Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1922148-0081-4f06-b9be-a02446d66975.roa
File: d1922148-0081-4f06-b9be-a02446d66975.roa (raw, json)
Hash identifier: Y0DQxxft18BajQzqA+ShW9r33j/sJ06+a9tTlT6XEaQ=
Subject key identifier: 05:7E:D2:13:44:5D:99:1F:9E:67:3F:ED:1F:15:FB:D8:68:62:22:F1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 58712B3312D7B4277FD231B3D6B4AD87CC62CDE9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1922148-0081-4f06-b9be-a02446d66975.roa
Signing time: Sun 26 Oct 2025 00:11:22 +0000
ROA not before: Sun 26 Oct 2025 00:11:22 +0000
ROA not after: Sun 30 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f2c:4000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:71:2b:33:12:d7:b4:27:7f:d2:31:b3:d6:b4:ad:87:cc:62:cd:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 26 00:11:22 2025 GMT
Not After : Nov 30 23:59:59 2025 GMT
Subject: serialNumber=b22c544edd4f5a3c5c95cc4beedcbfa827d871dc972f744190da4fd95a083028, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a0:75:59:48:de:4f:7a:0e:58:e6:01:6a:c0:
d1:32:99:96:6b:57:41:13:8c:ed:f3:c9:3e:a3:3e:
8e:93:35:b8:87:b0:56:cb:f9:6f:d4:f6:57:be:14:
42:33:6b:20:f9:8c:46:cc:3e:e6:c3:89:47:c9:eb:
03:0b:c5:d5:f4:52:71:24:f9:30:c0:54:57:d4:b6:
66:15:b0:1f:bf:27:1b:cc:b7:df:36:cf:84:30:15:
4b:6f:8c:6a:e7:34:7b:5b:99:5e:1b:69:ff:aa:78:
8c:03:bb:98:73:6e:06:0b:d5:f4:b0:72:a6:2a:6f:
18:79:48:17:2d:b7:f8:3e:5f:62:58:07:24:45:f9:
cf:e3:11:e9:bf:b6:6c:f7:6d:c0:d5:77:f1:39:33:
e6:b2:fa:67:e3:d1:bd:42:e2:de:1b:27:a8:d5:fa:
99:88:d7:36:b8:36:40:04:a7:7e:e5:4c:4f:1a:67:
34:df:97:03:17:16:41:67:6a:9b:d3:da:19:5f:1c:
6d:ae:ea:bf:f0:90:98:1a:91:c4:a8:18:97:83:ed:
35:1a:93:05:69:82:51:c9:e8:36:9a:fc:26:41:34:
1a:01:69:99:3c:f6:2f:03:07:9c:1f:12:54:11:a6:
c9:3e:e8:3e:49:05:98:32:da:8a:d2:0c:78:26:f5:
fa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:7E:D2:13:44:5D:99:1F:9E:67:3F:ED:1F:15:FB:D8:68:62:22:F1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1922148-0081-4f06-b9be-a02446d66975.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f2c:4000::/36
Signature Algorithm: sha256WithRSAEncryption
43:12:da:9a:81:fa:ae:73:17:d2:50:9c:cd:ad:01:76:ec:93:
13:f3:ee:85:af:81:c2:0f:27:87:19:16:3c:b7:14:eb:2b:12:
04:98:d8:ed:7a:3e:3d:fb:01:10:85:24:fd:55:dc:f0:0d:25:
a2:e7:51:19:29:f8:ea:c6:ca:09:be:cd:d6:90:2c:81:26:c8:
8e:09:94:a8:81:be:7b:bc:20:7e:81:5a:95:13:d1:df:5d:4a:
aa:98:1b:91:7e:84:0e:75:5f:0a:0a:2d:11:80:26:a2:c3:36:
16:1d:79:1c:c7:e5:26:d1:35:69:6a:e7:20:99:e6:5e:0f:f5:
8c:f3:be:de:e0:68:c9:79:ad:f9:78:d3:5e:06:4c:4e:23:30:
c4:a2:76:f0:58:20:57:7e:19:51:4b:55:bb:78:f2:ce:77:63:
3e:14:32:1e:63:23:79:ea:ef:6d:f8:e1:33:81:bf:f4:b4:eb:
31:53:d5:54:a5:9a:d7:bd:0d:6e:a7:cb:3c:45:99:a3:27:eb:
c0:f6:6a:81:79:d1:d2:b3:2e:01:e1:ce:81:c2:02:46:54:e8:
0d:c9:4c:e5:15:66:bb:ca:5e:be:64:f4:09:6f:2f:c3:19:80:
ab:98:c3:f8:54:e3:5f:c5:d0:72:13:e0:b2:d3:4f:0f:d7:21:
55:cf:47:4d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 05:47:54 2025 by rpki-client