Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c26c0254-1071-467d-bd2c-f81f3ba6a671.roa
File: c26c0254-1071-467d-bd2c-f81f3ba6a671.roa (raw, json)
Hash identifier: E2NWNTnVciKGFUoykwpfVX+nIW5r/rHfCr5+fzz4jws=
Subject key identifier: 74:47:5F:E0:D4:05:29:E9:11:28:BF:FF:BD:79:74:4A:BA:10:C2:FF
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 394BB55B9BD14C4AE45D9F19D31F1CA3C5528C92
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c26c0254-1071-467d-bd2c-f81f3ba6a671.roa
Signing time: Tue 07 Oct 2025 00:52:36 +0000
ROA not before: Tue 07 Oct 2025 00:52:36 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.19.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:4b:b5:5b:9b:d1:4c:4a:e4:5d:9f:19:d3:1f:1c:a3:c5:52:8c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:52:36 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=d886af875cb025e0961874f251a8194c71f5fa43d75a9ba4a3361e378f2b73d3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:19:5b:4f:02:53:6a:cb:41:ee:c0:48:25:12:
d7:54:9c:c4:69:66:ee:cd:cc:4e:27:40:5f:18:01:
ae:3c:5f:ba:19:8d:a9:41:48:7d:71:e5:bc:45:5e:
83:4f:8d:d1:84:2b:3a:9f:f4:ee:18:e0:27:68:4c:
8a:b5:3d:b6:8f:e3:82:cf:62:55:f8:e8:a4:12:6e:
bf:85:71:4a:5e:55:4d:c4:07:35:e8:0a:c2:08:c2:
2b:74:37:f8:f0:e8:b1:dc:e1:15:27:5a:3a:e8:09:
a3:a6:92:46:1e:38:ba:d0:7f:f8:dd:70:f4:9c:6f:
39:5a:0f:05:32:4d:13:a0:24:16:c3:ca:01:52:6e:
bd:0e:77:a9:7b:17:eb:d8:e2:bf:fa:7b:6f:24:09:
68:ca:09:80:f7:6e:c0:fa:9b:f6:86:d5:4a:d1:bd:
ad:46:12:11:c4:b6:cc:6a:dd:7b:9c:97:9c:c5:10:
05:01:c0:c8:d2:65:d8:1a:e0:bd:18:14:29:d5:2a:
d2:9d:28:ea:82:f8:49:66:7c:19:ee:7a:eb:aa:43:
d2:15:60:d0:f2:d7:4c:f2:a1:fa:c3:41:36:f6:91:
da:1d:ae:ed:9e:5c:4b:2b:35:db:b0:7d:cd:a3:e5:
03:35:d1:d8:44:d5:d1:4d:8e:98:0e:b1:77:d4:31:
dc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:47:5F:E0:D4:05:29:E9:11:28:BF:FF:BD:79:74:4A:BA:10:C2:FF
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c26c0254-1071-467d-bd2c-f81f3ba6a671.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.19.0.0/17
Signature Algorithm: sha256WithRSAEncryption
2f:b2:25:07:c9:a2:6c:72:2a:28:bc:47:95:58:c9:d8:92:83:
fc:c2:99:07:aa:cb:b4:0b:98:74:40:5c:0e:d4:b0:52:1a:f6:
26:5b:c8:ce:dc:c6:0a:e2:b2:6c:aa:1b:63:57:db:1c:b2:cd:
a1:55:10:73:c7:a9:0d:f0:5f:2e:64:d5:3c:c8:c2:c8:40:6a:
42:7c:78:85:cd:5b:b8:e8:52:77:2b:01:62:3a:0e:1a:59:ac:
8d:ec:52:91:50:fa:0c:9f:07:95:e2:5e:9f:73:43:09:76:13:
7f:fb:a2:d0:35:9b:90:10:f3:9c:9c:85:ff:95:7b:fb:a1:43:
d9:c4:5a:01:23:89:87:90:2f:c1:7e:cf:6f:fb:a8:87:a1:ec:
cf:5c:56:5c:31:9c:fa:66:d6:6a:a0:95:e7:c1:11:d0:f1:2e:
2d:11:58:82:81:c5:3f:6f:f3:0d:c3:4c:75:5f:68:86:d8:f2:
ad:e6:d4:a3:33:30:57:12:fc:ff:9a:77:5b:74:65:d3:6c:61:
70:d0:20:e2:73:ab:82:6e:9c:6b:ac:25:c8:a1:7d:c3:55:79:
35:b3:11:33:3c:c5:7d:d6:3c:f1:44:f8:ec:51:9f:31:0d:b5:
22:1e:8b:3f:7c:3c:87:11:a1:41:66:cc:b6:22:af:a2:73:ba:
25:2b:96:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:22:42 2025 by rpki-client