Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa
File: 80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa (raw, json)
Hash identifier: F39yfDTFFEj0g5ZJs8P8kiVLnLS/6PUP5RYjs9SAakU=
Subject key identifier: CE:71:6C:2F:78:63:FC:81:90:5B:E7:18:F8:85:45:66:D5:60:0D:29
Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0
Certificate serial: 159F13A90FFC99EE1071303461874E5EFCCCB6E7
Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa
Signing time: Sun 17 May 2026 02:00:22 +0000
ROA not before: Sun 17 May 2026 02:00:22 +0000
ROA not after: Sat 15 Aug 2026 23:59:59 +0000
asID: 16509
IP address blocks: 83.118.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft
rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:9f:13:a9:0f:fc:99:ee:10:71:30:34:61:87:4e:5e:fc:cc:b6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0
Validity
Not Before: May 17 02:00:22 2026 GMT
Not After : Aug 15 23:59:59 2026 GMT
Subject: serialNumber=4369d27c0f54fc95fa1545d9f4706856f2993f9c05dc3335ca3bb40305d56a40, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cd:ab:62:65:de:7d:85:d3:0d:92:6b:f8:67:
a4:19:03:32:2a:ba:e7:69:11:5c:e3:63:2e:7f:91:
97:20:b8:58:1e:64:b5:15:8e:f3:79:c1:6a:17:56:
6b:e9:9e:65:bb:be:f2:47:61:89:48:38:88:a3:8c:
71:03:9d:ec:15:21:e0:3e:d7:d1:a0:3a:72:a0:03:
5a:44:2b:cd:2e:f1:32:43:b7:3b:5a:96:ff:28:35:
db:36:80:0a:c0:10:bd:f9:c4:02:d5:76:df:59:51:
0a:ba:1a:84:50:49:59:ec:55:88:84:38:df:c0:64:
93:51:30:93:6b:02:c6:a7:eb:5e:e6:63:50:c6:cb:
8a:75:59:34:5c:70:15:b4:c8:3d:d8:9e:66:89:fe:
20:e7:ff:66:09:93:b9:da:04:88:7f:1e:8b:db:22:
33:e4:c7:93:49:60:23:5c:19:91:12:bd:4d:88:9b:
ca:8f:f2:62:c3:b6:93:4b:49:ac:c5:c8:28:45:82:
a6:ef:07:f5:9b:39:18:49:4e:0d:46:75:40:2c:ab:
26:0b:46:8d:2a:3c:ac:e5:0c:e9:31:98:11:ad:ad:
f9:d0:33:b0:58:30:5c:fa:9c:1a:be:77:5a:bf:9c:
04:0a:84:06:41:e7:ce:ef:92:0b:51:18:13:41:9a:
b6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:71:6C:2F:78:63:FC:81:90:5B:E7:18:F8:85:45:66:D5:60:0D:29
X509v3 Authority Key Identifier:
keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.240.0/20
Signature Algorithm: sha256WithRSAEncryption
89:e1:33:66:8f:97:ca:48:01:3a:5f:17:37:56:13:b8:d4:b0:
1d:5e:60:84:3d:12:df:74:4b:c7:74:d4:79:32:db:fc:d2:78:
b6:dc:d5:14:fa:0b:5e:f6:1f:c8:4d:40:db:03:e5:4f:b6:6e:
ca:9c:8b:6b:f3:ad:80:54:6f:28:a2:4e:23:60:b4:2c:ea:ed:
19:46:bb:f6:44:80:a7:10:ba:10:14:9c:89:3c:61:f3:e8:17:
01:5a:52:ac:55:20:08:c3:75:b3:d1:49:c0:d4:46:ea:c7:87:
e3:09:3a:ba:95:87:63:cd:55:38:3b:8f:04:38:34:3a:84:03:
a1:68:cf:33:60:17:53:33:eb:74:33:8b:b2:9b:fe:56:01:64:
ae:75:e5:da:46:61:0b:3e:c7:87:38:a9:e1:33:4c:31:4c:0e:
e3:f3:7e:9b:3d:93:d7:ad:3c:13:5b:59:18:5c:f5:17:6d:ba:
52:7f:ef:42:ff:3b:b7:51:08:20:5e:07:08:5f:62:b8:d8:83:
1c:2e:dc:90:f9:5d:ea:c3:6b:de:25:17:a9:54:a0:6f:8a:e7:
75:2f:c4:fa:9d:db:88:cb:bc:2b:c5:6b:36:1d:86:ee:d2:1b:
51:17:a7:08:60:84:99:89:f7:ea:c9:fb:34:07:da:06:25:9c:
2e:2d:bb:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 16:04:20 2026 by rpki-client