Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e635426b-1e04-4c4a-ab70-f48e4c0272bb.roa
File: e635426b-1e04-4c4a-ab70-f48e4c0272bb.roa (raw, json)
Hash identifier: zp+uIZtfuYBotFNitgpL+IMOusxS7RN1Ucq8z6kzeUk=
Subject key identifier: C2:79:C7:28:78:2F:99:4E:03:62:CF:C4:74:95:E8:92:EA:F4:AE:36
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 61FFCA40B8153519465D149B6BA4EDEC1220606B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e635426b-1e04-4c4a-ab70-f48e4c0272bb.roa
Signing time: Wed 05 Nov 2025 00:40:10 +0000
ROA not before: Wed 05 Nov 2025 00:40:10 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 167.229.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:ff:ca:40:b8:15:35:19:46:5d:14:9b:6b:a4:ed:ec:12:20:60:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:40:10 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=975b7f905404e2edeca22d07451ba9a39016d31d668d7e58fdc56f3414aa42e5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ca:9c:80:7f:4a:2d:15:34:46:fe:2c:52:e8:
41:ce:b7:0a:85:24:1a:eb:ed:75:04:0a:08:1e:31:
93:5b:21:e5:c9:01:a5:da:3a:d4:0b:22:b5:88:e8:
04:cf:13:b5:1e:b8:fb:72:36:55:4b:e0:f0:0e:03:
5c:88:da:c3:66:5b:60:5b:e4:1f:ec:27:73:88:20:
ae:55:82:b4:b6:8d:e0:5e:d5:f6:52:49:12:5f:7e:
94:54:dc:77:d0:e0:8a:d7:5e:e0:22:39:08:a7:6a:
b8:9b:23:68:7f:86:48:ac:c5:55:d4:b8:66:e8:6e:
fd:fa:41:27:3d:eb:d4:6b:4c:d0:29:40:ad:9d:47:
52:77:ed:93:16:00:7d:0a:29:88:6f:c4:b8:84:41:
07:48:ed:27:02:c8:29:eb:81:68:4e:94:77:45:26:
b7:83:7e:98:bc:8d:fe:7b:10:4a:20:66:0d:e6:4e:
5a:af:58:47:8f:4a:1e:b4:d7:dc:8a:be:e7:ea:8f:
de:71:60:6e:f5:c5:06:e2:b9:87:ab:d1:20:74:66:
0f:0a:83:42:2e:ae:5d:99:ea:af:e8:3a:70:3e:bc:
5f:09:a0:db:59:34:62:2a:26:b6:1b:b6:4a:a5:06:
94:f8:57:6f:69:33:93:56:ec:45:66:fa:40:f3:9b:
21:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:79:C7:28:78:2F:99:4E:03:62:CF:C4:74:95:E8:92:EA:F4:AE:36
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e635426b-1e04-4c4a-ab70-f48e4c0272bb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:f7:39:d8:1d:e0:a3:ae:4e:10:00:a2:3d:cc:0d:07:96:b7:
10:8a:25:2d:bd:f8:1e:f1:3b:86:62:30:8c:98:52:36:a5:7d:
0b:89:c5:75:fd:8d:eb:ab:df:e5:3a:d3:e7:f6:c0:21:d5:f6:
d8:fb:9e:ce:4f:d6:3a:37:8b:fd:31:44:eb:f8:88:9e:b5:69:
a9:f7:59:7a:aa:7b:68:8b:ec:19:1b:f0:cd:b7:d3:62:ab:61:
2c:3a:ae:e9:20:ab:53:d3:f1:72:15:9e:38:2d:65:52:3e:b1:
41:d6:89:37:93:b2:03:07:9f:7f:ff:54:04:99:33:6a:22:c6:
f0:16:e6:27:e5:02:9a:87:0f:72:b7:e3:17:12:38:62:b7:68:
15:59:34:63:66:a3:9b:11:fa:ce:7f:01:ff:a4:0a:26:bc:4b:
65:98:17:55:36:c5:10:ef:1b:34:9c:b1:12:86:6b:1b:3c:6b:
ea:a2:7c:40:bd:81:23:02:c4:b9:fc:92:4c:5b:82:44:b3:ef:
6d:13:b9:10:83:10:7c:cf:82:1a:14:76:12:04:3a:48:f9:de:
f9:6f:f3:56:e2:84:46:37:d3:da:b6:d0:1f:14:62:88:44:c5:
73:ff:7e:3a:9d:f0:cf:61:71:fd:03:41:70:bc:d3:2c:01:39:
d8:98:10:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:46:07 2025 by rpki-client