Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa
File: 0cafe4c1-68f8-4701-986b-5ec06431a231.roa (raw, json)
Hash identifier: ZLS4tWo+EtUKqkjmOmZhysKYd38AL+7/PgPL8A94wwQ=
Subject key identifier: 14:1A:A0:97:06:55:2D:17:E1:68:2B:C2:17:A2:AE:B5:69:FD:C9:EA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 730FA4392082DE028D47E11116A8C52CA8FDD5EE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa
Signing time: Sat 18 Oct 2025 02:31:07 +0000
ROA not before: Sat 18 Oct 2025 02:31:07 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 54.25.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:0f:a4:39:20:82:de:02:8d:47:e1:11:16:a8:c5:2c:a8:fd:d5:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 02:31:07 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=e91a49b02c2a39d849919eb7a79e5e1282ce0f2eab8bab617a3e5f1623c44872, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bb:a6:30:d3:97:6a:a2:35:e2:13:08:ed:c9:
57:75:20:8a:fd:e4:c1:84:e4:83:bd:1c:e3:f4:cf:
e4:25:4c:2b:26:2b:7d:02:b5:ba:82:70:cd:1c:cb:
da:24:58:f7:75:a6:d9:27:a9:8c:74:d9:3c:00:85:
2b:8c:60:98:55:71:55:7c:48:ca:3b:bc:4f:ce:21:
2b:8e:67:8e:d9:1f:aa:ff:1d:98:06:e9:bf:68:6c:
ff:f7:04:69:48:80:5c:f2:e5:01:48:4e:35:5c:38:
b1:35:ef:03:fd:1e:64:a9:4d:e3:d1:02:80:35:01:
df:61:fe:53:b5:28:1b:4a:69:10:8e:91:87:0d:00:
94:5f:88:93:e0:60:a6:fc:96:4d:c8:74:80:dc:1a:
f8:ed:b0:42:9d:b4:7d:64:ba:25:83:0b:54:95:18:
64:b6:b9:bc:86:ff:02:f7:42:bf:23:c9:d4:c5:53:
b4:e4:10:60:2f:a8:4d:e2:72:32:00:3a:1b:3d:e6:
ea:8a:ab:75:d2:68:a6:e0:49:7d:e6:32:08:c9:f7:
b0:a7:d2:e8:60:4f:7c:0f:7b:c7:93:18:1c:4c:c4:
3a:93:ed:05:19:fa:c1:89:67:6b:bd:16:44:dc:01:
a2:ce:bb:23:68:a0:fe:6e:e3:a6:ba:c1:99:d1:78:
a9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:1A:A0:97:06:55:2D:17:E1:68:2B:C2:17:A2:AE:B5:69:FD:C9:EA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.25.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d7:dd:c0:19:47:36:3f:8f:40:17:e8:fc:7c:32:7c:a1:72:10:
72:9c:c8:08:3f:93:d9:29:1f:f9:78:ab:48:27:27:56:41:02:
7c:c1:07:a3:65:06:04:5d:c7:ae:86:6b:e6:fc:e6:cd:6d:c9:
f4:4b:95:85:b3:3c:d3:e7:27:1e:44:78:1f:5e:63:ae:f8:86:
b1:41:d1:8b:53:e8:54:9c:52:ce:56:2c:39:73:19:00:bd:36:
27:8f:f7:e7:8f:7b:98:2f:94:89:4c:f3:e8:a8:a8:b8:3d:16:
9e:2f:cb:ff:e9:f2:02:1b:41:ce:79:cb:04:1a:5b:68:a1:23:
67:50:fa:a2:d1:0f:05:85:d6:c6:89:8d:b0:54:29:7d:69:ab:
4d:57:1c:65:92:4c:71:f8:e0:e4:05:e8:e0:26:75:03:10:68:
52:09:cc:e9:b8:cb:61:f6:7b:0d:e0:6e:09:38:d2:cb:d0:10:
0d:3a:25:d1:12:b6:08:53:41:e4:ac:8a:94:08:ba:32:fe:cf:
7d:a2:b2:1d:e2:9d:b4:dd:3f:b2:66:00:6f:d2:0c:3b:f9:aa:
21:03:6d:44:02:97:4d:05:b1:ad:4a:2c:7c:1f:7c:51:1b:dc:
88:39:37:4a:29:5e:cb:89:aa:85:bc:f6:fd:d6:39:a8:03:78:
81:74:84:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:35:22 2025 by rpki-client