Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa
File: 97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa (raw, json)
Hash identifier: pZrr6bjzctmq+siBCqqvcL4LIgFtNsL0a070hj6k6mw=
Subject key identifier: 99:31:2C:FE:78:A9:B9:4A:A5:F0:E5:04:DA:04:77:7F:3C:D7:E7:97
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 066A28C80C6ABD2DEE90BD905D5B86EF5CB0BD42
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa
Signing time: Fri 24 Oct 2025 00:12:13 +0000
ROA not before: Fri 24 Oct 2025 00:12:13 +0000
ROA not after: Fri 28 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 74.186.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:6a:28:c8:0c:6a:bd:2d:ee:90:bd:90:5d:5b:86:ef:5c:b0:bd:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 24 00:12:13 2025 GMT
Not After : Nov 28 23:59:59 2025 GMT
Subject: serialNumber=192452dfcf11e6338164ef11cd2985c843a6f4cb5727b76fa1a3fe9d4a66fa5c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:45:46:58:71:d5:65:7f:77:b5:06:09:44:38:
09:42:06:56:ac:b0:b5:c7:2a:5b:77:b2:ad:0a:04:
d3:3b:c5:cc:31:53:bb:89:3b:8f:ab:38:cc:54:3d:
f0:d2:f6:5b:fb:63:6b:54:b6:3e:cb:6d:c5:e7:71:
c8:c1:48:a7:59:cc:17:8a:1c:67:60:53:17:58:5c:
92:e5:59:e1:c3:4e:ad:bb:4c:5a:43:43:e3:d6:8b:
d5:5a:cc:25:01:ec:a8:b5:6a:ce:fd:04:73:58:07:
b3:b1:69:a0:eb:4f:2b:d1:da:0b:b7:e4:d8:2d:98:
cf:5f:18:8c:90:a7:c8:da:23:1e:00:a6:60:da:52:
4e:ea:70:9a:89:49:48:3d:4d:c1:44:f3:bc:8e:7f:
01:22:07:f8:27:da:f0:80:7f:51:60:be:d0:a7:95:
dd:2a:ed:58:47:cb:10:fe:63:fa:48:b3:3a:ed:f6:
ae:d9:89:25:ca:43:bb:b9:53:58:66:af:b2:30:ce:
ec:ba:d3:4a:d1:3a:d3:a1:fd:a5:7d:ad:21:ad:bf:
90:7d:2a:84:89:86:1c:d1:81:e2:ca:01:7e:50:39:
d0:95:9a:64:eb:91:bb:98:23:6a:89:92:16:da:39:
f8:83:1c:ce:dd:86:ea:c7:50:da:47:04:bf:60:05:
12:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:31:2C:FE:78:A9:B9:4A:A5:F0:E5:04:DA:04:77:7F:3C:D7:E7:97
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.186.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0b:b5:10:c3:54:ae:26:2c:21:46:4a:e5:d1:09:7b:00:6d:01:
75:0a:d8:67:71:54:d3:9c:61:97:31:f5:7f:ff:8f:c3:4e:dd:
08:77:0a:53:cb:ab:79:7b:e9:8a:6e:bd:c5:10:59:46:d5:be:
f8:06:ba:cf:04:97:54:63:c0:fd:5b:cd:5f:86:4d:d9:f6:51:
6e:f8:42:7e:ac:54:36:f2:9a:ac:ee:af:ce:dd:ac:ab:c1:01:
94:db:e0:f1:a2:0e:53:69:1b:0f:01:1b:45:f5:bf:44:15:ba:
e5:0e:ff:71:20:1c:10:ec:50:df:52:44:d9:1d:4c:b3:d6:62:
0d:74:8b:d9:19:da:22:69:b0:de:4d:da:8f:8c:c8:12:ff:73:
64:34:93:f5:91:dc:3f:c9:76:5b:37:c1:7b:67:14:8e:62:6f:
ef:d3:3c:70:1a:4b:4c:4a:8a:62:84:b1:ab:4e:4e:74:b9:9c:
3a:31:9f:65:ca:95:55:80:29:e6:7f:d7:e7:bb:7b:5a:0c:4b:
f5:ea:b8:94:1f:5c:51:52:f0:43:41:93:4d:18:8f:ea:68:37:
d6:94:85:36:2d:57:8f:6e:9e:e7:98:e5:d0:df:ee:01:1e:07:
42:65:65:d6:a9:5c:f7:7c:c9:7f:56:25:72:06:a3:c5:60:71:
2d:a1:3b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:30:34 2025 by rpki-client