FCA
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
Signing time: Mon 11 May 2026 01:50:37 +0000
ROA not before: Mon 11 May 2026 01:50:37 +0000
ROA not after: Sun 09 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.0.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:15:1c:22:ea:03:10:c4:73:60:2f:54:65:2a:b3:95:c9:57:7f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 11 01:50:37 2026 GMT
Not After : Aug 9 23:59:59 2026 GMT
Subject: serialNumber=90f16bd27b7e74ad2e07ce2a76fa80f3523412cedb360c805bd0e88f7e394689, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4e:ef:b3:f6:9e:be:7c:2b:33:1b:d2:42:1a:
5a:91:1a:c9:84:f6:ad:1c:65:d5:f8:f7:2a:a3:ea:
2b:59:26:91:d9:a7:d5:6d:84:94:c4:cf:66:b2:86:
f7:f4:34:5c:42:a8:41:14:78:fc:91:50:3a:e8:a3:
c6:9d:6d:c8:3e:54:11:55:c1:45:43:15:67:ff:4c:
8c:25:20:3f:df:22:37:1d:6d:85:74:d6:82:3a:9e:
a5:17:4f:96:72:35:42:c5:5e:8b:2d:97:9d:5f:6f:
66:a0:97:a0:db:51:b9:65:79:57:c4:1a:4b:f1:18:
92:dd:39:2c:36:01:98:99:54:36:71:3d:89:51:7e:
cc:2f:40:7f:24:7d:57:5c:b1:87:58:4d:a5:32:d6:
74:b1:b5:c2:96:b8:0b:5e:90:18:a6:89:e0:ab:02:
e1:07:66:c9:4e:cb:1f:63:bd:22:12:9a:7f:88:60:
68:7d:96:fe:3a:68:bf:dd:d5:dc:c5:1c:3e:63:33:
a1:f7:ed:42:71:a5:a2:94:f5:de:cf:5b:b9:0e:40:
78:c5:c2:c3:53:0d:ce:eb:d5:f3:02:9c:1f:68:27:
5e:6d:87:53:94:84:6e:e8:52:c4:82:df:59:a5:6d:
ff:e0:e0:8f:2e:1c:b2:41:bd:7b:24:d6:95:0c:ac:
e5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:58:8A:94:28:38:D5:C5:EA:DE:D2:D4:AD:82:6A:33:18:F1:3D:CC
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8c:a4:e1:27:f1:c9:ff:e2:08:fe:0e:d4:ff:61:4a:40:f6:89:
fc:dd:88:49:66:58:c7:3b:6b:07:f2:c8:d6:e2:7c:e5:a3:9d:
1c:99:d0:2f:71:89:2d:54:70:dd:6b:6d:b3:c7:1a:0e:17:a4:
a3:34:b5:9b:96:29:69:cf:37:ec:30:82:80:7b:02:dc:f0:64:
04:ee:c7:cf:d5:dc:0e:4a:db:c6:80:2e:87:d9:db:d9:b5:a7:
29:10:0b:d6:19:10:5f:54:c7:99:9b:30:59:ef:4a:ad:59:ac:
d9:ba:0f:c8:0d:19:1a:de:55:56:0b:de:9d:5d:0e:64:d5:be:
41:68:b5:bc:af:d6:b7:4b:8f:1e:9e:ad:f9:ca:5c:1f:83:e2:
6c:21:cb:72:b2:0c:59:d7:9e:44:2f:fb:c8:e7:ec:f6:74:55:
e8:7b:d6:90:97:07:bd:60:a5:b7:a0:38:9a:3c:55:f8:d3:65:
67:96:e2:94:8c:93:cb:f0:4a:67:5d:6d:9c:ec:6f:0d:24:59:
a0:e4:19:db:e1:5d:2a:48:db:53:60:fd:08:dc:27:56:c6:bb:
c6:ee:95:8f:18:a4:40:c4:e0:76:21:cc:02:d6:27:20:2d:de:
24:8d:c6:74:93:62:f8:a1:c5:bb:53:45:0a:8d:f8:6c:fb:36:
33:6b:0a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:17:22 2026 by rpki-client