Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa
File: 18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa (raw, json)
Hash identifier: kyi7W0p00RPNaH5p3p5dkzRC2vDkQvrCod0GNBkzKfU=
Subject key identifier: 4E:A2:02:EA:25:28:9E:DB:71:0F:4C:6C:FB:AA:EC:81:D3:78:C5:16
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 60B92F571A05EB0BD452A8EDF199388CA7E92DA8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa
Signing time: Tue 07 Oct 2025 00:12:34 +0000
ROA not before: Tue 07 Oct 2025 00:12:34 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 136.18.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:b9:2f:57:1a:05:eb:0b:d4:52:a8:ed:f1:99:38:8c:a7:e9:2d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:12:34 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=6801fcf70de9ebfe653ee9215be1070b5f7b97c0275eace3d3a5f4876f489af4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f9:39:aa:8c:c4:4b:98:bc:01:0f:9f:60:89:
19:5e:fa:b6:62:db:8f:bb:f0:36:60:3c:95:23:3c:
bb:58:e1:61:65:d0:d0:a3:17:0c:bd:a2:33:69:86:
d2:49:e4:6b:7f:80:77:7b:f9:12:3a:e1:1f:fa:d5:
42:9f:84:ad:5b:4e:44:24:80:19:05:33:85:48:96:
9b:76:a0:4e:55:04:7f:a7:27:27:2d:48:71:21:b5:
f0:d5:a2:af:77:90:fe:2b:dd:26:73:6d:5d:ac:5b:
98:c4:85:80:93:f1:a1:53:f3:21:1a:94:ec:72:67:
fc:0a:05:aa:8a:23:9a:b9:7c:46:fa:d8:d3:c4:c8:
a3:cd:ad:1d:ca:76:c0:8d:f9:1b:78:c7:ff:7f:86:
d1:27:5f:93:52:af:2d:28:c8:87:2f:88:34:1e:ce:
b5:b5:ee:68:6f:50:b3:35:00:a0:05:b6:91:be:4b:
05:39:c8:d6:9b:4d:a9:3e:ef:d9:a7:41:88:56:76:
6d:e3:d6:a9:24:d0:4a:09:29:9d:41:30:da:9c:91:
c4:c1:bc:be:d6:df:fc:4b:c5:fb:fc:04:21:3b:07:
eb:0e:12:51:ac:80:29:64:5e:52:a2:6d:c8:f2:e2:
8a:d5:bb:82:63:81:2f:4a:2b:43:80:f8:76:c6:ae:
38:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A2:02:EA:25:28:9E:DB:71:0F:4C:6C:FB:AA:EC:81:D3:78:C5:16
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
136.18.254.0/24
Signature Algorithm: sha256WithRSAEncryption
06:4f:a5:93:c9:b3:95:a9:51:e4:f9:ee:35:53:90:91:00:e9:
b1:cf:16:25:ff:be:3e:a1:c6:be:08:fa:f1:6b:73:80:b8:f8:
bd:11:b7:b1:16:7e:cd:38:7a:83:37:89:d0:68:27:56:f0:5a:
c7:a3:a2:81:17:f5:26:ba:b8:81:bf:fc:ab:93:a6:a9:25:08:
98:fc:1f:af:99:7b:36:80:0a:0f:a5:32:76:5a:f8:d1:e7:6e:
03:0d:a9:0f:f0:a8:82:7f:8f:c4:6e:dd:b0:a7:16:79:90:47:
aa:d1:ca:5b:66:91:40:46:d0:d0:35:61:8d:2f:d1:3e:fe:af:
1e:a6:9a:4a:a9:85:c0:a2:7c:87:34:e2:f3:91:8c:35:1f:50:
62:bc:23:0b:bf:c1:4c:d6:96:f9:5a:1d:01:ce:50:e1:c3:a0:
75:22:12:bb:08:33:f0:aa:55:e1:a8:7d:f5:d8:92:dd:dd:0e:
c9:d3:bb:cc:d1:e7:86:6a:96:bb:c6:55:a8:e6:3d:33:43:56:
8f:e2:da:8a:4c:3c:85:88:78:07:11:50:80:83:de:7b:42:c2:
76:c4:47:02:6b:27:ee:0e:fb:26:8a:af:10:42:41:4c:35:39:
41:5f:4b:60:23:b1:cf:69:0d:61:ea:8f:cc:ea:74:75:c5:28:
55:48:62:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:12:22 2025 by rpki-client