Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa
File: 1044c764-927e-41a1-b94e-b8bb9091f9c3.roa (raw, json)
Hash identifier: 93irmkyx4xJpwlUux0+BhHAnYeSLSv2yymYyGUAyHt8=
Subject key identifier: 41:2A:E9:61:2E:7F:E3:FC:BF:C4:49:FD:1F:AE:57:07:86:3E:BD:63
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 222488A170C3E369278C5D106DE6338B98C03CEA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa
Signing time: Tue 30 Sep 2025 00:22:01 +0000
ROA not before: Tue 30 Sep 2025 00:22:01 +0000
ROA not after: Tue 04 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 194.134.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:24:88:a1:70:c3:e3:69:27:8c:5d:10:6d:e6:33:8b:98:c0:3c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 30 00:22:01 2025 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: serialNumber=90ec58866811d84789816ebc086496a2d835ecadf7dcd0fc426dd776f53b9416, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f1:2e:2f:26:9d:b9:d1:8f:3b:d3:b1:30:cc:
2b:b7:b1:bd:a4:42:ad:e1:db:dd:56:7c:33:e7:6a:
97:f5:44:6c:b8:c9:f8:26:cb:92:6a:5f:51:67:69:
16:d2:18:36:06:f2:bc:9c:e5:dd:57:4d:79:24:d5:
7f:c2:11:89:d0:b1:70:6b:1d:5d:12:9e:5a:cd:9f:
a8:16:89:3d:fb:b2:9f:b5:94:9e:1e:18:e5:d0:cc:
b5:7a:25:69:3e:42:c8:4c:f1:21:ad:fb:28:40:61:
27:8a:66:32:93:e1:b5:b0:b7:96:ad:40:8e:3d:ae:
ce:e9:33:9e:02:4e:e4:49:0e:45:ef:1d:2b:b1:72:
48:21:a6:93:f8:e9:4f:ad:ea:ca:bc:f8:61:e8:f2:
ee:66:5a:b5:70:78:79:2e:4c:8f:43:d1:99:24:26:
a0:78:f6:9d:be:39:79:e2:2f:8b:63:f8:f3:14:89:
0e:6a:95:ae:ff:fd:f3:43:b2:d0:4d:c5:e4:92:95:
99:ac:4b:d3:65:0f:cc:4c:79:51:6b:f5:5c:99:de:
82:ae:bd:f8:1f:1c:13:29:a9:c9:e5:4a:c2:a4:4c:
9f:b2:6a:5f:09:6d:27:36:c5:22:cb:9c:91:24:68:
fd:54:18:0e:82:26:01:5c:4f:1a:1e:44:69:3b:96:
c7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2A:E9:61:2E:7F:E3:FC:BF:C4:49:FD:1F:AE:57:07:86:3E:BD:63
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.134.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c9:d8:8d:16:b5:0a:70:74:5d:cc:96:7c:6a:d7:39:c0:91:9b:
30:1b:52:c2:36:79:ce:ba:60:56:2b:65:15:40:23:49:09:20:
ba:5d:18:1d:27:12:ad:53:89:1e:1c:79:24:a1:8b:31:4b:21:
1d:5c:b9:6a:46:79:b9:fa:d3:27:2c:fc:e1:90:d1:c8:49:20:
f7:ae:12:28:31:92:4b:bd:8b:48:95:64:23:1c:26:a4:ec:14:
84:31:48:46:84:ed:87:1d:6b:11:7c:2f:91:d7:a8:ef:2b:08:
78:f5:56:8a:92:89:7b:fa:5c:cc:cb:de:57:00:91:44:25:fa:
2e:77:0e:96:86:fd:4a:83:d7:29:f2:9e:89:2a:88:6c:09:59:
01:01:22:c4:62:d0:4d:45:42:ba:32:d8:07:e5:22:48:08:f8:
aa:86:f6:5c:40:f9:dc:f2:5c:b5:46:10:c1:df:b9:7e:e9:d0:
af:c4:b0:29:1b:68:9e:e6:50:80:ef:23:e4:28:eb:2a:a5:19:
97:03:3b:32:15:38:22:b1:ea:07:5f:e5:d6:cd:84:f3:d9:e6:
69:eb:62:d2:c5:07:3d:b7:47:46:92:cc:e2:14:ea:f1:88:a9:
3a:1b:f2:32:11:7c:f2:4a:b5:15:da:57:5b:7b:38:a6:b8:96:
82:e2:6d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 14 04:04:36 2025 by rpki-client