Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa
File: 5e83772b-20e7-44cd-b060-03d5950ee025.roa (raw, json)
Hash identifier: RvLg/pKHjrW78GykEoj3p8N5/Oyf5iOdpizbWdE1b34=
Subject key identifier: 95:7A:FC:30:FB:0E:0F:29:0C:8B:18:71:95:CD:D9:87:2B:DD:8A:AA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 26010B7F1576029F2DED168F029B42408F554268
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa
Signing time: Sat 27 Sep 2025 00:21:33 +0000
ROA not before: Sat 27 Sep 2025 00:21:33 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.149.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:01:0b:7f:15:76:02:9f:2d:ed:16:8f:02:9b:42:40:8f:55:42:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:21:33 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=75b4f2db3d43f4b0b1187b99a4e6cba4b9a86d32b8a92f6f19c57731ef7ffe2e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7b:84:63:b2:3a:be:98:3d:55:34:ef:9c:dd:
10:a4:65:bb:84:c9:51:8f:4f:c1:07:8d:9d:5d:97:
02:99:6a:c4:e5:23:a2:c6:47:e7:20:1b:dc:5d:56:
04:47:75:07:df:44:19:5d:63:0d:6f:06:89:2b:e4:
50:7f:2a:17:ba:dd:cf:62:f1:94:ac:c5:98:bf:ef:
9f:7f:d6:47:eb:97:e3:52:a5:02:88:1c:ac:6e:6c:
d8:13:2e:d7:8f:0d:ec:7f:b7:de:70:94:41:d9:e9:
bd:4e:51:2c:da:28:21:23:0b:7f:c5:8b:e4:a4:7a:
04:8e:3b:90:f5:e4:35:c9:dd:c4:f5:ce:7c:7d:0c:
8f:60:36:95:29:ca:00:ab:c0:66:84:8b:55:79:90:
22:e6:af:d9:60:96:90:1c:b9:39:a9:8f:65:5c:12:
23:81:21:8c:9c:e6:78:f7:98:10:8a:1d:c8:c2:f8:
57:ec:e0:df:c3:07:1a:bc:cc:93:9c:07:db:12:5c:
4b:a1:ce:d7:fa:45:0a:0a:ae:e6:3c:9f:2b:52:94:
ac:ae:32:75:ca:b0:94:3d:ca:cd:b5:6e:fd:0e:fc:
ad:ea:fe:76:db:01:09:d4:ea:c3:b7:61:13:9b:cc:
8c:f5:a5:06:2b:08:fd:9e:c9:9d:9f:26:c0:df:43:
b1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7A:FC:30:FB:0E:0F:29:0C:8B:18:71:95:CD:D9:87:2B:DD:8A:AA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.149.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:d7:33:4d:35:9b:7a:df:8d:d9:ea:5d:93:22:70:aa:53:01:
a3:8e:e8:09:5a:21:e7:a1:4a:fc:1c:cd:17:7c:0e:4f:a4:90:
83:9f:75:0a:5c:70:af:5e:2f:d7:d0:01:4b:5e:fb:cb:d9:8a:
bb:da:6a:a5:53:33:d0:7b:40:59:af:50:1f:bb:7c:78:7d:a6:
a0:a4:df:6e:10:ba:82:83:4a:e4:03:51:bc:ca:99:68:b8:72:
1f:0a:61:39:c5:15:b1:7e:e1:7c:7f:c1:ac:0b:56:6a:b1:96:
23:0c:5f:df:e6:0e:6d:e4:c4:32:eb:44:a5:18:28:83:f4:05:
b8:fd:10:d0:9b:2b:41:e6:ef:b9:bb:88:ae:2b:0d:76:4f:32:
06:e2:5e:4b:68:db:46:4c:db:b2:5d:e9:39:ac:dc:a6:da:e8:
63:eb:c4:ff:f9:4e:09:a3:10:bb:17:99:bc:83:68:03:a7:72:
89:c1:6d:68:bb:84:d6:fc:dc:26:ec:f6:2c:31:b9:0d:ff:56:
79:d8:64:e9:cb:a6:6d:9e:20:00:47:93:9c:d5:53:76:1d:05:
15:8c:a8:40:5d:c0:69:88:3e:d1:7a:03:f8:17:43:cc:8e:3c:
5a:a4:8f:61:64:4f:c2:8c:06:a4:53:3e:61:ef:a1:1e:24:0b:
ef:2f:46:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:04:39 2025 by rpki-client