Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e73183cc-2907-425e-bd2b-10fd1986e4bd.roa
File: e73183cc-2907-425e-bd2b-10fd1986e4bd.roa (raw, json)
Hash identifier: K9RRO4xQsqPNWM8/pLvIffWFwCzf3J4QGDoH8XKyaRg=
Subject key identifier: 58:0A:51:E0:8B:19:39:6C:A7:03:06:50:47:D9:72:26:83:0E:EE:88
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5F8100E59A304D9999E1F39B8F38F4BF69D1F192
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e73183cc-2907-425e-bd2b-10fd1986e4bd.roa
Signing time: Tue 07 Oct 2025 00:52:39 +0000
ROA not before: Tue 07 Oct 2025 00:52:39 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 50.16.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:81:00:e5:9a:30:4d:99:99:e1:f3:9b:8f:38:f4:bf:69:d1:f1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:52:39 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=0645729eb150efdf83a6bf51b1cbc48dc22653ed0ac1cd1e4909a2a60d47d7ad, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7e:9c:aa:cd:7e:46:50:0f:81:61:60:97:73:
d0:e1:fb:3d:6b:c4:a6:24:d8:ac:9a:e0:af:33:b9:
49:79:ad:20:d5:05:0b:8e:76:0b:c3:ed:8c:08:a5:
bd:3f:83:61:ed:0e:3d:9a:e3:d6:bc:a1:4f:a3:f8:
3a:5a:e1:f3:e1:ea:b2:92:3c:09:68:38:16:91:85:
13:1f:57:bf:cc:29:55:bb:6f:44:ca:e5:49:f8:8b:
f5:de:97:a5:0b:51:b8:f1:d8:fe:33:49:d5:ab:20:
64:15:d6:94:f2:c1:2b:73:4d:46:c9:64:fa:54:55:
8d:f4:e3:90:7a:b3:cd:20:a1:dd:b0:bc:4c:de:e5:
c1:46:fc:55:45:e7:ad:7d:2e:9d:fe:e6:6a:1e:8b:
bf:02:56:fd:24:e3:23:d1:f4:f7:9c:4f:2d:4f:c7:
4d:73:9c:49:68:6f:68:fe:a6:72:5c:65:51:2a:f7:
13:f5:65:48:bb:d8:0c:e8:2f:d8:71:c4:25:ab:0f:
ee:8e:ec:9b:d7:44:55:ea:f1:b6:a2:62:d1:8c:9d:
27:95:11:cd:20:e7:52:d6:da:a5:26:27:6c:92:45:
08:5a:ec:01:5c:07:05:d5:ce:de:2d:3f:14:42:26:
b6:57:c7:0e:16:01:0c:46:fe:4b:ce:48:47:37:70:
c7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0A:51:E0:8B:19:39:6C:A7:03:06:50:47:D9:72:26:83:0E:EE:88
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e73183cc-2907-425e-bd2b-10fd1986e4bd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.16.0.0/17
Signature Algorithm: sha256WithRSAEncryption
90:4e:ca:43:fc:54:df:87:70:dc:ae:f0:a5:71:e0:8d:29:ff:
ce:23:21:1e:32:7f:c9:06:d4:ba:5f:7f:65:20:6c:27:7c:85:
0b:d1:63:fe:7f:25:4c:d4:2a:ef:8c:27:5c:21:ed:5d:c9:93:
97:53:2d:6a:f4:fc:a0:e6:5b:10:ab:0f:cd:08:ce:35:1f:07:
96:47:4b:7a:68:3f:68:03:c3:c5:76:ac:6e:40:d4:c5:ad:73:
7a:2f:f2:c2:03:ee:57:f4:cf:e2:4b:01:e6:29:82:02:a5:e0:
1b:39:60:9e:1d:07:e4:d4:01:21:93:4a:c9:b4:30:8a:56:3a:
d9:a1:bc:a1:cc:df:8f:0e:ae:50:8f:88:19:5f:7e:df:cb:4c:
e6:6d:f5:eb:de:95:2b:b7:b9:51:3a:e3:31:dc:7a:1d:f7:18:
0a:e2:d9:f2:15:50:2c:5e:5c:db:ed:92:3b:92:61:a3:9d:58:
ef:40:e2:a4:f7:eb:1c:80:8c:7f:fd:84:fd:4d:56:1b:4e:e4:
cd:43:a9:79:7c:4e:de:fb:dd:c1:21:93:43:23:66:5d:26:22:
3b:b5:59:b0:17:61:0a:4c:8e:6a:51:86:a2:02:8a:72:c0:30:
68:f1:57:af:52:f0:25:cb:88:39:d8:e6:e2:11:84:06:87:fc:
63:5e:c2:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:22:34 2025 by rpki-client