Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa
File: 280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa (raw, json)
Hash identifier: s9ZrYjBGX83AHGqYbR1Yx7QmieO1EmXsw/tdh5gUSuI=
Subject key identifier: EE:64:E5:3A:41:2C:7B:9C:C1:67:9B:E6:2E:2C:50:CC:88:C5:9D:84
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 644F6258ED8E1CA260C275878EF31356DE5C0136
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa
Signing time: Fri 17 Oct 2025 21:20:58 +0000
ROA not before: Fri 17 Oct 2025 21:20:58 +0000
ROA not after: Fri 21 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 174.129.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:4f:62:58:ed:8e:1c:a2:60:c2:75:87:8e:f3:13:56:de:5c:01:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 17 21:20:58 2025 GMT
Not After : Nov 21 23:59:59 2025 GMT
Subject: serialNumber=cfdff3a017f090986906e91dba94b7a732b3ff1444aa70dffd8e6a1a556741a7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:85:fe:ed:5d:15:e7:44:fe:81:3b:fc:5e:b4:
b4:77:c2:2a:e3:95:78:2c:3b:08:9a:e7:b9:90:3d:
72:03:29:3c:ae:50:c3:dd:6a:7c:67:e2:10:17:c8:
82:04:18:b2:83:f4:37:ab:9f:d3:49:b3:82:41:71:
fe:34:be:8a:34:77:93:84:36:a1:6d:39:02:ee:04:
14:98:2d:ab:5b:f5:dc:73:bb:42:5a:31:8d:9e:86:
a9:81:31:36:4f:51:7f:e4:14:07:ce:07:b4:12:52:
8a:1f:37:44:65:af:95:52:bf:7b:66:21:e6:ab:3d:
63:d5:f7:48:28:6e:c0:b9:4b:5e:44:fb:2a:a8:fd:
4f:ac:d1:8b:19:4e:ae:de:5e:a2:e8:b3:cb:87:55:
6b:1e:c6:57:0f:7c:e1:4e:a7:a3:a0:bd:a2:69:c0:
89:60:1d:7b:85:47:b2:ce:b9:57:0c:b3:1c:76:4a:
f0:65:cd:86:dc:de:b9:6d:53:d4:d7:ed:c9:a3:9b:
d4:2d:ce:30:e9:18:60:16:34:4f:b3:f1:49:4e:cc:
b0:4c:2e:e9:0b:27:2e:0e:b9:6b:98:4d:0d:57:39:
29:0a:85:41:bc:9c:28:41:ca:c9:0c:f9:7b:b2:17:
49:cc:3e:3d:53:33:92:52:82:3a:56:2e:be:4f:d6:
5d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:64:E5:3A:41:2C:7B:9C:C1:67:9B:E6:2E:2C:50:CC:88:C5:9D:84
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
174.129.0.0/19
Signature Algorithm: sha256WithRSAEncryption
46:47:81:f2:fd:e0:af:29:e1:fd:88:7c:b4:7c:61:b7:7a:0f:
bf:fb:50:b4:1a:c3:2b:c5:a8:cf:13:b6:75:cd:39:1d:e1:cb:
7e:4e:1b:8c:ce:13:14:65:81:da:42:22:74:37:43:d1:e3:5e:
e9:94:e4:d0:63:58:27:98:f3:fa:d2:c7:f7:53:11:61:69:89:
b1:6d:fe:11:52:a5:0c:49:20:6d:7f:a1:22:48:33:9c:8e:69:
78:4b:85:43:1b:a5:30:b7:9f:24:1c:ec:83:25:94:19:90:c6:
1e:76:b1:a8:34:fd:bb:39:be:08:ed:c4:77:48:23:d8:d1:f7:
9d:e2:dc:f4:d0:c9:97:78:73:5f:b4:79:47:e6:78:66:b7:e8:
20:84:12:fa:b1:90:54:2e:47:8f:43:22:34:5d:61:67:85:2f:
22:d3:57:61:64:aa:45:25:5a:29:05:aa:c3:eb:85:35:81:34:
dc:11:2e:50:63:de:07:80:29:7e:33:f1:7e:78:bd:fc:05:48:
12:21:cc:cf:dd:0f:d5:eb:53:ec:c7:6f:ef:74:a2:77:68:14:
94:12:88:f2:f0:d9:07:22:51:d5:86:6d:34:0a:d7:ae:8f:47:
d2:fc:10:a4:ca:5e:43:80:da:cf:b4:38:4e:1f:e5:8b:be:63:
62:43:ff:cc
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUZE9iWO2OHKJgwnWHjvMTVt5cATYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE3MjEyMDU4WhcNMjUxMTIxMjM1OTU5
WjB6MUkwRwYDVQQFE0BjZmRmZjNhMDE3ZjA5MDk4NjkwNmU5MWRiYTk0YjdhNzMy
YjNmZjE0NDRhYTcwZGZmZDhlNmExYTU1Njc0MWE3MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCfhf7tXRXnRP6BO/xetLR3wirjlXgsOwia57mQPXIDKTyu
UMPdanxn4hAXyIIEGLKD9Dern9NJs4JBcf40voo0d5OENqFtOQLuBBSYLatb9dxz
u0JaMY2ehqmBMTZPUX/kFAfOB7QSUoofN0Rlr5VSv3tmIearPWPV90gobsC5S15E
+yqo/U+s0YsZTq7eXqLos8uHVWsexlcPfOFOp6OgvaJpwIlgHXuFR7LOuVcMsxx2
SvBlzYbc3rltU9TX7cmjm9QtzjDpGGAWNE+z8UlOzLBMLukLJy4OuWuYTQ1XOSkK
hUG8nChByskM+XuyF0nMPj1TM5JSgjpWLr5P1l0rAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU7mTlOkEse5zBZ5vmLixQzIjFnYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzI4MDE1MGE5LTI4Y2YtNGE2MC1hZTY4LThjMGNmM2ZlNjRkZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAWugQAwDQYJKoZIhvcNAQELBQADggEBAEZHgfL94K8p4f2IfLR8Ybd6D7/7
ULQawyvFqM8TtnXNOR3hy35OG4zOExRlgdpCInQ3Q9HjXumU5NBjWCeY8/rSx/dT
EWFpibFt/hFSpQxJIG1/oSJIM5yOaXhLhUMbpTC3nyQc7IMllBmQxh52sag0/bs5
vgjtxHdII9jR953i3PTQyZd4c1+0eUfmeGa36CCEEvqxkFQuR49DIjRdYWeFLyLT
V2FkqkUlWikFqsPrhTWBNNwRLlBj3geAKX4z8X54vfwFSBIhzM/dD9XrU+zHb+90
ondoFJQSiPLw2QciUdWGbTQK166PR9L8EKTKXkOA2s+0OE4f5Yu+Y2JD/8w=
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:24:21 2025 by rpki-client