Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa
File: a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa (raw, json)
Hash identifier: zPMtqCUBt6PIic6lD7jr6VYKAs5UnR616zAySHyRHE4=
Subject key identifier: 85:7B:72:12:62:F3:BD:BA:78:3C:CC:4B:49:61:C3:D1:D3:D2:8A:B8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5B580C5958300A8C155A6FD8C62559B9D83799FF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa
Signing time: Sun 19 Oct 2025 02:20:50 +0000
ROA not before: Sun 19 Oct 2025 02:20:50 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 69.0.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:58:0c:59:58:30:0a:8c:15:5a:6f:d8:c6:25:59:b9:d8:37:99:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 02:20:50 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=0f95ebad372b61599d14d335038e94d8f185a330b0285379736c26220a0a8f22, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2a:e8:0f:c4:b9:0e:3c:e5:f7:c9:08:aa:11:
19:4c:db:ea:98:32:00:65:47:2e:b1:61:a0:77:cd:
1d:b9:e5:3f:2e:cb:d2:31:6f:ad:0b:5c:c2:63:ad:
c5:46:e7:2b:91:5e:01:9c:bd:db:ee:15:56:ea:ae:
ee:93:56:fd:6a:13:8d:bf:39:a4:56:73:b5:fc:0b:
98:8d:dd:21:12:ea:44:80:82:05:60:d2:79:cb:80:
bf:e6:40:07:b0:ef:1a:1a:58:30:79:88:85:d7:66:
86:ce:10:5a:8b:c8:78:27:55:9c:69:6b:0f:75:cc:
e0:1a:20:01:c0:1e:18:b9:4b:56:28:ec:34:95:4e:
a3:c4:08:02:77:97:f9:ec:58:90:e9:36:d2:97:bc:
8d:91:98:28:4a:9f:62:29:db:fd:a7:25:dd:50:d4:
60:98:bc:22:8e:ef:9d:a0:1b:34:8f:53:8f:9e:31:
93:82:cb:e5:45:7b:f8:4b:e7:8a:6e:a6:9d:21:6f:
71:17:bf:b5:eb:2f:99:e3:6d:7a:2d:99:21:a2:7a:
60:c8:bd:8b:73:c2:a0:1f:f3:cd:4a:44:85:5b:0e:
72:63:0e:0e:37:c3:60:1b:a8:f6:15:0a:78:eb:e2:
d6:63:49:a6:81:71:4d:71:f2:68:f9:f7:3b:21:82:
f5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7B:72:12:62:F3:BD:BA:78:3C:CC:4B:49:61:C3:D1:D3:D2:8A:B8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.0.184.0/24
Signature Algorithm: sha256WithRSAEncryption
73:70:da:23:ab:79:d3:18:a9:25:b5:8c:a2:0a:69:63:8f:87:
46:1a:fc:31:f7:e9:2c:4b:c9:7a:ba:26:10:99:8b:c3:92:61:
1e:1e:37:1a:f8:3a:bd:ac:ae:91:c7:57:e6:e5:5b:e4:37:76:
de:24:cc:af:d5:75:b7:bd:82:df:f6:5b:a3:41:26:37:a1:b8:
11:eb:9b:e6:7b:9d:3e:a2:b4:4b:50:8a:65:26:0e:73:90:78:
0f:27:84:d0:53:cf:93:6c:f9:44:99:69:9d:0d:34:59:74:0e:
95:64:38:65:30:f2:8a:39:58:e3:81:68:bc:4b:91:cc:ac:1f:
2e:de:83:1a:5d:f4:87:ed:9c:d1:ce:ea:3b:0a:4a:42:ae:1f:
86:2d:a9:09:be:1e:49:1f:d9:f5:17:a5:b3:f5:17:a5:62:24:
b0:64:1e:5f:ec:3f:84:81:ee:16:34:27:ae:38:57:8d:a5:ba:
ca:2e:2d:85:db:b7:e7:ec:a7:30:3a:54:0d:d0:55:db:41:23:
14:aa:b9:70:4d:18:0a:1c:48:07:0e:05:16:28:46:9a:fd:07:
76:16:45:cb:13:ed:7d:f7:ee:78:d2:cd:d8:c5:4d:10:f0:a2:
c5:08:ff:a7:b5:f4:f6:16:bb:ce:62:0c:77:74:64:c9:58:fb:
e0:6d:ec:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:05:10 2025 by rpki-client