Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d181e350-1226-42f9-93e7-b1c693e77fc7.roa
File: d181e350-1226-42f9-93e7-b1c693e77fc7.roa (raw, json)
Hash identifier: uad265xgcmZG93M92pkh2sLPM/lrSsdWpy5SMpM82/4=
Subject key identifier: 10:76:C2:C8:8B:E5:67:FD:3F:49:7A:28:5E:0C:5B:8E:BA:9F:3D:3A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 38AF5D7B24E118077E766F6B340FECC16AA15486
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d181e350-1226-42f9-93e7-b1c693e77fc7.roa
Signing time: Sat 01 Nov 2025 00:20:55 +0000
ROA not before: Sat 01 Nov 2025 00:20:55 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 14618
IP address blocks: 50.19.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:af:5d:7b:24:e1:18:07:7e:76:6f:6b:34:0f:ec:c1:6a:a1:54:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:20:55 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=7040f3969d84a992a4b1a9c73cc621c6461321848a2335383f14a0b978681a4d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b8:21:c6:e2:c2:22:c2:c5:c2:57:7a:72:c0:
08:3e:70:67:8e:09:40:35:9c:5a:f8:e2:c6:e1:a1:
24:7d:9c:a3:66:cf:e3:5e:bd:66:77:fc:1a:eb:20:
76:ef:42:be:67:79:b1:05:d3:4d:b9:c8:4d:e6:47:
07:45:49:ae:63:4c:0b:70:19:db:da:44:a5:d1:28:
18:de:6b:61:9e:22:f7:a3:69:e8:b8:27:b7:85:96:
4d:28:91:7c:ef:1d:c0:54:b5:dd:d9:a2:ba:e3:77:
31:c4:62:ed:14:e9:b2:c0:b2:ef:30:bd:f0:5d:52:
4f:48:7a:94:24:83:bc:50:18:65:04:79:86:b3:da:
3e:d1:ba:5e:16:08:b6:9a:d0:54:6d:48:5c:90:ee:
ed:50:51:42:63:f9:42:bc:c0:f4:8e:e0:e8:fe:a1:
57:be:e3:5e:71:ce:e5:5f:57:2d:39:1c:b1:45:f8:
cc:f1:f5:c1:04:b2:b6:65:c8:64:03:80:f7:19:2f:
f7:5f:04:1d:00:bb:30:21:5e:cb:74:6c:04:32:a8:
32:41:78:2b:99:79:b8:ab:73:10:f6:99:4c:7b:c4:
21:f4:85:ca:84:01:fc:49:f5:ba:b9:aa:db:4b:ac:
af:2a:68:91:c9:7f:b8:05:dc:64:2c:3a:9a:26:00:
64:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:76:C2:C8:8B:E5:67:FD:3F:49:7A:28:5E:0C:5B:8E:BA:9F:3D:3A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d181e350-1226-42f9-93e7-b1c693e77fc7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.19.0.0/17
Signature Algorithm: sha256WithRSAEncryption
bc:93:28:0d:96:10:b9:ff:6b:42:9e:63:d8:a9:74:ce:dc:e2:
0b:a3:a9:28:96:1d:8a:91:51:88:15:b8:9c:94:8f:93:83:de:
a9:07:2d:f0:69:64:de:16:28:a8:1e:8b:60:6e:5a:f5:43:6b:
55:f9:f4:30:b0:15:0b:34:2d:95:3c:6d:31:4f:35:86:fe:a8:
80:24:f8:47:f4:92:18:48:91:9d:c9:34:4f:d0:57:f7:c2:49:
7c:cb:1c:06:f6:3c:ff:a1:3c:23:9d:4d:19:7b:d8:4b:b0:bd:
e3:33:c5:16:ba:45:62:e7:24:b6:3e:b8:7f:57:57:d2:3f:0c:
0b:78:ed:3c:be:13:fe:af:46:cc:6d:ca:20:1e:be:be:31:2f:
1a:67:70:27:ab:2b:8d:46:cb:34:20:a6:51:42:1f:82:97:54:
36:ea:af:f3:68:19:b8:4c:a6:3d:13:3b:4c:9a:d3:99:f9:ea:
ef:8f:be:eb:67:da:a3:7c:fb:b5:2a:06:bc:ea:c0:91:1a:c0:
a9:d5:0a:0e:22:2b:67:ff:ca:84:ea:5e:c5:ba:8f:77:bc:7d:
d4:cb:68:e2:25:75:5d:ff:02:21:9f:1c:b5:60:40:fb:71:57:
53:c0:bd:dc:47:05:65:7b:bb:5a:95:b8:c2:c9:a5:3f:2e:50:
32:71:85:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:50:02 2025 by rpki-client