Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7066401-6e27-443a-a174-bf22e8ce1b76.roa
File: c7066401-6e27-443a-a174-bf22e8ce1b76.roa (raw, json)
Hash identifier: xxwWwd6aYdhP/4h7NuSMxhU2QuFBGQsEDJ8kHP13ioE=
Subject key identifier: 1D:2E:B7:3A:D5:F8:FC:62:DE:55:73:14:0B:73:7F:5E:C3:F9:34:AD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1D47FE2D5F07F74E541E5CF5E83754E426D20D92
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7066401-6e27-443a-a174-bf22e8ce1b76.roa
Signing time: Tue 07 Oct 2025 00:22:24 +0000
ROA not before: Tue 07 Oct 2025 00:22:24 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 184.72.80.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:47:fe:2d:5f:07:f7:4e:54:1e:5c:f5:e8:37:54:e4:26:d2:0d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:22:24 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=c993efa3ef4142e24d5166399e6d4de1b0ae3dbe49122f1b8a3f55ff2e236fb6, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:28:98:2f:ad:aa:aa:ca:7f:cf:cf:d3:75:97:
71:18:b6:b5:d3:25:00:ae:1a:f2:fa:4a:6d:5b:0b:
b9:ed:a8:d6:7b:2a:76:20:53:6d:38:27:a0:02:d8:
3b:64:68:0f:55:22:fa:e4:d9:a1:cd:5b:95:08:91:
9a:52:63:0a:bd:e6:6f:c5:64:0e:c7:ac:ae:db:3b:
ae:bd:ab:f1:07:b1:e4:9d:b5:cd:80:d2:42:18:49:
9c:09:39:83:43:21:d4:ba:40:44:31:e5:cf:1b:73:
04:bd:7b:ef:ba:44:3f:0b:7c:df:5c:87:22:c6:9a:
6f:ab:27:3e:29:6b:d4:97:69:49:cf:05:b3:e0:e4:
97:17:a0:2f:6e:7e:4a:58:23:9d:86:ff:82:4a:ae:
cd:b3:46:7a:ac:28:e5:35:2f:58:e1:0f:12:c8:c1:
fd:11:60:44:1a:bf:ac:00:3a:c0:43:1a:71:91:4a:
08:eb:3e:b5:82:1d:f7:b8:a0:0c:e1:7d:e5:95:bc:
76:87:98:62:f3:2a:31:68:78:10:1d:ed:24:77:24:
d0:45:e2:8c:d2:b6:e6:b3:bb:e3:1d:a4:49:75:6f:
78:b4:d1:24:88:70:fd:12:51:2b:3a:a7:2e:5b:8b:
19:02:7c:a0:d1:02:4c:88:25:a7:aa:97:1d:83:be:
cc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2E:B7:3A:D5:F8:FC:62:DE:55:73:14:0B:73:7F:5E:C3:F9:34:AD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7066401-6e27-443a-a174-bf22e8ce1b76.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.72.80.0/21
Signature Algorithm: sha256WithRSAEncryption
9b:0a:6a:7e:25:a4:37:4a:7d:80:65:c8:23:83:3c:dd:84:3f:
b9:7f:82:85:3e:d4:b8:90:f7:75:69:f9:b2:95:34:1a:a8:c2:
36:5f:16:56:db:1b:c6:28:1f:d3:da:7a:4b:1a:aa:5f:e2:11:
90:2d:c7:e9:91:a4:be:46:a0:0e:c4:96:e5:a6:7b:31:d5:c7:
88:44:e4:2e:43:11:0d:09:ad:e6:14:e0:89:53:99:68:f6:9e:
db:af:14:a4:40:23:2f:55:e8:46:33:9d:c1:a9:31:d1:90:e4:
9d:b0:a0:4b:42:32:28:00:03:32:43:21:ef:4a:d3:ba:c9:3a:
88:59:ae:c2:cb:a4:50:97:e1:b2:e3:2b:00:09:e4:42:c0:c4:
fc:bd:c7:85:f5:c9:e3:72:43:e5:48:d6:20:c5:1d:99:09:98:
1d:73:0b:ce:44:a6:fe:72:ea:53:5f:4d:66:ea:bf:4d:4d:86:
4a:52:5d:96:fb:f0:58:45:af:0b:e9:22:94:f3:39:e3:05:26:
e9:5e:82:2c:e6:e9:20:4d:85:ec:fe:72:5e:86:b6:fc:b8:69:
4e:be:92:5b:ad:99:0b:6c:8f:0e:f0:9f:fa:bf:74:95:1e:cd:
38:0d:df:c9:b5:49:21:4a:a9:df:dd:83:4c:19:6a:c5:b0:05:
c5:f2:a8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 19:45:04 2025 by rpki-client