Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c839e375-c4b2-46cd-aefc-d31e8fd28877.roa
File: c839e375-c4b2-46cd-aefc-d31e8fd28877.roa (raw, json)
Hash identifier: XzndLcbWUF0Gz3d7W1vHPj8jul/9yboHTdniosdJT80=
Subject key identifier: 99:7E:90:0B:91:6D:F0:47:F8:D3:53:BB:16:9E:07:AE:06:0B:AE:88
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2F7D075BD9090BE91F52AA8054963092CD1DC795
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c839e375-c4b2-46cd-aefc-d31e8fd28877.roa
Signing time: Mon 06 Oct 2025 16:22:14 +0000
ROA not before: Mon 06 Oct 2025 16:22:14 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.18.44.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:7d:07:5b:d9:09:0b:e9:1f:52:aa:80:54:96:30:92:cd:1d:c7:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 16:22:14 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=9847949840b19fc81344635480e56819dcf090754ddc4d547790c56f0eff8329, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e1:de:bf:ea:70:30:74:f9:e1:64:81:e7:b6:
8d:83:cc:e3:46:54:35:50:fc:d3:4c:fe:50:14:95:
57:ca:46:46:60:db:cf:df:10:56:40:52:40:db:89:
83:3f:4c:8b:43:cc:f6:92:09:f2:53:0f:43:df:e3:
4a:84:c9:b6:a5:0a:85:eb:bc:ef:52:81:f9:e0:f4:
3a:8a:cf:9d:53:3a:fa:61:bc:f6:14:c8:f3:c2:5d:
89:c6:91:e5:74:8c:35:30:6f:61:93:02:66:90:42:
14:c8:93:1d:8e:ff:9e:a1:a2:7a:65:49:3d:ce:ef:
c5:cf:7c:24:5e:e9:91:29:fb:33:84:1c:c6:56:37:
dc:37:34:f0:11:4b:d1:fc:00:62:11:88:82:d0:eb:
b1:29:04:bb:70:b9:7b:69:61:2d:a0:1f:9c:80:ac:
30:31:b2:66:c9:7d:2f:5b:49:c5:16:0d:9e:f8:50:
e8:0c:8a:d5:e1:e3:c9:ef:5b:e4:9c:44:7d:5c:a2:
11:7e:6c:99:9a:d3:9a:99:81:b1:23:bb:71:3d:46:
6a:49:8e:bf:ab:e8:28:5b:62:e9:84:5e:64:0e:a2:
03:e7:4f:ae:fc:2b:47:df:95:98:9f:1a:7c:98:71:
08:98:14:38:c1:5b:c5:01:a7:3d:f8:3a:17:7e:8a:
17:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:7E:90:0B:91:6D:F0:47:F8:D3:53:BB:16:9E:07:AE:06:0B:AE:88
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c839e375-c4b2-46cd-aefc-d31e8fd28877.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.18.44.0/22
Signature Algorithm: sha256WithRSAEncryption
96:1a:30:2d:5a:7a:9a:f9:76:25:5b:48:c5:d9:02:a4:e6:a5:
de:07:57:a2:b1:ba:aa:9c:cc:19:07:ea:e0:10:89:d5:93:97:
af:05:ec:36:e5:db:59:db:de:e6:d3:b2:bf:38:28:d9:1b:35:
6c:24:c1:7c:f7:13:01:63:3b:c3:49:50:02:9f:5b:6a:fc:aa:
2a:97:f7:a3:d5:33:15:da:a3:95:46:b2:9a:e0:31:40:70:dd:
c0:73:93:4d:33:24:20:f2:b7:bb:77:23:24:e7:b1:0d:75:ed:
98:48:1d:a4:0f:dc:06:0b:bf:1e:8c:2d:d8:2e:4d:d4:d1:df:
44:59:4d:32:40:c6:5e:19:8b:cf:0b:1f:1c:33:68:90:57:c7:
ac:1a:de:eb:5f:22:68:48:86:47:5d:57:5a:25:d6:fc:b5:8c:
fe:53:a1:6a:aa:aa:cb:88:92:88:9f:56:ee:be:73:2f:34:64:
b0:5e:6e:8a:88:26:90:21:6d:47:82:50:f6:ed:9a:c9:1d:96:
df:a1:21:10:a9:68:d4:81:c7:9d:32:9c:80:00:72:af:32:a4:
ac:ed:be:71:e7:b5:85:61:1a:d9:9b:09:ac:df:0d:fe:64:ea:
18:37:66:3e:e0:e7:09:34:b1:d4:7c:62:c6:6e:c2:11:16:c3:
b3:b9:09:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:55:41 2025 by rpki-client