Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e214b9c9-8b1e-436f-a485-5479e119eac5.roa
File: e214b9c9-8b1e-436f-a485-5479e119eac5.roa (raw, json)
Hash identifier: uFkfLzKKc4bKuZmBKtHSuAxIXDC84hD8TSpbC+gqwX8=
Subject key identifier: 8C:19:75:10:D2:A0:53:3C:BF:34:5B:97:D4:23:D0:B3:6B:85:DE:34
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1DE92D7782A4182D6F819034DD4715D3828285D5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e214b9c9-8b1e-436f-a485-5479e119eac5.roa
Signing time: Sat 01 Nov 2025 00:10:38 +0000
ROA not before: Sat 01 Nov 2025 00:10:38 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 14618
IP address blocks: 184.73.128.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:e9:2d:77:82:a4:18:2d:6f:81:90:34:dd:47:15:d3:82:82:85:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:10:38 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=7285ea84d94280960d15e2e342e8a11507d4df1b5751041a627e0bd420c4c46e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9e:55:ce:66:03:30:5e:e8:e5:3a:90:cf:a0:
35:a0:ed:8c:b0:9f:d3:ca:e8:e7:3d:87:11:35:ce:
78:78:45:c2:13:2d:ca:b3:b5:b7:52:a5:78:e4:f0:
92:69:35:d9:44:81:28:c0:4c:95:b9:8e:1b:9b:22:
25:28:a4:ce:0e:d4:fe:8d:b6:d3:74:ed:6a:bc:d3:
15:77:ab:00:36:fc:3a:74:ce:3a:1b:ff:af:27:b7:
72:9b:22:d3:1c:04:21:0d:2d:d8:d2:89:bb:70:61:
be:ec:98:de:32:0c:2f:77:4d:56:fe:73:b4:54:08:
b2:36:64:46:73:77:a1:cb:93:7f:32:3d:04:1b:73:
d0:4b:db:ca:6c:fd:07:dd:06:b1:b0:5d:99:b4:18:
62:d0:48:64:19:34:4c:8c:32:df:f6:7c:17:82:a2:
88:14:28:c3:fa:c3:6e:a9:b0:a5:90:f6:45:a4:f5:
8d:25:c8:e5:b4:20:8e:23:2b:37:77:d2:e6:01:3e:
3e:83:e9:45:c9:69:6c:24:f1:07:fb:74:75:f8:b1:
d8:bf:b1:25:27:4c:66:7b:d5:23:ee:e5:9e:24:19:
80:dd:9c:fc:eb:55:94:18:71:f6:be:06:77:9b:e0:
f5:a2:8e:08:6a:f2:0c:f2:be:3c:b1:70:34:da:fd:
92:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:19:75:10:D2:A0:53:3C:BF:34:5B:97:D4:23:D0:B3:6B:85:DE:34
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e214b9c9-8b1e-436f-a485-5479e119eac5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.73.128.0/20
Signature Algorithm: sha256WithRSAEncryption
16:17:cb:c0:69:94:86:02:0c:97:6c:76:67:5a:4d:64:41:ac:
9f:83:13:3e:3b:c4:8e:c4:1a:c1:af:7c:55:d0:b6:6e:0e:46:
81:be:ba:ba:01:bc:7a:9e:d2:55:bc:03:84:01:e8:7e:c2:81:
11:45:00:73:50:ff:16:3f:19:0b:ee:dd:70:3f:e6:71:87:d2:
7f:6f:23:c8:06:ab:81:2e:72:87:ba:ec:be:77:b1:7e:4d:ad:
50:b2:fc:af:77:5a:2f:40:68:50:1a:ff:72:bc:67:5f:f4:8b:
68:1b:c8:1b:1e:06:10:6b:bc:20:ed:46:56:8c:d3:64:30:2b:
41:0d:61:bd:f6:56:43:1c:0f:1b:38:ca:13:54:f2:20:b6:77:
27:11:32:4e:97:df:f8:b6:f5:34:c1:4a:92:47:63:90:58:77:
26:9f:64:6c:b2:16:9c:4c:97:be:04:b7:a9:5b:87:ae:52:3d:
b1:db:cc:99:ef:d4:4a:ea:35:ca:9f:58:3d:09:36:71:b4:a1:
cc:53:f7:cb:2a:e3:98:f4:dd:52:79:65:71:2d:74:10:68:ca:
7d:c7:e2:4e:e5:5f:8d:86:0d:c1:8f:92:83:02:78:e6:9f:d9:
5b:c7:d2:e0:20:80:28:0c:41:86:e0:09:b6:aa:95:9d:12:1f:
e7:24:09:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:49:58 2025 by rpki-client