Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d76ac6f6-0637-40af-9612-f7277b58399f.roa
File: d76ac6f6-0637-40af-9612-f7277b58399f.roa (raw, json)
Hash identifier: XqvHW0vXwCSmMJ6Preiokv545+yirQ91ikGewpx6HMs=
Subject key identifier: D2:82:60:C4:E0:65:A9:DA:E4:45:CD:A9:1C:A0:7D:7F:6D:1A:F4:9C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2859CC914C90EFBC8A0828EA762AFC6B9F9043E7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d76ac6f6-0637-40af-9612-f7277b58399f.roa
Signing time: Fri 31 Oct 2025 00:40:49 +0000
ROA not before: Fri 31 Oct 2025 00:40:49 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 44.215.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:59:cc:91:4c:90:ef:bc:8a:08:28:ea:76:2a:fc:6b:9f:90:43:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 00:40:49 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=db6267304ed777edf27f53a01e3d8366df0cab141ab96cdbb37c39d056880306, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1a:84:91:f4:ca:8b:bc:45:99:18:81:c5:8f:
70:d7:ab:25:40:c6:27:8c:0f:20:4a:83:65:e5:4a:
8a:17:b9:a5:68:97:7b:9e:f6:47:9b:84:23:67:fb:
53:3a:b6:17:63:82:e9:fc:9c:e7:b4:bb:eb:70:91:
43:d5:b8:36:b8:68:d7:9d:8f:52:98:f1:44:30:98:
45:2f:99:a0:b2:a4:92:73:43:8a:fa:5d:ae:ab:39:
5a:e1:96:78:09:d3:b1:13:f6:ad:11:8e:7b:2d:f0:
25:bc:9a:66:00:b0:72:88:b5:1e:86:8e:fc:f8:f1:
d7:5b:d9:e1:eb:bd:19:e6:3e:99:71:9d:3e:55:f1:
7c:04:05:00:7f:ba:bc:5b:3a:f7:6b:45:42:b7:13:
6e:12:9f:c9:11:03:0b:6c:51:4a:ab:0a:21:c6:8c:
d8:b5:8d:94:c9:27:d7:72:ac:d7:b1:fa:ad:e8:f4:
ba:07:95:80:32:fa:16:be:19:dd:69:fa:78:ed:78:
6e:22:9f:ca:da:9a:7d:05:df:1b:8a:1d:a4:06:7f:
42:be:dd:ef:1b:57:40:8c:9a:64:1a:bc:23:85:72:
ab:31:02:37:01:3b:c1:33:5d:83:74:57:59:6a:10:
ed:25:61:21:a2:2e:d1:0b:b0:1c:e3:fe:b2:52:a4:
85:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:82:60:C4:E0:65:A9:DA:E4:45:CD:A9:1C:A0:7D:7F:6D:1A:F4:9C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d76ac6f6-0637-40af-9612-f7277b58399f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
44.215.128.0/22
Signature Algorithm: sha256WithRSAEncryption
54:3f:5d:16:7b:8a:c5:62:6e:ad:d7:0c:09:a0:ff:07:19:6a:
8f:63:fb:43:61:63:f9:33:ad:a4:37:78:e8:99:22:be:c2:52:
c3:00:ca:94:f5:ff:de:f1:85:cb:30:63:2a:ff:75:de:c3:3e:
00:46:d7:63:cf:af:6d:5d:a9:03:eb:5e:44:79:93:13:f8:e2:
35:e8:1d:e9:21:b1:71:72:c6:1c:5c:88:76:4f:9f:04:d8:6e:
77:1f:b8:32:c1:23:54:07:55:f8:6f:26:7c:7c:cb:92:1c:4d:
22:7d:78:2a:5a:fc:1f:bd:b4:d3:d8:96:6f:3f:f4:e3:8c:8b:
de:d9:9e:fe:9d:a8:2f:4c:e1:e1:d9:8c:59:8f:83:9d:ef:7d:
d2:c8:a3:5f:d4:05:b9:0e:1f:8e:5d:8e:26:4c:0e:54:a3:cb:
84:12:12:14:f8:2f:c3:9b:66:2d:35:fc:9a:ca:9b:6b:f9:70:
f0:2c:44:b1:60:4d:4a:30:69:6e:d3:e7:a0:99:ee:d5:61:3b:
51:fa:d6:f0:94:25:33:8c:a8:6d:36:62:64:5e:ee:2f:c7:e8:
d5:cc:44:d1:98:6d:0e:aa:c1:55:c7:3e:1c:dc:e6:bd:b0:d4:
f9:f3:20:bd:c4:41:59:46:16:2a:ab:5e:c3:96:b0:50:7d:87:
d0:39:e5:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:45:52 2025 by rpki-client