Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6712166e-3bec-471c-a385-b21c7ca5744e.roa
File: 6712166e-3bec-471c-a385-b21c7ca5744e.roa (raw, json)
Hash identifier: +Zc1wsxwXcbLc1uMEnblwFuPQl2K2yOv8MXR9Ug6oAY=
Subject key identifier: 42:51:61:E3:EB:2D:BF:1B:E8:B1:97:2B:2F:BC:73:74:EF:76:88:E1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1C897F7034ACDAD980447AEAC1568BCF3A09BFD5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6712166e-3bec-471c-a385-b21c7ca5744e.roa
Signing time: Mon 06 Oct 2025 16:42:31 +0000
ROA not before: Mon 06 Oct 2025 16:42:31 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.18.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:89:7f:70:34:ac:da:d9:80:44:7a:ea:c1:56:8b:cf:3a:09:bf:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 16:42:31 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=94ea83f2435637c019825100ebd58dd710f6bab7dce2f2459e484940f402ee72, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:65:46:a4:f9:46:34:ed:e7:55:b9:fd:17:2b:
10:81:25:f1:99:ac:e1:44:cc:fa:a4:f6:ea:88:06:
11:0b:2d:87:90:ab:60:ee:a7:f1:c9:d7:e2:87:ff:
13:cf:66:6a:97:9c:65:de:fc:53:87:a3:d3:76:3e:
90:56:7d:85:89:91:f0:05:d7:54:94:bc:54:15:6b:
c5:e9:1f:2f:13:28:52:42:c7:aa:1c:d8:4a:54:be:
c5:06:76:87:81:70:d2:ab:b0:a9:21:60:9a:7a:62:
d9:bd:27:a2:1c:e2:a0:5d:17:b5:09:91:64:ba:a1:
11:0e:2b:9a:0e:23:10:66:08:67:ce:2f:5b:ee:46:
97:b2:9a:41:97:5e:ae:99:87:a5:88:72:d3:cc:07:
e9:0c:de:98:1d:e1:ad:fd:d3:70:cc:40:57:7f:18:
b7:f8:4d:c1:44:a5:b5:4f:56:67:9d:51:2e:9e:a5:
29:be:3f:b9:74:6b:d6:96:9c:a1:f5:6f:4d:52:7e:
72:cf:9e:3b:f5:9a:7e:12:fa:73:f0:12:64:85:ff:
80:05:10:b7:2d:05:d9:fe:21:59:d8:e1:13:c5:ac:
3d:7b:ca:e3:aa:56:56:44:14:50:76:ee:39:2e:33:
1c:c4:db:a7:df:47:71:53:56:17:e0:46:11:f7:a5:
8c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:51:61:E3:EB:2D:BF:1B:E8:B1:97:2B:2F:BC:73:74:EF:76:88:E1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6712166e-3bec-471c-a385-b21c7ca5744e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.18.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a5:41:2f:75:40:ff:82:01:e0:47:61:f5:9e:10:70:37:36:43:
e4:93:f5:4c:06:1c:e3:bf:89:6c:f5:62:58:29:8e:fb:32:af:
b2:1d:e3:b6:6f:56:a0:5f:6f:43:d2:ed:0c:6e:b8:96:16:df:
1c:40:49:5e:6d:d4:89:bf:06:07:25:be:b4:87:4a:3a:37:f6:
cf:1f:d4:6d:fb:1f:37:cd:4f:97:30:1a:67:9f:37:46:fe:36:
d8:fc:e5:b5:d1:53:30:bc:21:46:0a:05:07:58:26:19:3e:45:
6a:05:9d:35:45:e5:f5:a2:bd:34:eb:96:9f:84:e1:2b:db:35:
28:4c:fa:f0:df:60:ac:5b:f7:0f:c0:72:e5:eb:9e:82:37:f4:
38:2f:32:12:40:84:ec:06:df:36:1c:6d:d8:d6:7f:5c:25:6f:
12:be:32:a3:18:46:f2:e3:48:7c:74:9f:5d:a2:72:37:d2:0f:
2a:a6:ef:41:88:cc:ca:52:79:6d:74:11:c0:a2:0d:3c:ea:96:
b2:7b:38:cd:dc:c8:1e:e9:6e:7c:03:22:f5:d8:a7:1a:5b:c6:
6d:fe:7d:2d:18:8f:02:7e:3d:9b:6e:91:0e:21:c9:44:9a:20:
42:d0:58:7d:65:5c:dc:49:7c:7f:ae:e5:21:4a:a7:2f:09:d4:
e9:7e:b7:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:04:41 2025 by rpki-client