Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa
File: 52248f94-30ea-4ecd-abe4-da5a8409a81b.roa (raw, json)
Hash identifier: taxzVGbzxI6GVi+oNylY5lD+xhvcUXaeBtFfpv57dmE=
Subject key identifier: 1E:E8:CF:5E:83:12:08:AE:EA:7F:89:E3:6E:7E:CE:4C:D7:70:63:59
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 08303CBA03FB6E34660CF5AF873C32E3ED112039
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa
Signing time: Sat 11 Oct 2025 00:41:15 +0000
ROA not before: Sat 11 Oct 2025 00:41:15 +0000
ROA not after: Sat 15 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 69.0.146.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:30:3c:ba:03:fb:6e:34:66:0c:f5:af:87:3c:32:e3:ed:11:20:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 11 00:41:15 2025 GMT
Not After : Nov 15 23:59:59 2025 GMT
Subject: serialNumber=e1feb62d9b7624fa413c020877ed9c3af637ecfec8ae84d35e0ace6fe21bc7d4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:50:8a:92:1b:48:42:4e:44:36:8d:93:c0:ff:
63:7e:c1:0b:1a:9f:c7:e0:29:6e:61:52:2d:d1:15:
7f:85:67:a9:bf:dc:2f:fe:ad:fe:bd:39:2b:bc:fa:
32:15:1e:41:79:35:3d:1e:b4:39:55:c1:e1:28:8c:
9e:cc:13:e1:ac:1a:d4:22:ee:4e:ae:66:35:6a:20:
37:60:c1:cd:7a:ff:ae:75:d2:3b:5e:99:d8:cd:52:
41:3c:4e:c3:2c:5f:6a:49:be:e5:68:88:3a:4d:0b:
60:ca:48:da:5d:d0:b8:e5:60:61:2e:7f:56:19:cc:
25:2e:ed:85:1b:ce:35:57:9e:19:3e:79:e1:cd:5d:
d6:2a:61:94:dd:56:99:18:90:f9:99:c7:51:06:95:
06:31:e5:44:83:f6:fb:39:e2:e6:dd:1e:67:f6:8d:
cc:e7:30:f9:d0:e8:11:1d:a8:44:19:19:6c:87:3e:
da:83:06:dc:f6:1a:07:d5:d0:91:9c:e5:48:37:11:
25:99:34:c4:8c:d1:a6:46:f3:84:05:93:7d:6a:4a:
ce:89:93:4a:7d:6b:9e:65:3f:8e:79:af:fe:f5:da:
63:87:3e:b1:8a:d5:9b:cb:68:12:81:ad:6b:6d:7d:
f3:27:5e:09:b9:3c:b4:32:b4:86:e3:b3:16:3c:7b:
da:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E8:CF:5E:83:12:08:AE:EA:7F:89:E3:6E:7E:CE:4C:D7:70:63:59
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.0.146.0/23
Signature Algorithm: sha256WithRSAEncryption
50:dc:3e:20:8f:f5:e0:40:75:35:d5:39:46:51:30:e2:38:83:
3a:7e:3c:08:65:a4:c9:54:93:ec:5a:3c:79:1c:f6:c8:46:08:
97:61:31:7f:03:3e:9f:92:bc:25:63:a1:da:b3:1f:15:4a:29:
a3:84:fa:e5:98:16:a5:a1:0e:17:80:a3:a4:55:5e:f1:d8:df:
54:38:d4:6b:b4:f1:1b:bb:02:ce:8c:73:c5:75:96:d6:77:02:
76:3d:2b:21:e3:e2:c8:9a:01:4d:45:75:b5:1e:a8:cc:de:8f:
81:52:a6:8a:b5:5d:52:1f:9d:82:f8:b3:35:2c:21:78:17:73:
40:68:02:72:f8:78:4e:32:1a:18:df:1e:53:ec:b0:6e:f9:5d:
6f:39:2a:71:c6:ac:e6:29:f3:5a:af:0f:a6:87:f2:1c:9f:c7:
7f:af:13:76:1d:ad:d9:f5:97:21:b1:ce:9f:93:99:b4:d2:5e:
f9:2e:f4:4a:9f:76:6f:a1:d9:9d:6e:db:25:b0:93:7c:40:cf:
2f:43:f8:32:0a:fa:22:58:9d:29:34:1f:54:58:38:b4:32:83:
60:35:c6:52:87:6c:ae:9f:d8:57:24:1f:12:8c:47:0b:34:6c:
7a:67:cf:4f:e7:ed:18:1b:a4:3a:c7:c2:95:12:d8:1e:da:59:
cf:c6:69:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:10:48 2025 by rpki-client