Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50064779-22b4-4920-aeb0-abc6a67bfa6d.roa
File: 50064779-22b4-4920-aeb0-abc6a67bfa6d.roa (raw, json)
Hash identifier: f/Ahtj/BR98OGwR34SSYWZLJtPVqbX5gDxwXrAJqeJ8=
Subject key identifier: 21:51:76:8C:31:C4:AE:EC:DA:32:C8:07:43:97:91:FA:E4:0D:1D:A2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4C2962AAE108739C2A016CC3552866B9393317CB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50064779-22b4-4920-aeb0-abc6a67bfa6d.roa
Signing time: Sat 01 Nov 2025 00:41:01 +0000
ROA not before: Sat 01 Nov 2025 00:41:01 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 184.72.64.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:29:62:aa:e1:08:73:9c:2a:01:6c:c3:55:28:66:b9:39:33:17:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:41:01 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=c35f74b9a19026addac402b422e4700af025462e131e0011617d5603b84d3fce, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:77:51:b8:88:e8:17:2b:c1:18:a1:01:60:be:
c3:5c:05:c7:4e:d1:4a:31:08:a5:55:83:d0:ce:3d:
35:32:0d:7a:6e:14:82:6a:30:8d:c3:17:8a:7e:0f:
35:9a:a6:3b:d7:70:eb:63:34:e0:4a:f3:71:fe:8a:
94:9a:9e:28:46:2a:78:24:f4:0d:85:dd:88:09:d7:
78:df:0b:a4:a1:2b:b7:91:a1:bd:02:41:01:19:ac:
90:6f:76:64:6e:82:94:11:05:dc:d3:3e:d7:2e:71:
98:92:8c:63:d0:95:c1:6e:38:a7:b2:f0:ad:d3:87:
eb:06:8b:cb:96:e3:5c:8f:7a:06:8f:4e:65:6f:9a:
e6:11:ee:8e:6e:41:80:3c:d0:51:6e:d0:23:e5:d2:
4b:cc:02:3f:6a:0b:73:60:32:33:94:91:3b:b4:97:
f0:1d:5a:75:2b:af:62:c7:55:e5:68:92:73:cf:f7:
25:f8:1e:17:9b:1c:64:e5:e4:95:3d:0e:a1:7d:40:
7c:df:74:b1:e2:a1:d0:85:33:98:d3:fe:6c:38:6f:
6e:9b:67:a3:46:e6:5b:ab:fc:10:6f:c4:f2:33:0a:
e7:60:8b:80:68:12:46:02:ee:79:e0:c8:ae:3f:a6:
1e:96:2e:95:7a:e3:de:58:3d:a0:10:d3:5d:18:cd:
df:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:51:76:8C:31:C4:AE:EC:DA:32:C8:07:43:97:91:FA:E4:0D:1D:A2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50064779-22b4-4920-aeb0-abc6a67bfa6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.72.64.0/19
Signature Algorithm: sha256WithRSAEncryption
01:bb:fe:24:d3:72:16:38:58:27:4a:0c:c5:eb:91:38:ec:47:
8f:47:df:10:87:6f:97:66:ab:e8:5f:f9:cd:6b:40:0f:2d:ca:
aa:47:95:75:97:fc:27:93:27:50:b6:3d:55:da:e7:e3:e5:49:
b7:b9:f2:9a:f5:e1:d3:c8:73:bc:90:0e:12:2a:01:07:66:b4:
52:8d:ae:31:74:7b:f8:49:11:79:4b:c2:87:c2:5b:3c:22:65:
95:d9:a9:70:45:60:82:84:95:48:99:59:35:6b:05:fa:10:e3:
b9:f4:a8:bf:6e:6f:6a:c0:fa:50:31:c7:96:2d:1e:dc:41:77:
d0:3c:18:f4:dc:94:bc:6f:c6:a5:9c:e9:4e:5a:13:35:69:5c:
e6:21:6a:69:f4:fc:b9:6f:65:5a:ca:e3:61:08:c5:5c:b2:b4:
77:d5:12:2f:14:90:c3:91:71:67:1e:b3:c3:22:97:e7:fe:c2:
64:48:21:58:cb:a3:f1:08:ad:e2:4d:17:02:35:79:33:57:8e:
5b:8f:0c:4d:f9:3c:0e:7c:c5:7f:83:b0:d9:f2:ca:4a:ec:bd:
75:89:71:7d:de:cb:5c:ac:d2:f1:64:ba:e7:7a:8d:bd:a8:a4:
b4:5c:f7:71:07:f4:fc:ca:3b:43:6a:9e:4f:c0:e0:c4:a3:bd:
8c:35:0b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:45:28 2025 by rpki-client