Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa
File: e718f292-3534-48a9-a800-2739137ff5ea.roa (raw, json)
Hash identifier: LUsmumuhsXRXQHPpZSSoV5giW81pM+Yal2AJiatUj48=
Subject key identifier: EE:05:C4:E0:82:43:FC:83:73:BC:C9:19:D2:B1:69:4F:63:0F:38:07
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2FD2A200E07420EB7841B3B08BE0618E47B2B0AF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa
Signing time: Fri 03 Oct 2025 00:53:02 +0000
ROA not before: Fri 03 Oct 2025 00:53:02 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.77.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:d2:a2:00:e0:74:20:eb:78:41:b3:b0:8b:e0:61:8e:47:b2:b0:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:53:02 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=39968ac6f6669ea5eb64d59206046f421a20d6e38e0770f86bd7edae737832fc, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:75:1f:b1:3e:0d:c6:6d:97:ea:60:7d:79:61:
29:5a:29:8a:e5:4f:ac:bd:d0:0f:f9:a9:ba:16:ec:
13:57:ff:2d:22:18:7c:b0:ce:18:89:bd:31:0d:1a:
d1:2e:8d:ac:35:d7:c9:87:1c:e4:23:ea:fe:65:4b:
db:57:86:42:86:7a:95:38:c4:ad:60:21:19:37:b1:
f0:47:b0:ec:4a:67:0a:24:d3:c5:f2:6b:e0:83:13:
41:a7:bb:81:83:38:90:9c:ff:ea:99:dd:47:55:d7:
5d:85:cf:5b:98:16:17:33:66:9c:de:84:74:60:59:
ac:44:29:1c:b3:47:35:09:11:c2:7e:72:8f:74:f9:
48:88:d5:6a:b5:06:72:32:30:c0:d6:d3:99:ea:0d:
3f:49:9a:fd:71:a7:08:36:3f:4b:65:51:d7:71:c1:
65:d1:99:5b:e5:ce:89:b1:10:0a:fb:b5:22:a3:42:
e0:a9:23:c4:df:67:63:c5:ae:d3:17:cc:b0:44:1c:
07:90:37:9b:a9:0e:ed:a8:83:62:26:70:e4:bb:e7:
65:44:0d:c7:57:c3:f8:58:bd:85:96:c0:72:29:86:
64:de:27:0d:ce:45:36:f0:f7:d8:51:e2:f9:c6:ea:
b9:5d:eb:bf:02:3b:f3:5d:81:61:7e:6e:d1:76:c9:
f2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:05:C4:E0:82:43:FC:83:73:BC:C9:19:D2:B1:69:4F:63:0F:38:07
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.77.246.0/24
Signature Algorithm: sha256WithRSAEncryption
40:79:2a:5c:e4:20:e2:af:3e:af:22:53:ed:95:a2:02:d1:47:
68:09:7f:83:75:d0:a9:63:e3:96:79:ab:4d:af:ac:07:6b:1f:
8e:1f:fa:cb:d9:e1:c5:d4:69:7a:4c:0a:a7:4b:63:73:72:72:
31:6d:24:55:aa:45:eb:75:ce:ef:e2:db:d3:c3:3d:cf:9e:4c:
6c:32:61:88:82:19:78:fb:ca:f8:00:d9:0b:11:74:4d:ed:32:
5b:22:63:70:33:a4:c3:cd:56:e5:81:9f:5a:72:a2:27:8c:6e:
b4:74:fd:25:a7:e7:c7:31:c8:04:a1:00:f8:d7:92:6a:72:16:
05:6b:1f:ca:b6:8a:39:39:a2:59:3c:de:20:22:dc:24:3c:c8:
04:56:96:ae:04:8a:82:35:34:bc:7e:3a:a8:54:a3:0b:30:de:
1e:28:71:11:24:52:57:9d:56:07:c3:a8:21:7e:2e:42:25:df:
60:da:ba:ac:ea:c6:7c:43:51:3f:1a:97:70:e0:bf:08:31:dd:
7a:0b:ef:3a:79:15:1f:a8:1d:ae:a8:d0:76:2d:71:cf:10:bc:
b3:bf:40:26:fd:a5:95:c1:a8:4a:4c:ab:1a:16:ba:8d:b9:6c:
20:1b:56:e3:05:bd:4f:9f:af:6c:72:dc:1e:1d:1f:b5:6b:21:
82:a9:0c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:34:21 2025 by rpki-client