Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa
File: 8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa (raw, json)
Hash identifier: J4vsPCJWhEvzB6x3AWgwPz00ekE5E9g+/wGfUt4Vv1M=
Subject key identifier: 20:7D:2F:D2:5A:ED:07:19:ED:49:98:7A:7A:49:BF:04:8F:A0:9C:5C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 07B2BF0A21E096C1CDFC802F75608F60F662FCE8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa
Signing time: Sat 18 Oct 2025 04:51:32 +0000
ROA not before: Sat 18 Oct 2025 04:51:32 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 174.129.44.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:b2:bf:0a:21:e0:96:c1:cd:fc:80:2f:75:60:8f:60:f6:62:fc:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 04:51:32 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=0ba0e2ecbbe0454c52083a95b2a5e7aaf193c02da2a35d6005b6cea9783e7368, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:f4:f2:7e:00:4b:60:7c:22:5f:af:bc:af:
1e:f8:59:ee:28:d6:d0:eb:01:f4:87:b3:b3:e1:92:
36:96:64:48:ce:6b:04:7e:0f:2a:ea:f1:bc:36:ab:
5b:f4:a7:57:8e:5a:d5:96:58:7b:c3:c4:8c:ab:f1:
74:89:59:29:93:1a:27:5f:49:76:dc:f5:f2:0f:45:
ac:c7:99:e0:91:92:14:6d:16:60:35:fa:4a:86:48:
f4:71:7b:5e:0e:d8:ba:a3:50:5e:29:bf:8c:94:5e:
26:95:b2:98:bd:5c:db:37:d7:f3:15:a6:ce:6b:11:
b9:1b:98:43:e6:b2:85:d7:22:7c:14:e8:66:b3:f5:
e1:25:89:98:53:9a:98:e8:8a:f8:ab:48:93:37:51:
6a:4e:ec:1a:81:94:96:b0:ee:d1:6b:5e:af:43:32:
a9:46:3a:d9:ec:a8:9a:06:d9:ce:a8:1d:0d:36:c8:
cf:2c:d6:9f:84:42:2c:1d:c9:21:31:2b:ad:8f:58:
a9:04:f9:78:af:84:dd:a5:3e:1a:29:be:5d:6d:11:
40:6d:bd:0d:c3:2a:a2:b1:b6:dc:eb:b5:db:60:9b:
09:bf:7d:f4:96:9a:15:df:c9:f3:b5:62:ba:31:5b:
0b:fd:c1:ec:8b:b5:cb:f4:9a:cf:8d:86:13:1c:4e:
3e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7D:2F:D2:5A:ED:07:19:ED:49:98:7A:7A:49:BF:04:8F:A0:9C:5C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
174.129.44.0/22
Signature Algorithm: sha256WithRSAEncryption
59:d9:5d:e0:01:0f:fd:de:10:f5:35:ef:9e:9f:e2:4a:09:17:
95:67:36:87:33:09:f2:ee:55:fa:ed:d1:b4:37:54:8c:f6:c6:
f7:30:eb:b0:ba:bb:0c:df:08:ec:1a:8d:41:43:5c:8b:da:4b:
e1:2b:64:d2:6c:e4:86:f7:ae:fc:c5:75:63:99:16:9a:c3:29:
33:c5:aa:f5:38:18:16:e7:93:92:1d:3a:97:bd:3a:d6:2b:1b:
a5:6f:d6:1f:42:f2:a0:5d:87:18:fd:a1:ed:2f:39:8e:95:04:
4a:02:49:c1:a1:c5:dc:7d:d4:26:4b:7e:95:1b:bb:bf:78:84:
96:5c:87:fb:18:d8:e1:4d:2d:b6:25:71:26:ad:17:eb:5b:ea:
4f:bb:3e:43:e2:11:b9:22:3a:c4:a2:05:24:b8:29:f7:08:92:
3f:f8:b1:d9:5a:60:01:d4:f4:32:bc:45:76:6c:5a:6e:c2:21:
ca:4a:02:f5:5e:35:28:5b:ba:ff:4b:38:ec:65:39:67:fd:2f:
f6:bd:83:5a:18:dc:98:6c:07:9c:74:05:41:9a:8f:20:a9:d9:
77:af:3a:87:46:12:25:25:87:53:59:eb:1a:49:d5:e7:7e:d0:
24:b2:0e:bb:59:0a:53:9f:2f:e9:8f:b9:e0:e3:b0:11:95:53:
68:23:c3:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:05:53 2025 by rpki-client