Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93977caf-592d-4ba6-b79f-4c7b035e0f67.roa
File: 93977caf-592d-4ba6-b79f-4c7b035e0f67.roa (raw, json)
Hash identifier: UOITGvaGdjUQpwMwXXgAwKSSf2+C6w79fGzF83shleE=
Subject key identifier: D4:93:14:90:97:FD:F4:52:88:41:F9:5C:C9:EA:0A:97:18:81:0E:BC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6EDC7CEA67A777AA26E778C36371B1F884315551
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93977caf-592d-4ba6-b79f-4c7b035e0f67.roa
Signing time: Tue 30 Sep 2025 00:37:50 +0000
ROA not before: Tue 30 Sep 2025 00:37:50 +0000
ROA not after: Tue 04 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1f27:4000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:dc:7c:ea:67:a7:77:aa:26:e7:78:c3:63:71:b1:f8:84:31:55:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 30 00:37:50 2025 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: serialNumber=6643b05ee154ca6dcb678aacd19538bb9a73c7606561c1cb01cfd0ebdac54a90, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:79:f5:65:d1:33:de:21:05:0a:52:fc:c0:48:
02:97:b4:43:a5:33:33:46:4e:8e:06:fe:8e:31:63:
b3:35:bb:85:45:b2:aa:da:1d:8d:8b:ca:d5:87:51:
66:3a:41:b0:4c:f6:af:fb:9b:26:05:f3:f9:64:8c:
a6:e2:ed:bc:b0:57:eb:ed:0e:2a:53:c0:74:18:78:
a2:31:f5:1b:0c:3d:2f:a4:8a:7f:ad:2d:99:11:da:
1e:9d:3b:9d:fe:ad:00:b9:10:7a:0a:2e:98:26:1d:
13:61:c7:92:2f:52:ad:10:32:d5:6c:ce:78:6e:00:
3d:a2:1b:e1:ca:79:8f:54:41:7b:2f:78:e2:3f:32:
32:b8:32:de:b7:32:f2:12:41:bd:11:ef:16:f3:47:
38:11:e9:cf:d5:9e:4c:40:76:eb:2f:33:72:83:59:
61:ac:b0:0b:9e:ee:d8:11:1d:5c:c8:f2:bb:71:86:
28:d4:ed:2d:fc:9f:70:88:3a:48:8b:66:97:36:2e:
d5:80:b3:19:07:5f:a1:17:17:30:8b:c2:b9:af:c4:
6c:71:25:61:ca:f8:ef:b8:36:38:11:ae:a0:97:e5:
95:95:96:de:46:ce:20:f3:ff:22:bf:cb:84:35:bf:
08:f7:28:28:1e:5a:b2:08:ba:cf:7c:90:23:21:15:
4e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:93:14:90:97:FD:F4:52:88:41:F9:5C:C9:EA:0A:97:18:81:0E:BC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93977caf-592d-4ba6-b79f-4c7b035e0f67.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f27:4000::/36
Signature Algorithm: sha256WithRSAEncryption
6d:fe:f4:79:17:b4:c0:52:fe:62:4d:fb:96:2e:c8:6e:c7:00:
d9:c1:e6:6f:f3:cc:6c:f4:74:bb:17:fa:ae:05:6d:94:5a:01:
28:02:a5:b7:fa:b2:40:e7:ab:26:b2:fa:da:8e:00:5f:bb:c6:
7b:cb:ec:83:76:e3:ae:56:7a:1e:62:6c:48:42:21:59:64:45:
5d:17:71:fe:6f:cd:64:a5:2a:15:7b:cc:09:bf:0c:45:6b:94:
ff:ce:c5:43:d9:18:13:e1:3f:5a:b3:31:c0:da:32:b6:7c:9e:
ae:f4:16:84:c6:52:94:ae:1b:0b:a4:7d:94:6c:a9:ef:ad:e4:
ba:46:2a:51:10:14:1e:61:17:b8:9d:58:0f:15:de:0d:fa:21:
97:50:dc:42:eb:b8:e1:36:c1:cc:0f:bf:36:19:94:06:19:c5:
b6:ff:50:15:76:6e:23:de:5d:b8:6b:33:bd:43:c3:80:3f:1d:
1b:0f:a6:2a:7b:a0:cf:ca:98:ab:fe:40:d1:61:09:a4:4e:ca:
cd:f5:c0:6a:8b:24:61:61:64:08:a8:ac:02:fd:d1:36:fa:d2:
be:d5:37:fd:e9:58:a0:44:b3:72:62:b5:08:4c:6c:90:41:4c:
8f:31:7f:99:30:99:d8:43:68:2a:6f:cc:d7:0e:21:0a:bb:e9:
c6:5c:37:09
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Oct 8 19:42:47 2025 by rpki-client