Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02fe2df1-37cf-467a-8eca-4f9d7087dd81.roa
File: 02fe2df1-37cf-467a-8eca-4f9d7087dd81.roa (raw, json)
Hash identifier: ydX3pgKggPJO6T9lgGwHW25998M8edDKU0tswa9uZmg=
Subject key identifier: C1:6F:98:DD:3F:63:98:CF:09:96:25:66:B2:1C:0D:F9:02:40:A4:2B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1CE01F73BF11C0989627087A41CAD2B06E69C4FE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02fe2df1-37cf-467a-8eca-4f9d7087dd81.roa
Signing time: Fri 31 Oct 2025 00:50:45 +0000
ROA not before: Fri 31 Oct 2025 00:50:45 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.18.96.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:e0:1f:73:bf:11:c0:98:96:27:08:7a:41:ca:d2:b0:6e:69:c4:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 00:50:45 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=5351f6a4adbc12ef5b3fe1c77182609c2fbc8cf1ae7b7281634e09d37c3c5876, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:55:6e:08:9b:11:12:32:bb:d9:b8:00:d9:d3:
a8:8b:47:6a:d6:f7:e0:30:68:51:95:db:bc:70:f8:
a8:ad:92:c6:51:e0:9d:94:29:6d:a6:3b:a2:97:0e:
2d:05:c3:ab:c5:72:a2:cb:58:92:df:00:e8:02:c0:
35:61:49:a0:e0:5a:af:ca:1b:b7:e6:13:34:4b:e5:
18:57:a1:b0:5d:0d:da:57:ed:81:42:3c:5d:9c:4b:
17:eb:d9:5f:9c:20:34:b5:7a:82:f9:3e:3b:3a:ff:
df:86:51:13:38:ca:79:f8:ff:3b:b0:31:f0:f2:8e:
31:2c:c0:16:f4:f2:01:d7:9a:f5:4c:c3:de:34:5d:
f9:11:55:2e:5c:17:8d:8d:c3:3e:31:b7:5f:0c:0d:
81:c3:70:68:aa:c0:d4:24:b2:d8:12:e2:28:0e:db:
9c:ef:c5:8f:fd:a1:d6:ae:0c:d0:37:e6:d6:87:30:
ec:ee:50:85:2f:0b:01:a5:90:0d:bf:6e:27:95:de:
ac:ff:13:e7:20:20:6d:c5:93:56:b9:77:93:bd:64:
08:ac:b1:1e:eb:e6:d6:4f:dd:9d:51:49:8b:a1:3d:
56:1a:54:1b:88:50:d0:ba:4b:c8:51:c8:d8:3c:23:
cd:f5:d2:51:dd:68:d1:6b:d9:7f:97:03:cf:28:48:
d6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6F:98:DD:3F:63:98:CF:09:96:25:66:B2:1C:0D:F9:02:40:A4:2B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02fe2df1-37cf-467a-8eca-4f9d7087dd81.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.18.96.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:18:8a:b9:88:75:d9:57:1e:a5:e5:03:0d:0c:63:1f:f8:98:
9a:cf:b4:eb:1c:f2:7b:d5:58:03:17:cc:93:11:6a:cb:44:0a:
cf:6d:9b:db:11:45:46:bd:b2:84:be:13:74:3d:50:71:6a:9c:
92:12:67:f4:82:39:0d:f0:0c:2f:44:24:fb:40:37:3e:cf:4c:
53:b5:2b:93:a3:5a:47:03:a4:11:f0:e6:59:ab:c6:cb:c9:e1:
96:02:0e:f7:70:38:11:04:a8:b1:ec:8a:d6:f4:24:f6:8a:cf:
62:a9:80:55:da:03:b7:6d:7e:71:eb:83:df:74:7b:ce:e7:5a:
df:0f:13:fe:94:c3:12:4b:66:63:90:b4:2f:2f:05:2e:ec:33:
09:a5:de:31:06:00:0f:91:fb:03:78:ea:f5:c5:91:3d:1e:9b:
de:a3:5b:23:7e:f1:a1:35:c7:8c:99:63:62:dd:b8:ae:9a:0b:
66:71:0b:2f:5c:3f:7f:30:d3:d6:80:b8:da:ec:44:a0:72:3a:
e9:a3:88:7c:74:c6:94:1f:af:8e:d5:a0:cd:97:9a:a2:e9:38:
55:71:ca:b8:f2:bd:6d:7d:4c:12:7c:a1:2a:1f:79:d5:35:ce:
3f:81:30:82:76:4f:67:4a:b0:5d:e2:b2:63:27:cf:7b:b8:1a:
97:1e:ab:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:47:23 2025 by rpki-client