Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa
File: 79483f1f-35c5-4ee2-9db8-c98fac055e03.roa (raw, json)
Hash identifier: DzCVWyI6x0MUn6lmPNOs6q5kj5xQSQZC2wspzWEvelU=
Subject key identifier: 5C:42:B1:DF:04:12:E9:42:B0:7E:19:BF:61:D8:ED:DA:6B:FC:CA:63
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7D4DC328AA3C7DAD9CAA441EA864028744307FB4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa
Signing time: Tue 28 Oct 2025 00:20:47 +0000
ROA not before: Tue 28 Oct 2025 00:20:47 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f68:a400::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:4d:c3:28:aa:3c:7d:ad:9c:aa:44:1e:a8:64:02:87:44:30:7f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 00:20:47 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=35a746ac24d463dcc2dc2e6b8c5b31d0c4eea1554bd2d5ff60fde4b60c95d744, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:66:3e:bc:15:7e:90:e2:eb:4f:1f:55:d6:79:
32:53:07:ad:26:07:7f:e7:f9:a2:3e:9c:05:ec:96:
80:ec:b5:5a:8b:c8:2d:7f:07:27:33:d7:ea:a6:d7:
d7:87:ae:d1:cb:ed:43:73:03:ce:7e:58:45:5d:1b:
ae:b1:6b:de:c2:15:ce:f3:86:28:51:de:5d:88:c4:
b2:16:96:b3:1e:08:57:52:a7:71:d0:4d:15:ad:e2:
d6:70:71:31:93:51:1a:88:93:e0:e0:13:14:b9:10:
c9:58:f5:71:b5:26:59:e5:31:80:e0:fa:31:e9:ce:
85:b5:32:c7:e6:60:bb:8e:85:ed:26:42:fa:af:b1:
c8:3a:35:e0:4b:34:1c:e0:6b:72:fa:58:8e:fd:26:
c8:e7:c7:95:62:c6:30:57:8d:25:c3:ef:b6:3d:d1:
e4:ac:2c:00:25:2d:bf:f1:5e:e0:5f:34:58:6e:ed:
09:e2:19:db:07:72:b4:c0:16:ad:06:a9:ac:8b:f2:
86:e0:b5:fc:bd:3f:77:82:0d:68:0c:80:c0:b1:94:
0e:7d:37:0a:16:20:17:3f:a1:1b:c7:d2:a4:45:78:
6d:a0:c2:48:46:64:16:95:d0:fb:a5:4e:40:4f:49:
21:ed:dd:ec:ab:63:55:1a:ae:c7:62:c8:1a:54:53:
8c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:42:B1:DF:04:12:E9:42:B0:7E:19:BF:61:D8:ED:DA:6B:FC:CA:63
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f68:a400::/40
Signature Algorithm: sha256WithRSAEncryption
16:a4:13:bc:12:cb:e1:e9:71:5c:9f:bf:8d:e1:49:bc:72:23:
f9:ef:31:b5:8d:ae:a8:fd:db:16:2f:50:72:5d:aa:5c:9c:19:
6c:a7:67:2d:d0:f8:60:ea:bf:cf:95:cf:bf:aa:2c:27:6c:1d:
0a:f4:cb:ef:6d:f7:9a:cf:32:0e:cb:db:7b:16:03:5b:4e:d2:
b7:d7:a0:38:3d:96:bc:56:f4:76:f9:c4:30:97:93:fa:e2:24:
df:82:fb:1e:37:df:2d:1d:2a:9e:7f:3f:ff:25:e5:02:b2:7f:
21:41:aa:66:38:5b:6a:6a:5c:39:1d:c0:2c:c8:63:ea:f4:9e:
b2:3c:da:c1:46:ee:1c:98:c2:8c:1d:2a:bb:d8:25:1e:99:b6:
ac:e4:5d:3c:0e:35:e1:f5:12:74:b2:bc:ba:b8:f1:cc:90:cc:
62:a2:11:c6:4d:6d:41:f5:da:b4:50:2b:6d:da:02:27:6a:f6:
91:4a:61:a4:2b:a1:ab:4a:22:c1:88:59:cf:86:f2:c9:68:ed:
43:c9:3b:e1:6a:fb:0f:2c:6c:84:87:bb:8e:1c:b7:4f:61:53:
3c:b3:fd:69:4a:a7:3f:e5:c2:80:aa:62:19:22:bd:4d:a6:d6:
55:bd:9e:da:1f:0d:e9:fd:fb:e2:06:a8:f8:41:b2:f0:23:18:
93:bd:53:f2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 17:50:40 2025 by rpki-client