Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/350219c3-2e2e-4c85-9195-aa282577ecee.roa
File: 350219c3-2e2e-4c85-9195-aa282577ecee.roa (raw, json)
Hash identifier: o/fRYjs01PkQEufigzpvcyF/jQ6T9Q2/haQZaNg1fjg=
Subject key identifier: 20:2C:AA:0D:A6:5F:93:C8:1B:8C:9F:BB:2D:B8:B2:43:30:FC:65:45
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 64074DD00FE225F4C6FC202E511BC63CF8675282
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/350219c3-2e2e-4c85-9195-aa282577ecee.roa
Signing time: Tue 07 Oct 2025 00:21:36 +0000
ROA not before: Tue 07 Oct 2025 00:21:36 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 150.103.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:07:4d:d0:0f:e2:25:f4:c6:fc:20:2e:51:1b:c6:3c:f8:67:52:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:21:36 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=4dbbb453c9eb26ab5a7a704701373d13c1021c2bd04fa759cebdd7b2d9cb9b11, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:37:65:0d:89:b4:27:bb:19:9f:c3:7d:d3:cf:
4e:9e:22:cf:7c:e9:50:5d:52:da:fe:1f:15:bb:24:
21:93:68:6e:29:48:09:60:34:5b:97:cc:d9:8a:38:
c9:86:7d:1d:f5:95:5e:45:68:9e:32:ee:81:79:0a:
e8:d7:a3:7a:96:de:b0:7f:d8:dd:6b:1f:63:e6:0d:
c9:77:ad:82:d3:87:f1:9c:08:f4:77:17:3e:8b:bf:
45:fd:b1:0a:68:05:ff:02:0e:9c:be:7c:9b:26:77:
d0:56:52:08:35:0a:27:72:58:d8:75:3f:24:02:74:
86:f7:1f:f7:1f:0e:3c:3a:e0:05:b4:34:d9:d6:55:
fc:3e:c4:23:14:3e:86:a2:5d:55:2c:0b:24:1f:12:
c1:13:d9:86:07:8e:b8:dd:66:e8:f9:36:26:73:5b:
56:ef:5a:9c:55:a8:02:c7:1a:2c:f9:4c:14:e4:01:
d9:d7:9b:07:cf:d6:33:91:b8:28:d6:06:91:29:8c:
bc:92:92:0f:df:8c:54:ff:66:d6:bb:95:18:a6:de:
ff:1a:81:5a:4e:5d:a0:22:2e:e2:1a:e3:f7:e4:74:
25:8d:f4:f8:24:09:4c:d1:e2:c6:b5:34:4f:a0:42:
d3:e7:be:2d:ec:86:20:b7:b2:47:41:5a:cd:49:01:
6e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2C:AA:0D:A6:5F:93:C8:1B:8C:9F:BB:2D:B8:B2:43:30:FC:65:45
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/350219c3-2e2e-4c85-9195-aa282577ecee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
99:18:5d:00:04:ba:e1:e4:a2:e5:01:c5:b3:4c:2a:14:de:b1:
cb:91:d3:de:6f:50:de:74:47:10:48:e2:b0:10:1c:57:bf:7f:
fa:21:86:cb:ca:32:e9:f9:87:73:f5:03:50:ab:1a:7f:d6:a3:
26:4d:07:bc:ca:08:51:0b:c8:7c:4c:cd:41:b7:4b:03:6d:ae:
98:8f:40:b3:0b:a3:12:3c:ae:2a:fc:19:b5:59:53:0c:29:10:
02:a3:3c:3b:1c:e6:b2:bc:65:4c:7c:26:92:a2:ad:e1:d3:4b:
d2:68:88:3f:93:b6:7e:12:46:65:c7:92:17:e6:24:00:5a:b3:
f1:9f:42:79:7d:0a:af:ca:4e:99:1c:c0:03:f1:00:2a:d5:06:
2f:dd:71:ae:69:bd:53:f1:f5:89:66:2e:ec:8b:bd:b9:a3:86:
da:14:b2:a4:3b:c3:b5:12:cd:0b:06:d9:65:03:28:9c:db:1c:
ff:75:61:01:82:36:cf:8b:be:a8:03:9e:fd:c8:a4:db:fe:55:
d7:3b:0c:43:80:ba:dd:fb:d2:0c:da:55:73:75:eb:c4:12:1f:
9d:fb:26:99:6c:28:a6:01:a3:a6:e1:2e:e1:9a:31:9c:0d:d6:
67:62:4d:18:c5:d5:68:4e:b4:82:7a:a4:6b:d6:bf:78:18:5f:
b3:88:e3:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 04:49:34 2025 by rpki-client