Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e7416a4-4897-401e-b597-780bb34b5685.roa
File: 0e7416a4-4897-401e-b597-780bb34b5685.roa (raw, json)
Hash identifier: l3nyL07Xpb6Kf+4ubSEgkEv1PoJ3IHG/Cs9YSbZYG6Q=
Subject key identifier: 42:C9:F4:70:ED:14:6E:6C:A9:E0:17:62:44:90:06:DB:48:F8:CD:16
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 233232632C72BF3D4D8693F70A7F88DB40164E88
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e7416a4-4897-401e-b597-780bb34b5685.roa
Signing time: Sat 01 Nov 2025 00:10:07 +0000
ROA not before: Sat 01 Nov 2025 00:10:07 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 155.50.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:32:32:63:2c:72:bf:3d:4d:86:93:f7:0a:7f:88:db:40:16:4e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:10:07 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=d1034c4c114730680fb249f208e0401629d9506779d9fef6fe4eb70d76c6b834, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:41:cd:60:8e:52:a2:27:c6:0e:04:e9:66:e8:
cc:f9:dd:d4:34:e9:17:d9:b8:9d:0c:ec:9a:00:2a:
46:30:24:48:71:85:65:11:01:48:f8:1b:a4:8f:47:
4f:0e:95:89:93:b7:ac:b7:2b:84:e8:22:0f:a2:79:
12:64:fa:3e:79:70:7f:27:c1:0d:11:c7:4b:b2:ba:
17:5b:9a:6d:06:be:c6:e6:82:b6:bd:38:18:f9:9a:
fd:dc:91:85:53:2c:12:fe:cf:83:7c:a8:aa:f3:86:
d7:4f:db:15:5d:aa:09:dd:00:e0:96:1c:ab:52:26:
b2:5d:36:09:c5:4a:c6:33:4d:26:02:3e:75:ad:19:
e7:f9:a8:90:d3:90:fc:b2:77:af:19:a6:3d:09:19:
58:91:ef:1c:d5:de:cb:20:81:ff:a5:24:33:6f:ae:
70:3e:b1:02:54:45:52:d5:de:94:24:b2:bf:60:89:
9e:e3:cd:6b:30:3e:ee:38:4e:9e:0c:08:8f:ba:4d:
3f:7d:94:87:58:f9:93:02:14:2d:f1:83:38:e0:e2:
da:e5:2a:e4:95:8d:51:05:b0:87:33:cd:45:54:62:
0f:ca:29:6a:dd:2c:01:64:cb:ab:c6:0b:1c:70:8d:
26:b8:af:35:f4:40:3d:74:9e:42:c1:ef:dd:49:27:
1f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C9:F4:70:ED:14:6E:6C:A9:E0:17:62:44:90:06:DB:48:F8:CD:16
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e7416a4-4897-401e-b597-780bb34b5685.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.50.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2c:31:ac:b4:99:84:c1:52:6e:c3:b0:f9:74:61:39:16:18:d0:
ea:71:f9:fd:33:14:d6:7f:6e:b9:85:89:73:f3:0d:be:97:7e:
a2:50:4e:e7:e1:78:f7:f2:37:20:c9:c2:ba:3f:8b:a1:40:ea:
fb:3e:6b:80:bd:80:e8:d4:a1:fd:85:de:9b:bd:c5:11:79:ab:
9c:b3:65:23:ff:bb:f4:b9:4a:76:c3:31:9f:dc:b0:16:b5:50:
e5:8d:6d:8d:ce:ad:bd:c7:ba:63:d9:c3:1e:29:22:b8:b0:a4:
2c:fa:05:24:b3:4c:a9:02:d4:2e:dc:a1:00:d6:55:99:87:5d:
79:2c:6a:d6:eb:08:0d:1e:89:6e:0c:d6:a3:48:a5:12:ca:c5:
68:a4:aa:ef:f2:c8:7c:13:dc:a5:b8:fb:40:09:b4:4c:7a:12:
a0:5b:3d:e8:5e:5e:d4:42:c5:12:16:fd:b0:7d:81:cb:ed:5e:
85:ed:0d:53:de:26:db:3d:77:76:7b:b0:87:ac:ed:ad:a1:76:
d2:04:74:4a:28:47:aa:5c:99:2d:72:f7:d8:7a:73:f9:e7:b5:
ad:2f:d0:57:0a:6e:54:9c:c3:97:2a:c6:1e:cc:cc:0c:1b:c0:
4e:f5:88:66:84:58:f9:4f:69:a9:24:61:1f:a2:39:a0:e4:30:
56:38:eb:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:44:49 2025 by rpki-client