Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8dbe079e-48ae-495d-80f4-d9ebbd01aaf7.roa
File: 8dbe079e-48ae-495d-80f4-d9ebbd01aaf7.roa (raw, json)
Hash identifier: keRqAPE4NxVqrirLKYR1pujccTTRyDG1xScyp/4F3FI=
Subject key identifier: E9:D1:8C:A5:23:9C:36:33:53:B8:B7:66:FD:4C:FC:61:0E:2E:CC:EF
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6AA4B7B7BD5707680531A1313DAD7337826B617A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8dbe079e-48ae-495d-80f4-d9ebbd01aaf7.roa
Signing time: Wed 22 Oct 2025 00:20:56 +0000
ROA not before: Wed 22 Oct 2025 00:20:56 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 35.54.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:a4:b7:b7:bd:57:07:68:05:31:a1:31:3d:ad:73:37:82:6b:61:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:20:56 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=0df53bafe759b730f5999e2a7805407b413cb02051fb0e51d6251c55a5b80bbb, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ba:1b:60:78:d3:65:d9:98:18:73:14:13:b5:
b8:82:c3:56:26:ef:75:7a:65:34:8a:d9:62:19:42:
66:d5:77:3d:74:e8:d6:74:f8:bd:92:29:47:c0:ce:
0d:62:41:71:cc:bb:68:58:d4:1b:13:41:52:bd:55:
13:fe:b4:91:6b:09:ab:9e:ab:b6:d1:37:3f:65:67:
c2:0a:f3:78:9f:4b:ab:65:f8:c4:a3:a9:ee:56:6c:
cf:bc:73:d0:16:f2:75:88:72:be:3e:38:97:81:10:
9f:89:f1:d6:25:13:07:f5:11:65:1a:e8:f6:bb:c3:
9c:9b:60:da:9c:cf:e0:24:2e:aa:81:c3:78:dd:22:
df:9a:7f:2e:15:5b:73:d2:85:ef:e3:f5:4a:ae:21:
df:2b:5f:a5:ac:85:00:18:c8:da:8e:7a:73:ee:9e:
9a:55:41:42:d4:b1:78:52:7b:a3:b2:8e:2b:0d:e8:
06:d0:cc:e9:a5:dd:7f:c5:fd:6a:d4:f1:99:2e:af:
e4:55:07:8b:62:63:c2:fa:22:44:a2:99:22:db:8d:
d9:50:7d:1f:44:00:62:db:a9:e9:f8:c6:81:30:d9:
82:bb:80:4c:20:22:eb:4e:e5:6b:27:71:e6:72:5b:
5b:3a:19:05:dd:50:6c:a2:0a:d2:e1:d0:28:2a:d8:
9f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D1:8C:A5:23:9C:36:33:53:B8:B7:66:FD:4C:FC:61:0E:2E:CC:EF
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8dbe079e-48ae-495d-80f4-d9ebbd01aaf7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.54.55.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:56:a2:01:52:a8:66:6a:77:19:13:a7:3a:19:1e:af:53:fd:
5f:8a:02:a9:df:0c:e4:d3:bf:8c:95:2f:3e:30:c7:85:97:a1:
73:89:cf:39:ce:b0:18:f2:49:7b:9d:f9:53:a2:9d:b3:af:28:
18:2e:22:b9:f5:bd:95:0f:b2:6d:c4:92:a7:54:13:11:a5:cd:
94:ae:dc:0a:83:39:de:b4:9e:d5:e9:d6:7c:90:0d:f8:6b:15:
40:88:81:97:0d:c8:05:cd:3e:12:c0:b6:48:75:67:fc:04:5a:
e3:b9:e8:b5:97:22:ab:e2:cc:76:f2:2b:62:c7:46:cb:cc:81:
3b:eb:7a:b5:05:9e:a4:b0:13:f1:ec:9e:30:78:fa:01:60:3e:
3e:28:c1:d0:5d:6f:a5:ac:a7:01:72:27:2e:a5:a4:7d:9e:24:
d3:eb:8b:3e:9e:c9:61:cc:a8:ca:95:a8:a4:fd:3f:64:c7:ac:
46:94:44:e3:c0:70:60:85:15:a3:ea:26:83:74:40:76:e5:f4:
a9:07:bd:13:79:7e:eb:68:35:48:72:e9:14:e3:29:0f:e0:3c:
63:64:e8:0e:de:9d:67:f6:6a:37:43:e9:4d:e0:ee:44:8f:91:
ed:ea:fa:4e:2c:69:76:a0:ab:e7:a5:7b:e5:ed:95:11:7b:7c:
4b:8b:af:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:40:42 2025 by rpki-client