Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa
File: 132f73c3-a546-4296-a702-8a3aab70f706.roa (raw, json)
Hash identifier: OuUjpM3js20beOAgTUE5mtHkxQxYOow3IH4vsCXxXV8=
Subject key identifier: 96:88:7B:63:F5:1E:B4:6A:CB:B1:7F:1A:15:FF:47:E4:55:F1:2E:93
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 47BD1AC06435893006B71EFAB6ABD3121C5707F4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa
Signing time: Sat 11 Oct 2025 00:21:14 +0000
ROA not before: Sat 11 Oct 2025 00:21:14 +0000
ROA not after: Sat 15 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 121.93.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:bd:1a:c0:64:35:89:30:06:b7:1e:fa:b6:ab:d3:12:1c:57:07:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 11 00:21:14 2025 GMT
Not After : Nov 15 23:59:59 2025 GMT
Subject: serialNumber=b49b691c41490626487237937c9e7cf45eccf3087fab523e7fb269b93e1abc15, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f1:9b:2d:9a:07:1e:95:0e:44:39:92:45:84:
24:5a:8f:50:15:3c:d8:31:d5:71:bb:c9:a0:cd:04:
e8:ed:19:37:33:3f:13:51:b6:41:3d:55:c2:da:36:
79:af:f5:7b:58:64:d2:e9:0e:4b:a4:9f:26:63:5e:
69:93:bb:eb:cb:0b:59:0a:d8:a6:0d:c3:5e:25:26:
86:00:ca:f4:ed:4c:75:0f:ad:08:34:3d:4e:3b:4a:
a5:fc:83:e5:15:6b:a2:30:52:94:0a:65:8a:d6:75:
66:61:b4:88:76:05:5b:4e:96:d3:58:60:ec:76:fb:
8f:15:6b:3b:bd:39:43:26:d5:71:04:93:da:f2:a1:
86:d7:8c:06:50:bb:3b:54:50:62:f3:60:6b:8c:a2:
bd:ea:d5:e5:2a:ad:3e:15:43:68:a3:47:8c:85:14:
55:5e:63:fb:64:97:63:8d:7d:77:a2:c0:ea:92:fd:
49:80:11:e5:71:8e:d4:48:cd:41:73:6c:c6:59:b6:
10:a4:e0:cc:78:c9:bb:62:ff:ab:9a:2b:75:6d:30:
4e:dd:46:0d:0c:dd:a2:f9:de:b4:85:aa:b9:77:70:
b1:e7:ae:76:3c:39:f2:cf:2d:e9:92:c1:5a:25:c8:
7c:cb:38:31:59:a2:99:0b:5f:61:52:00:46:f5:82:
cb:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:88:7B:63:F5:1E:B4:6A:CB:B1:7F:1A:15:FF:47:E4:55:F1:2E:93
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.93.0.0/17
Signature Algorithm: sha256WithRSAEncryption
ac:9d:5d:9a:7b:0d:2c:6d:bc:ed:9c:bc:ca:20:89:60:e6:ba:
dd:b9:fb:11:d3:37:d0:49:df:0d:d5:59:f6:6c:0c:b5:8f:b0:
49:b7:04:ab:8d:a8:0c:c9:95:6c:8f:56:26:6a:65:1d:65:d8:
cf:d0:83:52:71:99:bb:fb:e9:f1:6e:c5:c2:2f:8a:63:2b:f0:
62:5f:43:36:43:7e:b2:40:7c:b5:5a:3c:d5:34:f0:82:a2:f5:
8a:ce:38:87:39:d9:86:a1:82:5d:c5:7d:0d:bd:e7:39:52:2d:
c9:c2:18:7b:fc:a1:63:4c:40:e7:ab:f2:aa:b8:13:12:68:28:
a5:79:58:0c:99:2f:75:93:cd:cf:50:16:56:f8:48:17:11:2e:
d6:02:81:e4:d3:84:9f:26:63:15:8a:d5:90:80:c7:aa:af:cc:
f5:42:73:7e:3f:4e:a4:8c:0e:3e:bd:63:2b:26:53:97:3b:38:
b0:0a:eb:b7:23:37:79:93:d1:d8:b6:6b:4c:3c:0f:56:d9:4c:
56:d5:18:e0:42:a8:a0:89:39:2d:9c:46:1a:91:98:3c:73:1c:
a0:79:4b:33:e4:68:59:c7:33:f1:c1:af:05:03:5e:60:b0:8a:
08:d2:ee:d4:97:51:3e:b2:e2:20:ea:f7:56:a1:bc:b3:f6:18:
da:b1:40:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:10:40 2025 by rpki-client