Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57f409e2-1453-42c2-9a84-d3ea974306e8.roa
File: 57f409e2-1453-42c2-9a84-d3ea974306e8.roa (raw, json)
Hash identifier: 8iP1WOuXvX6mfM+TgOODfaSOPfutq9JvG4lcrg1xBEs=
Subject key identifier: F7:CE:68:DE:BB:44:11:6F:F0:2F:A1:81:1E:E9:BD:A8:59:AF:1A:68
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 646F61112B4D6A45214225502607EE81924BD3F7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57f409e2-1453-42c2-9a84-d3ea974306e8.roa
Signing time: Sat 04 Oct 2025 00:42:32 +0000
ROA not before: Sat 04 Oct 2025 00:42:32 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff3:20c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:6f:61:11:2b:4d:6a:45:21:42:25:50:26:07:ee:81:92:4b:d3:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:42:32 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=4adbaaa77d38cb280d63c7556c9b309a715ba36f2fda852b53a8925f43927c52, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2b:0a:bf:03:d7:50:7b:cc:64:20:4f:4a:08:
d2:5e:2f:b2:84:24:ca:1f:21:66:60:ab:75:d4:71:
7b:4e:35:41:fa:53:22:ef:5a:12:62:75:b0:83:13:
a9:ee:c9:ba:71:ab:f4:91:29:17:7f:4e:5c:cd:3e:
b6:b7:8a:ca:4a:0e:01:c0:68:e1:3c:44:45:05:f6:
f4:c9:34:85:93:5d:7f:ea:0d:04:cb:fd:66:c7:61:
e3:7b:ed:e2:7c:a8:72:18:94:7b:48:83:8b:16:26:
15:42:28:4d:21:79:0e:f6:10:a2:8b:1c:4d:33:99:
4c:c5:3d:01:2a:ec:27:bc:cb:bf:05:8e:2c:7b:a6:
84:19:f3:d2:04:a0:8f:48:24:a7:1c:b1:a6:87:64:
ce:d6:bf:5f:15:fa:c2:9b:f2:75:90:15:25:fa:b0:
f6:6b:ae:42:54:0a:ad:94:c9:9a:e6:0b:79:77:7e:
9f:dc:97:e4:ac:3f:13:ea:a6:4c:03:2a:e8:75:67:
cf:d2:7b:5e:7a:7f:99:d1:c1:b9:4c:a8:9d:35:16:
46:12:10:54:a5:6b:f0:ff:8a:a8:44:5f:f9:6a:39:
00:74:28:04:44:e4:c8:6b:ff:86:c1:2c:f7:72:3c:
f5:10:dd:2f:f7:4e:d0:bc:d8:f2:ae:4e:39:1e:ca:
d3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CE:68:DE:BB:44:11:6F:F0:2F:A1:81:1E:E9:BD:A8:59:AF:1A:68
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57f409e2-1453-42c2-9a84-d3ea974306e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff3:20c0::/46
Signature Algorithm: sha256WithRSAEncryption
9a:d4:49:46:0f:50:3f:0c:b4:01:a6:28:2d:8b:b4:e4:09:28:
d9:70:2e:56:e4:8b:13:f5:25:8c:18:09:67:17:12:4f:73:2b:
1e:74:e1:88:5d:0d:a8:4e:73:85:fa:81:96:3d:1f:f6:80:32:
a7:80:1c:ae:58:48:45:f5:86:fc:a9:1b:0d:96:18:0f:03:62:
0f:61:60:2d:06:42:b9:45:40:6c:f8:70:88:2e:0d:d5:b9:d6:
a8:7f:2a:c2:ad:ee:4d:b9:7a:94:ca:2a:cd:75:8c:e6:00:f3:
2a:95:68:d0:07:cc:75:fe:95:59:16:d4:fc:44:c5:43:98:55:
6c:bb:df:cd:e8:aa:60:6b:b6:25:14:86:87:a9:24:bd:95:b0:
70:5e:ae:ed:e6:23:4a:49:26:b4:14:2a:d7:3b:45:42:61:8c:
58:7c:c2:fd:49:00:b6:3a:3e:4c:1e:3f:32:e8:f2:04:d8:7a:
d5:79:ea:fe:3b:b0:25:98:55:99:44:9e:0b:2d:29:ce:28:f0:
ee:da:69:65:65:61:37:61:53:bc:88:4b:21:b6:87:98:cd:27:
31:87:f8:92:6d:f9:07:0e:d0:9f:4d:82:a7:22:dd:88:11:12:
79:35:5c:aa:33:1e:2e:38:b3:94:98:69:2b:9c:6c:5b:a1:07:
e9:0f:16:40
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:04:26 2025 by rpki-client