Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf58c506-215e-438f-baee-9c4a03ed9a7f.roa
File: cf58c506-215e-438f-baee-9c4a03ed9a7f.roa (raw, json)
Hash identifier: y3diDuHZJoH8inzY0v0sioGK9iEGOJuNu78HIegvPBo=
Subject key identifier: 24:E8:A1:6D:F8:35:38:FB:86:58:C9:F5:3B:A1:67:31:32:BB:04:41
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 34C424FEB101F0F1E1757DDCB8A898A02A5756F5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf58c506-215e-438f-baee-9c4a03ed9a7f.roa
Signing time: Sat 01 Nov 2025 00:50:07 +0000
ROA not before: Sat 01 Nov 2025 00:50:07 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 184.72.208.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:c4:24:fe:b1:01:f0:f1:e1:75:7d:dc:b8:a8:98:a0:2a:57:56:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:50:07 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=35a514433ce7f2a2af6c50917edd76e03debc772a03fc6ac12da3c4426363d54, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4d:3b:8e:9d:6f:49:6c:1f:74:bb:18:3b:c0:
3a:35:4e:eb:24:de:e9:9c:2b:a0:81:5a:62:1a:b4:
60:01:2c:cc:21:40:d2:9b:ff:6b:d8:ab:ce:f8:35:
33:25:01:c7:c3:c7:2a:04:cd:f2:97:5a:be:50:9c:
19:fd:56:87:46:78:b0:9c:99:e6:4e:55:69:2a:12:
94:99:58:be:48:ce:3c:63:e6:c9:85:ce:0e:0e:b6:
86:1e:96:9b:84:ca:b7:43:e0:43:fa:a9:43:05:0f:
20:53:1f:6b:eb:ad:32:7e:14:97:e3:2a:ce:c8:05:
45:14:17:e5:11:6e:bf:81:0a:56:25:46:e4:0f:64:
ae:fc:28:8a:d0:62:b3:0a:1d:a1:26:21:24:4b:11:
08:04:db:7b:bd:9f:1a:00:a4:f6:67:df:6b:ac:16:
b7:da:68:a5:cc:69:b1:d4:ec:4e:fe:58:a4:cb:8e:
3a:0e:44:40:7c:52:55:61:88:06:39:fb:bd:26:ef:
b5:07:74:54:12:21:38:7d:a4:16:2e:8f:27:62:34:
1f:b7:36:79:8c:5b:58:c1:a8:1c:71:6e:e0:8b:99:
02:00:83:a8:0e:3c:01:07:fa:41:19:64:7d:4c:2d:
b2:22:7d:94:dc:a3:9f:17:f1:04:ba:46:6a:ca:cb:
70:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E8:A1:6D:F8:35:38:FB:86:58:C9:F5:3B:A1:67:31:32:BB:04:41
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf58c506-215e-438f-baee-9c4a03ed9a7f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.72.208.0/21
Signature Algorithm: sha256WithRSAEncryption
74:f1:8c:2c:12:e8:f1:c3:66:5f:96:76:45:d7:52:3c:00:b1:
15:13:30:de:4d:ad:e0:0b:21:f3:b3:21:11:2d:ab:74:54:1b:
4e:be:ca:9b:87:91:88:eb:a8:f4:44:af:c2:48:fb:ad:f0:a1:
3a:b1:d9:ae:67:81:92:13:ff:8f:16:80:35:28:dc:e3:ad:17:
00:b3:4b:a3:47:a3:e7:76:83:6a:cb:26:e6:c1:22:d9:81:18:
30:9f:1e:ac:9d:fa:a3:61:50:62:47:a2:8a:a7:ce:c8:ea:40:
f4:9d:2c:df:68:b4:e0:51:37:7f:77:b3:ce:7b:53:e8:6d:4f:
76:b6:72:9c:ae:7c:1a:4c:96:78:64:ea:5c:ac:31:ed:88:c4:
8f:7e:fa:05:36:ba:74:33:14:95:3b:41:a1:b9:80:5a:af:de:
f0:b5:01:3e:0c:5f:29:31:63:c4:8c:64:8e:b9:20:19:c1:92:
e3:16:02:f0:cf:76:8e:44:d7:83:60:fe:5e:7d:f1:30:5e:ef:
4c:a3:cb:17:b5:ba:dd:bb:71:bf:7a:81:fb:b9:c0:dd:03:f8:
cd:23:ea:cd:3d:dd:a6:7d:27:c1:b8:57:95:2a:29:6c:e8:c2:
68:28:21:dc:ea:f2:e8:fc:2e:14:5b:ec:34:92:d7:24:56:63:
40:46:bf:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:47:07 2025 by rpki-client