Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa
File: 7d8956ca-c7c5-4819-a13e-59940ce8965b.roa (raw, json)
Hash identifier: EMhifW0WUkhQTC/ZEeVmYYg1a49cPElolQpTSz7875w=
Subject key identifier: 92:6A:B2:A0:75:60:50:EC:24:E0:42:EC:D9:7B:9E:FB:49:57:5B:F2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 72C795F2F7AA16988E371B1F8DA9A4D92D5EFEAB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa
Signing time: Sun 26 Oct 2025 00:31:39 +0000
ROA not before: Sun 26 Oct 2025 00:31:39 +0000
ROA not after: Sun 30 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.55.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:c7:95:f2:f7:aa:16:98:8e:37:1b:1f:8d:a9:a4:d9:2d:5e:fe:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 26 00:31:39 2025 GMT
Not After : Nov 30 23:59:59 2025 GMT
Subject: serialNumber=9bd86ca9344a7ffb6061adafea215b3fdbd77bfecab4e8b61681ef9e99a130f8, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cf:3c:c1:4d:67:cb:9d:65:b6:a8:5c:e0:f5:
8c:11:98:f5:be:92:4b:28:67:76:59:a5:12:4a:c4:
83:31:43:9d:93:be:21:79:4d:4a:06:6a:33:a4:1b:
1b:cd:7a:3f:50:88:12:71:f7:0e:03:6f:a0:ab:a2:
8e:d5:b1:2b:ad:6b:72:7a:28:1a:3e:32:13:59:a5:
d1:49:19:28:71:37:70:7c:51:68:e8:45:c6:7e:d2:
aa:23:06:c9:40:af:a2:c4:1d:d8:58:4e:6b:5d:c0:
f1:ca:5c:c8:52:82:2d:9c:fe:23:8b:63:a4:55:c1:
59:90:39:7e:c8:3b:40:ce:eb:f0:e3:dd:d4:60:6b:
19:ca:a7:fc:93:e1:0b:0e:b0:09:b1:12:95:dc:24:
58:03:96:bb:61:57:c7:6e:01:e6:4e:c9:76:c1:f1:
8a:b3:65:8d:46:09:0d:42:aa:e7:61:13:90:37:41:
41:d0:44:41:41:21:7e:ed:e1:3e:c6:81:6c:ef:36:
20:3d:b9:a0:5e:72:bb:50:5a:5b:e2:85:9a:61:c5:
53:5b:01:80:39:3a:53:90:a9:77:6b:84:2f:ff:9f:
05:bf:9c:3d:6e:28:19:44:95:5b:d9:6f:d7:db:c1:
5d:45:20:be:70:fc:39:f5:a5:b3:ad:cd:12:e7:31:
47:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:6A:B2:A0:75:60:50:EC:24:E0:42:EC:D9:7B:9E:FB:49:57:5B:F2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.55.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:1a:97:da:1b:1b:c8:14:b2:ba:a9:6d:f6:98:64:05:e7:34:
b5:bd:62:f1:60:43:9c:7e:70:05:eb:1e:5a:bd:4e:1c:77:b0:
86:b8:3c:18:61:2f:82:45:8c:de:59:77:17:52:87:e4:c6:95:
5a:07:e6:10:14:f3:b1:56:fa:1e:c2:b6:71:51:4e:db:48:cb:
d1:d9:f1:55:be:0d:36:d6:50:4e:3b:de:16:3b:e3:19:93:71:
5f:de:dc:de:1d:30:f3:28:19:b4:86:2a:3c:98:58:8a:2e:dd:
62:d2:40:c9:38:00:9d:08:71:ac:3c:3b:7c:54:e0:af:54:2f:
ea:fb:f1:ca:5f:2c:79:61:a4:9c:57:e1:83:18:10:8d:9c:7d:
d3:3b:79:50:d2:ed:38:2a:b0:7b:62:a9:47:4f:35:68:61:71:
c4:67:5a:d4:16:53:a9:31:ed:1d:28:7c:dd:dc:b9:b9:c0:f7:
51:8d:18:bf:41:7d:a0:f8:36:da:b8:9e:e4:fb:8a:f8:cb:0d:
e0:8b:13:4f:f7:9d:df:67:9a:19:ed:f7:44:75:5f:04:88:90:
5a:1c:9b:58:96:f1:f5:3a:11:21:b9:1f:7f:f4:cb:f3:82:76:
62:f0:66:78:73:91:50:16:5a:e4:47:43:aa:d8:52:f4:b4:8f:
34:92:51:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:52:05 2025 by rpki-client