Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a03dc88-1a7e-468f-a6f8-04c75ddfd98c.roa
File: 3a03dc88-1a7e-468f-a6f8-04c75ddfd98c.roa (raw, json)
Hash identifier: 1u47Gc+T0YqlmasKkDDzWEkbJEDGDfm8rlNmUHXhXLk=
Subject key identifier: 63:B5:08:62:AA:B8:7F:5D:14:41:CC:4D:C1:14:DC:D9:4C:23:83:9E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4F55DF05D02A80F095CBF750F2DE829244E79C6F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a03dc88-1a7e-468f-a6f8-04c75ddfd98c.roa
Signing time: Sat 27 Sep 2025 00:22:28 +0000
ROA not before: Sat 27 Sep 2025 00:22:28 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 35.54.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:55:df:05:d0:2a:80:f0:95:cb:f7:50:f2:de:82:92:44:e7:9c:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:22:28 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=35d0caf9e902fcfc1009171465ca2b2bc2728fcfabfe34ff3e5e820ce8cd6587, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:61:0f:bf:9d:e5:73:cd:86:10:c0:33:1f:b6:
1a:fe:a1:18:48:c6:9f:04:2b:f5:05:eb:ba:3c:8e:
2e:6f:56:de:ba:50:79:de:65:e8:27:cf:a0:fb:bd:
18:86:80:78:c5:41:58:37:6b:f4:37:ba:39:15:67:
2f:cc:23:84:af:37:ac:63:c3:41:7a:0a:0f:c8:4f:
8f:06:dc:49:7f:ee:77:b1:0f:08:1d:8e:64:bd:85:
81:9c:9a:f8:0c:f5:98:13:04:3e:41:9e:87:b4:d8:
dd:72:2e:2e:96:da:82:cd:5b:43:fc:25:ae:d6:f2:
ae:7a:06:a0:75:59:3a:79:48:5d:2a:21:20:d3:7a:
4f:89:8a:32:f9:cd:2d:42:66:9d:e6:70:b3:b7:28:
7a:65:38:48:a7:7f:bd:da:30:61:62:9e:9e:15:31:
4f:d8:07:e8:91:9f:61:a8:d1:17:8d:28:a1:41:1c:
a4:87:ed:69:91:2a:3e:08:d3:4a:82:c4:85:26:8b:
89:3f:9f:6b:48:94:bd:99:47:f0:f8:d8:3a:41:d5:
c3:3b:ad:e5:b4:16:38:00:e5:86:f8:a6:8b:9a:67:
04:0f:0a:96:5a:8d:ee:4c:24:0f:74:8a:01:63:3d:
05:00:02:8f:cd:00:ce:85:31:57:27:16:55:32:ad:
69:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B5:08:62:AA:B8:7F:5D:14:41:CC:4D:C1:14:DC:D9:4C:23:83:9E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a03dc88-1a7e-468f-a6f8-04c75ddfd98c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.54.53.0/24
Signature Algorithm: sha256WithRSAEncryption
64:c3:41:2e:6b:3e:d4:38:87:bd:61:85:6a:b7:aa:97:8d:78:
01:e2:ed:14:eb:07:cd:4c:a1:5b:d6:e2:02:c2:a6:37:d1:82:
00:2c:8f:48:1e:d8:1b:34:01:1a:92:e8:84:cc:81:fa:95:ec:
ee:30:97:f5:af:77:74:3b:bf:fa:09:b1:49:af:61:df:15:83:
36:9a:a5:43:3a:6e:41:b5:26:89:3f:fb:51:2a:ec:8b:2b:4d:
7e:d8:df:fd:a0:49:31:06:5f:a0:78:0b:88:59:46:7b:1b:ff:
5d:d6:76:8d:95:1e:d7:d3:dc:e4:49:fc:98:28:21:45:bf:7f:
44:a0:fd:14:44:a6:1e:9a:27:49:d2:25:05:58:b1:af:4b:83:
c5:90:8a:b5:a3:af:10:80:85:7c:cc:82:cf:d4:00:2d:a4:fb:
3c:51:df:c4:2e:d1:56:df:d6:4c:f2:8d:7f:de:54:5f:ec:6e:
ae:cf:7e:d0:5b:c5:ae:20:5f:94:ab:73:8b:a5:46:60:83:ed:
39:59:a7:be:f7:5b:da:59:e1:40:e3:b1:a5:06:e3:30:a2:ff:
2f:3b:d9:70:c6:d1:d3:2a:48:6e:dc:be:06:fb:2f:65:dc:94:
a9:ab:10:c9:08:69:42:7f:65:a4:2a:ff:d9:ed:9d:65:4f:d0:
95:ee:4f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:03:15 2025 by rpki-client