Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa
File: 314c7065-54b1-44ae-a830-288d71b28af0.roa (raw, json)
Hash identifier: lau33azz9EHZV6hZ47N+1alW3LHNZ1la6/+8Xdmvyhw=
Subject key identifier: 21:4B:E7:CA:9B:E7:54:6F:30:D0:26:9D:DF:0E:79:0B:F0:3C:A1:C1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 130B212C31842EF3A4ABC9182B20AE92EA2B1076
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa
Signing time: Sat 18 Oct 2025 03:21:37 +0000
ROA not before: Sat 18 Oct 2025 03:21:37 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 54.25.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:0b:21:2c:31:84:2e:f3:a4:ab:c9:18:2b:20:ae:92:ea:2b:10:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 03:21:37 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=29f9c145e573f19e9a8583872682c1da8d0d6b804c437ed788a042c042f316ee, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:52:79:2b:d4:f1:3f:4f:c2:9e:ee:6e:e6:5d:
18:09:97:26:0b:b1:3f:79:26:3e:8d:bc:3c:d6:15:
45:59:8a:2a:b5:06:5a:ce:b9:28:ef:fd:2a:27:be:
c0:b8:e2:79:1f:89:3a:af:1e:44:ba:0a:b2:2d:b8:
cc:eb:57:79:a8:8d:cb:9d:00:f1:8f:90:ef:cb:2c:
3c:28:2b:fb:c7:6c:18:ec:85:31:85:ce:0c:ca:e3:
5e:d3:d4:25:27:45:91:81:5d:ff:2e:10:24:e8:05:
76:cb:e9:bd:26:fc:7a:20:f3:eb:89:51:68:01:d0:
2a:0d:f9:77:c6:a5:68:ac:9c:4f:ff:ed:ce:4a:07:
5f:f4:3b:8a:33:d0:08:7c:88:1e:b7:f3:e5:fb:97:
d9:99:93:85:3e:62:71:d2:f4:72:81:e3:20:dd:2d:
3c:72:f1:6c:b8:00:2d:b5:d2:dc:88:f7:b6:9b:d2:
ce:34:0b:a0:35:aa:81:c8:b2:b0:51:5a:fd:72:6c:
f6:a9:f9:07:05:5a:84:22:3b:0c:8a:6e:fd:04:4d:
69:5b:cd:c4:67:2d:ef:33:5e:f0:24:84:95:57:18:
16:48:b1:d8:7d:c2:b2:b8:58:12:ac:03:9f:52:2f:
b5:57:4c:dd:2c:0e:3d:4d:ab:82:42:89:9b:12:d5:
61:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4B:E7:CA:9B:E7:54:6F:30:D0:26:9D:DF:0E:79:0B:F0:3C:A1:C1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.25.67.0/24
Signature Algorithm: sha256WithRSAEncryption
65:8a:ed:f8:a1:ea:f9:75:b2:14:36:ee:50:4c:50:3e:83:9e:
55:25:4c:5f:b9:6e:8d:d6:84:37:09:f6:92:7d:8b:46:c6:4d:
de:52:57:86:9a:64:b6:d5:39:97:9d:1c:da:00:29:a9:94:19:
86:95:1b:79:d5:53:e1:10:a6:81:9e:65:f1:93:7e:ad:19:20:
b6:75:44:f3:29:bb:2f:4e:ff:6b:4a:75:31:02:5f:e0:2a:6b:
61:2c:9d:3e:41:80:c8:94:a0:55:60:6e:a9:ac:17:d0:b7:83:
55:89:d4:ec:02:da:12:22:3a:8f:a7:da:a3:e3:c5:c1:b9:99:
c1:fa:09:f2:e9:e7:19:c6:2e:48:40:12:bc:1e:cb:d9:d7:cb:
b5:e8:ab:06:42:7b:2d:d5:a3:bc:88:2e:a0:5b:a5:af:01:a8:
74:96:44:99:3b:ba:14:26:4b:f4:27:04:4a:e2:07:f6:63:0b:
da:ad:89:c8:ab:4d:55:57:2a:0e:40:52:4d:6b:8b:db:a1:a6:
7f:d2:81:b3:37:69:a8:94:16:ec:81:9b:0c:8c:f6:34:4e:23:
96:7e:61:4e:4d:4e:07:9f:73:2e:b6:2f:2e:f5:08:b9:a7:6a:
f7:a3:49:aa:23:ba:80:06:53:86:40:be:ad:60:8a:08:f7:7f:
d5:7c:2a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:10:25 2025 by rpki-client