Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa
File: 4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa (raw, json)
Hash identifier: Kh2bPAOlVTBVW3GR3iWyJOBMnj8GFrIWB09MV8CQ9Fw=
Subject key identifier: 24:F7:AF:DA:83:12:9C:D8:14:8D:9F:6A:0B:B6:DB:E9:7F:A6:35:D0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2125595D17519B5EB1D7D8903AF6DFC1203F46
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa
Signing time: Tue 21 Oct 2025 00:10:57 +0000
ROA not before: Tue 21 Oct 2025 00:10:57 +0000
ROA not after: Tue 25 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 40.167.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:25:59:5d:17:51:9b:5e:b1:d7:d8:90:3a:f6:df:c1:20:3f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 21 00:10:57 2025 GMT
Not After : Nov 25 23:59:59 2025 GMT
Subject: serialNumber=186adf5dec7439aa789ea7a8be5abe095e9931689cf6a06992fc661e3092d7b4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f0:d1:6b:48:f9:1e:b9:cd:f2:da:40:44:17:
78:b4:88:41:25:bb:4b:aa:44:48:18:40:15:b7:72:
b8:3d:66:e0:5a:a0:7c:c1:c5:5e:ee:1e:65:2e:a1:
e7:39:e3:1b:e8:86:45:fc:fd:82:5e:f6:de:fc:e6:
ee:3e:84:66:af:34:ca:20:51:2b:15:85:6a:ad:a8:
49:8c:16:47:c8:b0:e0:57:e1:d4:e9:d7:a1:57:56:
04:b4:73:af:2b:90:d4:1a:7f:88:a9:01:e8:88:a2:
77:93:28:57:f5:e4:bc:26:01:1e:7b:12:51:1e:be:
4c:a8:33:b1:df:23:a6:62:23:bf:03:31:a1:2b:5c:
d5:9a:da:b2:70:cd:43:ac:18:ee:05:18:47:e4:d5:
7b:10:6d:63:a1:55:8c:d0:ce:95:4f:19:35:81:58:
d7:20:79:0c:7f:0d:b6:7c:e1:69:2e:10:c9:e8:2f:
ea:29:bf:c4:0d:6f:64:1f:4d:4c:68:ec:23:43:3f:
9e:05:ea:04:a3:46:e1:c6:da:1b:e3:c8:51:c3:02:
27:88:5b:36:f9:dd:f4:08:cc:ac:f2:fe:17:a2:58:
cd:f8:5d:17:55:e3:4f:03:3e:51:8a:51:e7:65:ce:
89:59:30:6e:6b:0d:39:f9:e5:90:69:48:ce:98:66:
22:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F7:AF:DA:83:12:9C:D8:14:8D:9F:6A:0B:B6:DB:E9:7F:A6:35:D0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.167.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:23:f1:43:f5:b3:22:f2:4c:a0:fd:c6:4c:ef:e5:7a:7f:52:
80:65:7a:6b:78:db:cf:f5:7f:c8:73:15:cc:f1:97:7b:ad:2b:
30:3a:d6:50:22:47:d1:f9:3d:87:5a:69:93:c9:15:ae:94:e1:
01:d7:f5:c2:3c:24:d9:32:86:67:a0:49:60:f9:03:48:6c:70:
0c:2a:3a:0e:88:31:02:c7:e3:4a:b4:54:f8:be:ed:5e:7c:43:
98:97:f9:25:9c:9a:d3:0f:42:b9:67:39:73:ef:8c:8a:3c:aa:
36:03:3f:b7:e0:23:ca:da:29:1a:a5:b5:11:fe:9f:b3:38:f6:
74:45:36:28:67:c3:4f:12:53:7b:30:59:dd:d1:58:fc:8e:84:
ce:55:16:2a:bb:83:98:b8:2f:4f:81:a6:b1:7c:31:87:fd:e4:
65:77:49:ca:c9:17:43:bd:05:18:50:0a:9a:14:8c:9e:d9:ef:
a9:f0:06:76:b6:fb:9e:de:46:74:c1:4f:91:5d:5c:52:08:c5:
8b:39:4a:f6:9c:60:cd:d9:ee:ec:75:f7:8a:36:df:ec:5d:7a:
35:ad:8c:1b:78:37:db:f7:8d:bf:95:0d:82:b3:3a:20:85:55:
3b:a4:c9:61:86:4a:c5:82:e2:16:72:94:05:7e:c5:e3:19:35:
f1:9b:a3:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:35:57 2025 by rpki-client