Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa
File: e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa (raw, json)
Hash identifier: fVeQGHNfCly8ESfPPmUJ5c7wvLqXwMshMT/+kjthakw=
Subject key identifier: 93:D5:05:D6:87:62:83:84:50:03:11:9E:D6:2F:BF:4A:F3:7C:B8:20
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 263AD640FBA3C95E97AC30600A44C9D1135CC09D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa
Signing time: Wed 22 Oct 2025 00:31:51 +0000
ROA not before: Wed 22 Oct 2025 00:31:51 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 35.41.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:3a:d6:40:fb:a3:c9:5e:97:ac:30:60:0a:44:c9:d1:13:5c:c0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:31:51 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=89594bc8415925b10eac10436f28db5da62d8ae2f537ad8ac1834cc6fc908936, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:37:c4:98:65:38:ad:54:46:8e:3a:c3:a2:65:
62:25:2d:77:19:1f:88:8d:84:7c:80:ed:b3:dd:43:
de:58:2d:79:f0:c1:57:22:2e:31:cf:ae:68:f3:1f:
1e:25:6c:9b:8a:5f:a9:e0:68:22:38:da:b4:a9:e3:
49:6a:b4:a8:c9:dd:79:d5:a2:ee:be:c5:33:1b:f6:
25:7b:9e:f9:a9:c2:3c:dc:20:25:8d:74:15:9f:e5:
da:d1:4f:b7:83:97:c2:4e:bf:89:07:ac:0d:45:60:
e6:fa:2d:12:5f:b8:1d:89:a2:4e:d0:49:ce:57:5c:
5e:99:e7:4a:b8:5a:8a:3b:ca:82:82:8e:f1:a5:f7:
66:6b:1b:8d:67:67:a4:26:f4:42:11:3a:b5:32:42:
75:fa:5a:61:a0:bb:89:87:a1:c2:e9:bb:2d:ad:db:
bd:0a:01:ba:b3:0e:cb:f3:96:26:cd:c9:93:29:ee:
e9:c4:53:2e:9c:1d:40:32:c1:ac:ad:eb:62:53:ff:
4b:6b:59:22:4a:41:ec:d3:46:11:95:b6:79:2a:79:
2e:b0:52:82:72:9c:6a:5c:67:e9:b0:b3:88:b7:0f:
b5:27:c3:60:00:42:fd:47:e7:ee:ab:d2:26:dc:30:
ce:63:85:6e:cd:a3:9b:29:40:16:f4:aa:dc:49:ac:
5a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D5:05:D6:87:62:83:84:50:03:11:9E:D6:2F:BF:4A:F3:7C:B8:20
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.41.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2a:34:b8:7c:50:b1:54:1b:74:ac:ce:4f:57:56:17:9f:e0:6b:
71:40:b8:da:0f:48:84:8f:ca:74:cb:0c:1f:05:d7:bc:f2:4f:
a4:51:dd:d1:16:54:e3:78:11:9a:7f:e3:72:aa:a7:b4:1c:b0:
d7:72:2d:6d:9b:70:c0:7c:8a:d7:e2:d1:aa:fc:13:72:44:69:
62:1b:03:f1:be:f4:c2:91:b9:b9:bc:3f:de:b3:0e:9f:c3:f4:
df:43:43:dc:b7:bc:6c:d0:5c:23:23:11:7d:6c:16:ed:62:22:
18:a6:c9:c3:7a:80:ff:fd:58:71:58:c0:dd:b0:7a:cd:29:88:
88:bc:40:e7:e9:e3:00:be:b4:43:00:df:e7:44:a7:52:f8:e5:
59:b9:c3:fc:8b:b1:c0:bb:4d:2c:a8:f1:81:32:a7:47:53:0b:
1c:aa:21:82:28:eb:e0:aa:ae:9b:8a:36:ba:33:3f:60:77:a1:
81:e1:ff:4b:d9:12:63:91:ca:1b:3d:1c:6a:30:91:8c:48:c6:
6c:90:30:4b:c0:f1:d2:d5:ba:95:74:a7:d4:1d:ed:7e:24:72:
78:6e:d8:b9:39:02:d0:ac:0b:db:85:a2:cc:b3:ff:e5:0c:8c:
ca:e1:b8:5b:72:ff:53:e8:05:72:da:2a:01:9e:6a:21:48:a4:
2d:d7:f0:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:47:58 2025 by rpki-client