Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa
File: d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa (raw, json)
Hash identifier: HjSntpOQEX7OFqaKFcA8Sok4sabJJ95Z0ec6WHketRo=
Subject key identifier: C5:37:CC:84:04:77:8C:93:E4:CF:E4:77:E1:68:B2:7C:0E:BE:0D:5B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 72FF17D2C94F50677489A138DA3A9B9339C1372C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa
Signing time: Wed 22 Oct 2025 00:00:56 +0000
ROA not before: Wed 22 Oct 2025 00:00:56 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 76.223.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:ff:17:d2:c9:4f:50:67:74:89:a1:38:da:3a:9b:93:39:c1:37:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:00:56 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=81a70e0fd30b333a78a4955f44b735dc0412d4d79c1d58f76db06215e80f0a4c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:09:db:d1:16:a7:80:bb:b7:fb:46:f9:38:29:
51:69:61:e0:d0:f4:d7:1c:5a:b9:a1:34:0c:85:d3:
63:2a:57:a8:fb:e4:ad:df:c7:2e:80:d9:1d:e3:a9:
48:a4:6e:af:d9:a0:0d:97:f0:aa:a0:13:ca:cf:03:
ff:79:b9:b4:be:af:4a:13:56:53:fe:f5:b5:49:d4:
42:94:9c:90:cf:4d:04:70:79:81:8c:5a:88:ee:c8:
41:3e:89:1a:6d:db:b3:bd:eb:2c:91:6e:e7:f2:82:
c6:20:a4:3b:bf:d3:3b:a9:a5:82:4e:50:da:b9:d4:
62:44:7c:60:5d:ba:c8:78:1d:59:14:f3:94:87:4a:
d1:a6:41:e4:59:21:0a:aa:6a:5f:ad:e4:00:ba:fc:
39:8c:05:0b:84:de:48:07:d7:4f:8e:47:5d:85:bb:
e1:30:55:a8:c8:c0:39:c6:8b:a8:f3:95:e3:71:3e:
57:c1:b1:bb:f2:f9:45:01:5a:96:f1:8e:7a:6a:6d:
7d:34:3a:57:61:23:c2:1a:e3:e2:e3:5b:3f:82:ad:
96:54:4d:f9:9d:1d:cc:c9:68:9a:b2:bd:a6:37:42:
67:ca:90:13:a9:3c:33:51:18:26:fd:0d:05:55:04:
5a:28:69:aa:ad:f5:16:6a:6d:64:68:03:94:d6:a1:
84:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:37:CC:84:04:77:8C:93:E4:CF:E4:77:E1:68:B2:7C:0E:BE:0D:5B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
76.223.163.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:4a:81:5a:ad:6b:4f:5b:7c:be:45:02:57:b6:f6:c6:fa:9f:
89:c9:b7:c2:65:36:dc:dd:e9:5d:5e:b2:af:af:d1:8c:9f:fd:
76:0e:07:af:74:74:91:2a:e2:01:a2:f8:41:8e:00:d1:1f:41:
23:ff:c8:38:b5:86:fa:85:ec:b6:6e:6f:e8:8c:26:ac:3c:53:
1a:5b:59:f8:c7:98:63:48:b7:db:a4:ef:d9:a4:a2:c5:b0:3f:
08:09:a7:ec:52:41:d6:d6:62:71:f1:c2:4a:ea:68:9c:44:fe:
60:dd:50:bb:72:68:41:6a:41:ad:52:cc:d6:78:13:9d:a4:38:
ad:d7:ab:66:4a:73:00:8c:f1:8e:60:1a:a0:1a:74:22:9c:c4:
51:9e:ce:76:3c:e2:da:23:69:c8:d3:07:9c:a5:fc:34:45:97:
ad:43:f5:9c:fb:bb:fc:8d:3f:fa:05:4f:a0:8f:7c:fe:27:b2:
72:c6:44:40:07:48:6d:38:06:8c:08:16:c4:67:85:ab:5f:af:
94:1b:5f:a5:6a:79:36:c2:7a:a2:f1:85:ee:24:7f:db:8e:06:
16:e2:0e:9c:ce:2d:17:fd:96:1a:fc:81:05:04:ea:fc:82:46:
ae:c9:cf:97:bd:9b:83:fa:7c:2c:c8:89:bc:6a:67:3a:91:9a:
99:73:08:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:47:19 2025 by rpki-client