
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
File: e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa (raw, json)
Hash identifier: sWGgle07xL0rgHMpZurEgY6Ftvt7qIYZ7T0/QmNB4U4=
Subject key identifier: 78:98:7C:CC:CF:00:D3:5E:99:46:C8:32:66:C2:58:6E:4A:7E:7A:75
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 3238F050837E217F4BE12BACB8ADE8F6A6664A64
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
Signing time: Fri 26 Sep 2025 20:10:16 +0000
ROA not before: Fri 26 Sep 2025 20:10:16 +0000
ROA not after: Fri 31 Oct 2025 23:59:59 +0000
asID: 16509
IP address blocks: 193.57.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:38:f0:50:83:7e:21:7f:4b:e1:2b:ac:b8:ad:e8:f6:a6:66:4a:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 26 20:10:16 2025 GMT
Not After : Oct 31 23:59:59 2025 GMT
Subject: serialNumber=3f281d409afbb3fc8f8bd4463d35c7c76b6ed8b026fae4ff669a11f2a8b757a0, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d2:52:c8:58:a7:43:94:78:77:ff:c7:82:1b:
10:b3:ba:f2:c2:ca:77:36:ca:dd:a5:56:ef:0a:fb:
ee:89:eb:a4:7e:20:a8:b2:5b:9b:15:05:af:94:cf:
da:88:ec:d0:00:ce:95:4e:f2:40:2c:28:e5:6e:8b:
81:62:d1:1a:16:5a:f8:39:b8:73:82:41:88:e4:d8:
b3:8a:1f:5b:f9:96:e8:52:45:c3:0f:81:82:88:cc:
01:39:6a:4c:2a:54:63:3d:eb:9c:c9:69:a2:e0:d5:
45:c9:57:57:99:bf:f8:fb:8e:6f:f0:71:d1:9c:43:
81:6f:cf:e7:31:1c:bd:71:71:07:c8:79:f8:16:cc:
83:c1:fc:a8:b8:8d:3f:58:f8:4f:ff:01:74:59:03:
df:a0:d4:e3:46:d3:97:a9:79:a6:c8:54:40:bd:79:
9a:46:47:2f:a9:68:1d:15:c9:9d:09:9c:f1:e3:92:
ce:5f:73:9f:12:4d:53:4f:18:8b:a0:50:ec:c3:33:
86:44:1b:d5:a5:dc:ba:d3:44:3a:52:cb:49:e8:b0:
17:8e:d5:5a:8a:11:6e:0e:b4:5f:fc:00:59:de:00:
56:06:22:fb:f8:32:39:73:c2:c4:1a:77:e1:bf:97:
ac:00:7d:40:15:0c:09:71:94:3c:5b:cb:dc:df:3f:
16:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:98:7C:CC:CF:00:D3:5E:99:46:C8:32:66:C2:58:6E:4A:7E:7A:75
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.181.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:03:90:c5:57:9e:f0:e3:0a:8d:4e:72:17:11:2d:bb:f9:dd:
fa:2d:6d:65:ec:97:77:18:df:cf:dc:8b:19:03:a6:a9:53:82:
8b:11:a5:7b:35:a6:b7:e1:ca:c9:f7:6c:2c:dc:0f:78:0d:61:
d8:4c:5b:7b:c0:0a:51:fb:9f:29:f1:e0:50:95:40:09:b1:db:
f3:25:9c:77:0d:0a:2e:04:5e:87:d7:4f:e6:66:42:28:6e:ea:
9e:89:da:d7:27:51:5b:81:10:59:a7:7a:fb:eb:21:93:8d:23:
d0:4b:c9:52:1f:43:cf:e6:3b:85:40:50:4b:01:04:84:f0:19:
d5:ac:a6:a4:63:7c:31:0b:48:fc:de:f7:2a:7f:ad:d9:4e:5f:
32:e4:38:1f:38:2c:13:df:e6:21:38:27:46:d4:98:7c:a8:14:
37:ea:1a:39:2c:f6:7e:62:17:82:fb:3c:03:ba:2e:94:be:23:
df:41:f1:33:09:53:51:5c:18:14:26:dc:53:77:99:c5:89:cc:
a0:01:3b:79:a5:6f:51:81:0c:eb:b6:6b:66:5f:9a:24:b1:37:
d1:18:28:aa:ea:4a:39:d7:f9:44:57:a3:fb:74:f2:68:82:45:
91:c8:a6:c8:40:63:c6:93:18:8e:3f:e5:0f:7e:79:b8:b7:ff:
a1:23:08:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:45:07 2025 by rpki-client