Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b69f7f-4751-4010-80f2-09f4e9615993.roa
File: 18b69f7f-4751-4010-80f2-09f4e9615993.roa (raw, json)
Hash identifier: gvjINbmndYe9Swds9cjYajiCZb1SiMIgYUG2OSasU94=
Subject key identifier: 35:E5:B0:DF:A1:23:36:E9:72:E9:04:DF:BC:67:F1:5B:F0:8F:83:0D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 577718FA175A432CA580B17AAD2EFEF54725663D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b69f7f-4751-4010-80f2-09f4e9615993.roa
Signing time: Wed 22 Oct 2025 00:31:53 +0000
ROA not before: Wed 22 Oct 2025 00:31:53 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 35.54.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:77:18:fa:17:5a:43:2c:a5:80:b1:7a:ad:2e:fe:f5:47:25:66:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:31:53 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=6af9e5aaea5afe14291f238d85468d3d01e99de2571419bd7ace8eb624dccde4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:25:43:22:a0:39:f7:be:57:98:48:56:9b:37:
9b:b1:31:c6:9d:fa:03:38:df:4f:3e:9c:ad:30:c4:
ac:17:08:d6:bf:b6:72:1c:1e:1f:7d:ab:c5:c5:b0:
ec:8b:1a:7b:65:ee:29:68:6c:0c:33:f3:26:f8:a6:
0f:5f:06:a5:97:0c:60:30:ec:9c:ba:5f:22:3d:d0:
7c:cf:f8:b2:7d:3a:e9:af:ad:a7:2e:c8:c3:2f:4e:
fe:dd:52:7d:69:be:b8:ac:fb:67:45:fe:05:c1:d8:
95:a7:aa:b7:1a:34:49:90:15:43:0a:8c:b8:85:5e:
02:ee:92:07:04:ec:a0:19:b9:40:2e:7d:fe:a4:34:
18:f5:43:cc:4d:dc:79:8f:ae:6d:d3:86:4a:e4:d7:
a1:26:80:78:53:9c:72:49:92:39:82:04:1c:4b:f6:
01:73:9d:f8:ed:c0:83:54:bd:1d:2e:c7:c2:2a:f1:
04:87:97:59:ae:e9:d4:9a:40:88:94:67:26:cf:1e:
27:e6:7e:9f:9d:a8:b3:dd:79:15:d0:49:59:e2:0b:
6e:45:2f:7a:bc:9b:92:70:64:df:62:bd:03:a5:f0:
b9:ac:23:52:43:1e:34:7b:33:75:bb:9e:85:15:50:
05:6b:48:4f:a0:b3:fb:0d:3b:e8:96:9d:3b:b2:35:
38:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E5:B0:DF:A1:23:36:E9:72:E9:04:DF:BC:67:F1:5B:F0:8F:83:0D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b69f7f-4751-4010-80f2-09f4e9615993.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.54.50.0/24
Signature Algorithm: sha256WithRSAEncryption
20:26:7e:88:6f:42:b8:56:1c:90:5c:14:9b:d4:96:7f:e3:9e:
2c:09:f6:5b:44:d0:b7:bd:73:3a:c2:88:7c:15:5f:0d:f0:f0:
f5:0e:2c:20:7a:80:ff:86:a7:88:b8:b7:01:3f:f8:b1:65:ec:
fd:f4:66:ed:40:fe:8e:b3:c5:af:0b:cf:ab:c9:22:51:70:d0:
a5:c0:c6:a5:1a:7d:a7:67:d5:f2:9c:c2:c0:fc:47:fa:c2:2e:
32:60:68:ce:e6:6a:0c:5f:b5:57:4f:24:af:56:f9:fb:8a:12:
b9:08:68:3b:de:c7:76:64:9c:ec:07:fd:3b:b3:22:9d:e5:81:
59:31:9b:86:a0:33:23:2f:5b:ce:d9:4f:f0:92:01:a7:b0:93:
d9:fd:7e:4f:c2:79:60:a2:4e:8e:1d:b4:9f:30:c6:01:87:ec:
31:a2:ca:d8:9c:03:63:5f:65:76:9f:fd:21:44:7b:ca:8f:5a:
46:79:67:05:40:6c:5c:80:ca:b6:16:12:db:82:de:61:65:b8:
ca:69:59:5e:4a:4a:55:53:76:95:bc:42:4e:ee:b3:a3:9b:d0:
2c:e5:0e:22:e9:8c:0e:1c:96:d1:ba:f8:c8:e7:97:37:e2:2f:
09:51:8c:ab:d8:b6:a5:fa:f5:9e:eb:70:61:5f:eb:99:ff:ce:
69:ac:05:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:59:26 2025 by rpki-client