Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71cb4a8c-8eb6-4bfb-946a-69c882c60f61.roa
File: 71cb4a8c-8eb6-4bfb-946a-69c882c60f61.roa (raw, json)
Hash identifier: EZpW35RygRpwQgDKqMMplDLegOC+Pm2V2smYlvmT9PI=
Subject key identifier: 4D:C2:0C:49:3A:A5:EE:78:3C:1E:FC:16:E4:FB:59:48:82:D8:E5:2C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 673C7A77210A15AD098213911A5C348B0B08688B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71cb4a8c-8eb6-4bfb-946a-69c882c60f61.roa
Signing time: Sat 01 Nov 2025 00:41:05 +0000
ROA not before: Sat 01 Nov 2025 00:41:05 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:1fee:5000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:3c:7a:77:21:0a:15:ad:09:82:13:91:1a:5c:34:8b:0b:08:68:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:41:05 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=3994e9acda8f73fa32d553c746d87df62a8542e8d2c14359bbfd856a35819ead, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1a:54:14:16:04:7b:60:e2:90:be:1f:77:01:
e1:84:31:04:d3:96:4a:21:62:20:a4:dc:99:8c:72:
4c:ec:b1:a5:88:5a:cb:3b:00:3e:14:d3:dc:11:1c:
43:12:f0:41:72:eb:c7:c3:6b:df:c6:3e:d6:0e:b1:
57:0f:53:25:be:5a:fa:8f:b2:84:2e:84:43:18:e5:
b1:5d:0d:f3:b6:f0:20:67:83:e1:96:fc:2c:10:3c:
3f:18:51:af:1b:50:37:8e:d4:c9:03:63:97:e0:08:
93:bd:04:6d:6b:02:bb:ef:09:d7:a8:82:55:70:c7:
0e:4c:7d:83:09:90:ba:d9:ed:73:0c:21:b2:8c:1d:
fb:e7:ab:bc:b9:0c:a7:7e:4d:92:32:5b:50:6c:7c:
fe:35:6e:14:01:16:2e:f4:31:ce:cd:cb:15:e7:e0:
78:32:bc:9f:83:df:57:75:f9:5e:a9:a1:f0:e3:69:
22:16:63:34:ec:79:a7:3d:9b:a6:68:9c:37:a8:cf:
1d:2a:21:f1:52:67:b2:5f:ea:22:65:b8:83:ab:39:
9b:3a:ea:3e:2a:e0:28:ef:30:37:24:f1:87:4d:7b:
30:5e:95:f0:f4:0b:3c:e8:3e:af:2b:1d:dd:04:a2:
34:cb:bd:8d:ee:5c:86:48:4c:13:22:e9:10:32:31:
43:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C2:0C:49:3A:A5:EE:78:3C:1E:FC:16:E4:FB:59:48:82:D8:E5:2C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71cb4a8c-8eb6-4bfb-946a-69c882c60f61.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fee:5000::/40
Signature Algorithm: sha256WithRSAEncryption
6e:66:08:e4:ff:1c:5e:f3:35:b0:3f:ea:27:bf:a7:04:68:45:
8d:e3:84:20:06:70:dd:22:9d:a3:5d:26:84:1e:c4:32:e7:ed:
db:e8:b3:cf:f1:d7:d4:eb:c0:3e:6a:99:8d:c9:52:80:19:03:
81:c0:6c:60:37:a1:3a:04:10:43:dc:07:9c:1f:3c:47:79:8c:
86:fb:d1:d9:c1:76:16:8b:c9:8f:02:8f:ea:a2:ee:e1:7c:cc:
21:43:bb:c6:ce:f7:ce:37:80:13:9d:dc:71:83:88:98:56:13:
70:73:db:d7:38:21:0e:ee:93:55:5c:47:0a:58:ee:ea:50:7a:
0c:50:02:9b:18:06:12:45:fd:b3:bd:d3:e0:73:80:56:1c:ff:
63:7c:94:44:8e:d6:4a:44:79:89:40:8c:e7:00:98:55:3a:84:
30:a1:12:b3:a1:2c:70:42:a7:55:48:8d:78:ad:e3:ef:93:de:
fa:08:4b:5f:af:5d:87:1c:d7:2b:8d:68:07:29:c7:eb:68:ab:
10:a6:40:6b:29:27:e2:5a:3a:c4:43:7c:64:11:dc:51:9d:9a:
13:f4:ad:ac:b8:2c:61:8f:1c:ad:b4:94:1a:de:46:7b:61:e0:
24:0e:22:7e:ae:56:14:63:6c:aa:73:e0:af:58:1c:77:ce:78:
f7:0a:c3:47
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 01:34:43 2025 by rpki-client