Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/827dd8ab-835b-4309-b0ff-29e59bed4da1.roa
File: 827dd8ab-835b-4309-b0ff-29e59bed4da1.roa (raw, json)
Hash identifier: 8LnH3MLcLkH88xiSWTPM8B+mZ1mSG0oNSAHhRgId9zA=
Subject key identifier: E8:90:A9:84:73:E2:3A:E3:31:87:68:69:F4:C0:F6:D1:89:6E:7C:08
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 20F9AC4DBAA2FB33A1B13BCC2CC24AEE3CA09DF6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/827dd8ab-835b-4309-b0ff-29e59bed4da1.roa
Signing time: Wed 22 Oct 2025 00:10:53 +0000
ROA not before: Wed 22 Oct 2025 00:10:53 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1f68:40c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:f9:ac:4d:ba:a2:fb:33:a1:b1:3b:cc:2c:c2:4a:ee:3c:a0:9d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:10:53 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=57bde38775c0edfba9fce9bfa0584be00057523355d2516fad9f9a81c050fd18, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3b:1c:0f:42:6e:06:17:d6:26:b5:f1:20:78:
4d:dd:32:a1:53:16:f0:a5:8a:61:e8:38:48:e8:fd:
5b:49:9f:2b:e6:1f:3b:0b:c7:30:63:d7:57:2b:aa:
9e:94:94:6f:e3:71:72:8d:a2:71:fa:e0:eb:0b:a5:
99:9c:c3:59:6f:67:38:06:33:a9:5f:2c:db:a5:a7:
d1:f3:e7:dc:6b:84:08:94:f5:66:c1:e1:94:18:c1:
5a:49:dd:3d:78:fc:23:d7:7f:ad:41:8c:61:57:fe:
bb:d1:33:b8:c6:41:43:2a:7d:0c:f5:db:b5:8a:34:
e1:95:8f:5b:63:2d:28:13:04:8f:b6:b2:79:cb:44:
1b:16:e3:b4:cb:b0:82:51:2e:45:7c:c1:64:ab:b4:
6d:1b:41:6c:13:0e:bf:97:69:2c:03:93:be:13:09:
d7:a5:3e:bc:ad:b1:3e:bb:4c:29:c6:9c:f8:4b:e9:
6b:73:b8:70:84:5c:fe:24:16:16:ab:c0:54:be:23:
e4:73:dc:92:81:c0:80:db:b8:b8:ba:79:65:f3:af:
76:eb:d0:b2:14:38:51:a1:41:b3:97:73:9e:15:97:
95:f2:c8:94:e4:4d:1c:40:61:77:78:f8:5b:d8:b6:
05:2a:38:a1:86:89:d9:00:8f:78:00:b9:e4:53:d1:
2e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:90:A9:84:73:E2:3A:E3:31:87:68:69:F4:C0:F6:D1:89:6E:7C:08
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/827dd8ab-835b-4309-b0ff-29e59bed4da1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f68:40c0::/46
Signature Algorithm: sha256WithRSAEncryption
31:bf:c4:82:6e:aa:c8:b5:46:0b:73:93:d1:a4:2f:bc:b2:9e:
e5:d0:ee:ee:39:d1:d7:66:78:1e:67:3d:45:16:14:ea:39:e9:
4a:a1:2f:9f:4f:3b:9b:12:5f:0c:5f:ff:f3:b6:95:cf:57:64:
64:4f:6d:d2:af:9a:ae:48:58:ea:33:b7:86:8e:11:ff:b8:1a:
e9:c3:35:1e:00:8c:58:e4:31:cb:be:dc:6c:ac:20:db:70:28:
1d:fa:fb:b1:97:7c:f7:03:31:cf:11:17:ba:7e:f5:d9:89:41:
89:a8:68:74:d7:e2:9d:75:82:af:4d:ed:9e:89:48:6a:e7:44:
b5:a3:41:2a:d2:ff:fd:17:cc:6c:60:4c:31:2e:4a:a7:10:d7:
80:64:de:2c:96:cb:53:df:39:ac:65:f6:f6:db:de:34:6e:70:
4c:dd:6f:42:69:46:f2:a8:59:5d:28:1a:e3:f2:37:19:c8:01:
98:e3:1b:76:7b:bd:bb:95:5a:2c:d0:dd:b6:61:0a:bf:1c:83:
d5:eb:f7:09:be:a1:28:96:db:ce:a3:9d:14:84:91:12:c6:e2:
9f:23:3f:59:94:01:d7:10:6e:f0:d9:81:72:ec:46:64:df:28:
9a:82:5c:dc:90:5a:95:3a:f6:b9:e1:ad:7b:98:e7:12:63:9d:
cf:fe:7e:83
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 5 05:39:06 2025 by rpki-client