Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa
File: 75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa (raw, json)
Hash identifier: juuBqs0qpwoIweTqTI736plz0sFpVAzCwZO1qGpHy1c=
Subject key identifier: CD:F2:9B:C5:3C:27:A4:8A:08:FF:C3:1A:84:80:1A:D9:74:C6:B5:C8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2609F945A5DF8768DD00A9EDE020F2E18965030D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa
Signing time: Wed 01 Oct 2025 00:03:02 +0000
ROA not before: Wed 01 Oct 2025 00:03:02 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 204.15.72.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:09:f9:45:a5:df:87:68:dd:00:a9:ed:e0:20:f2:e1:89:65:03:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:03:02 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=7fd5c1a1111030ff7ad0d336f2a69a2a4401a8c7fdd18b68332d88bd93ec55c6, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8a:a7:5f:ad:78:91:e2:46:7d:54:aa:2e:70:
eb:45:4e:1c:0f:1a:82:6b:f5:1e:ca:6e:0a:10:1b:
2e:bc:2a:5d:ad:20:d3:f7:4c:db:6c:94:45:03:25:
06:95:4d:66:39:d8:2e:93:44:3e:13:27:eb:a1:c8:
b4:c8:b2:b0:3c:6a:14:26:07:d3:fb:4c:d1:d6:85:
2c:24:d4:6f:03:ff:83:1c:84:c2:5f:e7:1d:29:71:
36:39:ba:58:8a:af:2c:c9:90:f0:ed:e5:a5:38:1b:
0d:ae:28:99:4f:be:54:af:83:7f:c3:16:03:84:a9:
f5:43:77:f6:0c:83:68:c4:28:c3:ce:81:fd:31:77:
58:74:12:b0:f6:0e:f3:7d:e5:2e:d1:3e:75:b0:59:
37:af:e9:23:c0:ed:9c:a3:cb:8a:90:80:7b:7f:62:
96:56:f7:ad:af:f9:73:0e:19:bb:8c:52:94:e6:47:
ea:f4:5e:e6:be:d2:d1:e7:1d:c0:83:12:97:6c:a9:
b1:e7:c7:a2:7f:bf:1d:df:2f:3f:32:ab:b7:30:9c:
72:d5:c0:00:eb:26:dc:35:19:d6:07:12:86:0f:cf:
0f:47:1c:fe:96:bf:e6:f5:5f:07:dc:5f:2c:db:c5:
c0:b5:f7:6a:41:a1:3b:26:77:8f:28:73:8e:ff:3f:
72:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F2:9B:C5:3C:27:A4:8A:08:FF:C3:1A:84:80:1A:D9:74:C6:B5:C8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.15.72.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:12:ba:7a:06:b1:57:aa:45:2a:c4:89:8a:50:ba:4d:28:e5:
1c:18:67:56:73:dc:61:a3:0d:40:6b:04:84:de:06:19:f5:10:
a1:45:cd:95:71:c8:87:0b:7b:27:68:29:d6:44:20:35:4e:df:
26:b4:a6:83:54:79:45:00:bb:48:09:00:01:f0:bb:a8:dc:85:
56:96:7b:fa:f1:33:46:50:12:4b:e6:70:a2:02:ce:e3:f3:df:
4c:9b:e6:fb:68:77:9c:f9:64:59:a7:0e:3f:99:57:eb:5e:57:
36:2b:67:90:b7:79:82:da:6c:a4:62:ac:2c:e2:b6:35:68:9e:
6a:bf:92:cd:3b:7b:92:98:65:23:fc:8e:e3:1a:93:2f:45:08:
55:54:5f:c1:a9:98:99:94:fa:fe:71:76:53:60:35:3b:3b:6e:
bd:bd:39:46:e9:2a:d7:c8:e7:c1:3a:c7:bd:36:ad:3a:68:89:
6f:12:15:ed:2d:2d:49:09:b4:6c:e6:e3:98:93:3b:c8:56:57:
1b:f3:6a:2b:b9:ed:a5:e6:c4:62:fe:c8:39:0d:12:5b:2f:eb:
bc:e2:96:f2:32:ec:f3:12:95:53:13:43:10:75:a4:13:5a:64:
0f:58:da:f0:60:34:5b:ca:79:5d:44:5f:f9:54:31:f5:e6:2d:
da:36:b8:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:03:45 2025 by rpki-client