Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8225a917-e51e-4721-ad4b-2fb05b49538d.roa
File: 8225a917-e51e-4721-ad4b-2fb05b49538d.roa (raw, json)
Hash identifier: uS+h91Uul9aq2K6ZgIQnd74VRUxxTAC3J4Yxiv8nLo8=
Subject key identifier: 82:FA:9C:46:E5:CB:5C:F9:BE:E7:57:C9:BC:81:8D:A2:03:86:FB:2C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3356F1187120483CA511D7E84287DC805FDC90B3
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8225a917-e51e-4721-ad4b-2fb05b49538d.roa
Signing time: Tue 14 Oct 2025 19:42:42 +0000
ROA not before: Tue 14 Oct 2025 19:42:42 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.84.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:56:f1:18:71:20:48:3c:a5:11:d7:e8:42:87:dc:80:5f:dc:90:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 19:42:42 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=ba4d30fad832b69ef4028806e2842fd5c0d4ef3d1fb96acfcae29144d2626f88, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:42:4d:42:82:c2:4c:3a:89:ab:69:2e:45:
b0:f9:7a:04:f9:97:8f:77:3a:eb:69:a4:71:3f:e8:
82:78:05:76:28:a7:97:71:83:4a:c2:b2:1e:28:5a:
ce:54:3a:53:12:32:07:73:ee:ba:0b:8d:4a:65:57:
89:af:ac:e9:69:0c:1f:2c:96:34:5b:70:ba:19:b4:
74:09:29:7a:e1:46:f1:2a:8c:71:62:30:4b:bf:c6:
98:7a:41:3d:8b:3a:24:9e:20:f2:f3:09:8b:0c:5f:
a2:bf:8b:6b:26:2d:4d:12:53:1d:08:50:ed:1a:4b:
14:c5:7b:b4:2a:c8:52:d1:69:ab:f7:31:d7:e4:f5:
67:46:0e:34:09:f3:e7:d6:fc:7d:bd:98:3d:71:e0:
c9:60:f2:3a:ca:c3:ab:d8:fa:2c:a4:97:16:ec:84:
60:be:e5:42:0d:36:61:63:5c:3a:4e:db:a0:78:e3:
c6:4f:8b:4b:8d:5c:57:0f:3e:d9:8b:5e:4f:a4:dd:
b5:f5:58:67:9c:2e:b2:fb:58:42:be:b9:49:95:3d:
02:38:62:da:92:3a:a9:dd:3d:80:06:86:26:71:a5:
0e:48:6e:36:1a:80:f0:2d:81:cb:05:90:f9:2c:48:
ef:9d:a3:ef:32:70:b7:94:f4:b6:bc:92:87:a5:1b:
b6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FA:9C:46:E5:CB:5C:F9:BE:E7:57:C9:BC:81:8D:A2:03:86:FB:2C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8225a917-e51e-4721-ad4b-2fb05b49538d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.84.207.0/24
Signature Algorithm: sha256WithRSAEncryption
37:3f:00:7f:ee:3a:15:1d:aa:a2:7c:91:aa:b3:1a:ba:d2:ae:
d1:ec:ab:8b:b2:e6:33:e3:24:ec:8b:07:f7:6e:ad:22:0f:39:
66:24:8d:b2:4c:5f:72:62:b4:38:7e:3f:fa:e5:23:de:7a:9d:
4e:53:c2:52:b3:2e:f6:37:cf:49:68:2f:10:2a:4f:8a:2b:12:
2a:4e:4b:c2:12:26:35:69:51:b7:d2:cd:91:0f:2d:c2:1a:db:
05:38:a8:a5:30:b4:25:81:d7:be:b0:31:b0:11:b1:59:53:5f:
0c:50:6f:a9:7c:4e:1f:fd:c0:7d:59:0d:7e:58:94:3f:5d:79:
ce:92:96:28:54:87:17:c4:e4:57:a4:bd:d3:c3:c5:22:3d:b6:
33:f4:7d:7f:9d:e1:fa:2e:87:8e:bf:c9:8c:a5:f3:79:70:d5:
88:0c:a1:05:77:9e:f0:66:5b:f9:a9:63:24:4f:33:9c:c2:f1:
ac:3e:e3:78:52:1b:88:5d:e3:06:e6:79:5a:d7:02:6d:b8:38:
22:96:fa:a6:fc:7a:c5:41:0d:9b:3e:00:f4:81:65:0f:b1:d6:
0d:c2:63:65:ed:b5:fe:fd:9b:95:a3:1d:40:72:a2:e7:9e:5e:
3d:81:88:98:6a:2d:e2:ee:fe:1a:7f:da:c0:12:56:2b:e3:fd:
2f:87:48:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:06:20 2025 by rpki-client