Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa
File: 67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa (raw, json)
Hash identifier: Jf6ttFml9XPO2cUsKr7Usu8s0Ff4i9ccYx3nw3VCwQE=
Subject key identifier: 3C:07:05:E0:39:5E:20:0B:1F:DC:70:CB:B4:33:BF:41:2F:43:73:E0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1D3197A4BD2A165EBC3EC0BF3064D7AEAFB56883
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa
Signing time: Wed 22 Oct 2025 00:20:09 +0000
ROA not before: Wed 22 Oct 2025 00:20:09 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 35.52.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:31:97:a4:bd:2a:16:5e:bc:3e:c0:bf:30:64:d7:ae:af:b5:68:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:20:09 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=26bd4177a32282a43996835be54c48091efbcf7c57b36bf6ff8a7a858f90b56e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b6:40:d0:98:2b:5c:d6:58:c8:a6:d1:f2:9a:
c4:dc:59:0e:2c:1b:8f:a3:32:68:ca:16:4f:1c:f9:
62:97:93:32:3b:74:e1:9a:0e:e6:d5:e0:dc:b1:6f:
e5:13:0a:77:8e:87:a5:01:a4:9b:ad:09:3f:c1:17:
84:c2:b4:ae:8d:6a:84:d8:c2:26:19:60:83:4f:a6:
44:5d:fe:2b:82:b4:3a:d0:00:d8:dc:b9:c7:98:ab:
52:b9:d3:f5:c7:4b:e7:a2:c1:27:8c:94:e6:ee:16:
96:a7:42:20:42:31:05:b3:dd:be:43:4b:ef:32:69:
90:ce:cb:fa:c5:07:82:f3:d1:08:62:e6:4c:1b:16:
f9:65:54:c7:ed:ca:f6:dc:1f:31:6a:82:94:52:29:
97:7c:a0:0b:89:3d:64:5c:d8:ad:df:2f:1f:41:6c:
b3:64:c5:0a:26:14:c8:bb:02:85:a2:03:05:2a:64:
32:c9:4c:c2:5a:ce:0f:57:ad:cc:ac:19:0e:4c:80:
b2:64:c1:d6:82:c3:c2:1f:a5:76:6d:c3:e5:eb:6e:
93:42:53:a5:ed:d5:39:db:47:b9:4b:8c:11:51:59:
a1:53:12:94:5b:e0:ab:ac:b2:99:29:ae:36:aa:42:
eb:ba:91:b5:fc:c0:3f:84:25:9d:14:5e:fb:5b:70:
b4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:07:05:E0:39:5E:20:0B:1F:DC:70:CB:B4:33:BF:41:2F:43:73:E0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.52.0.0/15
Signature Algorithm: sha256WithRSAEncryption
23:60:41:ee:73:7a:99:ad:c5:43:9f:14:4d:46:9c:51:dc:04:
5c:34:12:0c:f7:07:32:e6:99:1a:3e:77:37:d1:78:6e:d0:e3:
4b:d3:20:a0:34:4e:e5:83:40:11:ad:db:14:ac:a0:87:0f:5c:
e2:b4:f5:80:eb:58:cc:90:c7:7c:fd:3a:21:fb:7e:ee:3b:42:
8e:8f:0f:9b:c2:b1:30:31:0b:c0:36:c2:54:c0:d3:cc:75:02:
34:09:16:45:31:e1:a1:bd:44:51:2a:18:60:15:03:09:3a:bb:
4b:e8:0d:28:a7:4d:bd:d1:db:de:55:ee:b4:63:cf:11:7b:b1:
72:de:39:14:a3:84:be:3b:a6:b2:63:de:17:da:07:92:26:3e:
36:3e:22:e0:c0:d7:4c:18:21:2b:38:e9:ca:b6:a0:97:15:7d:
29:b8:6c:55:7a:aa:e4:28:77:37:9c:ab:8d:ed:1e:bc:da:bc:
84:4c:2c:08:8a:bf:a7:e3:a6:ea:07:99:b7:e0:7a:85:6d:0f:
57:e9:87:fe:4b:3f:8d:35:bc:d6:d7:10:98:f0:8d:ce:27:7a:
be:36:cc:51:bb:48:ed:9f:37:89:71:95:97:74:d9:5a:0b:f7:
27:75:7a:0b:0f:ab:51:c6:92:d8:74:e6:53:3c:ca:4e:41:f7:
a6:4d:dc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:41:14 2025 by rpki-client