Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2053b51c-6beb-4811-8ac7-3bb8d10ee2ec.roa
File: 2053b51c-6beb-4811-8ac7-3bb8d10ee2ec.roa (raw, json)
Hash identifier: 1Y0aLnKhKETIl2pl1giqa5UR2hoLqWi1k5mWsvcroSY=
Subject key identifier: FB:55:B2:75:7B:17:CB:0B:F9:53:68:88:1E:B7:83:0E:56:55:C8:3A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6E191B7E1DCF113E46371434CDD358C0B871AD6E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2053b51c-6beb-4811-8ac7-3bb8d10ee2ec.roa
Signing time: Sat 18 Oct 2025 01:20:12 +0000
ROA not before: Sat 18 Oct 2025 01:20:12 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.8.40.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:19:1b:7e:1d:cf:11:3e:46:37:14:34:cd:d3:58:c0:b8:71:ad:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 01:20:12 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=81870b562a68300757c7e44763a2fcf61f4adc3f5aec84026faa91427ebd87ef, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e5:49:2e:05:81:cb:7d:84:6f:dc:29:e0:a7:
09:f8:ed:ed:9b:61:db:25:73:34:c5:cd:08:3a:5e:
c5:72:7e:17:96:3c:51:f6:c6:53:54:56:34:65:30:
b7:70:98:fc:a5:a6:5c:fe:ce:2f:75:b8:03:f0:cc:
3c:33:da:49:66:2c:69:73:07:e8:c4:b4:c8:64:69:
c7:46:eb:d1:86:83:a0:af:f8:c0:9c:25:df:27:16:
5f:e8:6a:b1:b9:63:48:92:6b:be:fe:b1:d4:9d:40:
79:e7:fa:96:a6:d0:f0:7d:05:5a:77:6e:d3:f6:d9:
da:f4:76:13:52:36:7d:33:a8:81:e1:94:1b:4d:c5:
1a:52:1b:d6:d0:9a:e6:43:14:91:70:fe:6c:f4:79:
a1:50:96:d8:93:1e:81:1e:39:af:60:74:d2:70:ab:
84:9f:1a:8d:c3:0e:20:8d:17:32:d4:8d:b0:b9:d0:
c3:03:2c:8b:68:d9:16:89:de:82:cb:c8:79:00:5b:
e5:e1:50:2b:c0:d1:9c:c6:a4:a1:f6:7b:ea:24:22:
aa:29:26:87:e9:59:fd:83:1d:c3:55:bb:26:13:ae:
3c:b6:71:7a:fc:a2:34:d2:ef:86:7c:5d:c1:fa:82:
e1:ac:99:78:bf:52:50:b8:e9:00:fe:a6:f1:77:5e:
2b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:55:B2:75:7B:17:CB:0B:F9:53:68:88:1E:B7:83:0E:56:55:C8:3A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2053b51c-6beb-4811-8ac7-3bb8d10ee2ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.8.40.0/21
Signature Algorithm: sha256WithRSAEncryption
0c:81:c6:96:42:be:ac:54:e9:54:1d:64:c4:be:f5:38:90:ae:
d6:9d:4d:43:e2:4c:c8:61:c0:d5:35:10:b9:2d:cf:20:42:42:
1a:16:80:d0:03:7c:95:e2:06:24:5b:c6:7f:16:5b:68:ea:ed:
8f:0a:1a:70:fb:a5:25:ec:12:8a:67:0a:46:4f:6a:06:a9:13:
4f:a8:7d:d5:9d:65:28:fa:2e:81:03:69:5e:48:35:8a:6f:ce:
33:e2:0d:82:80:ea:51:b5:5b:aa:c6:21:2f:32:87:f7:11:8e:
58:b9:c2:ca:9a:7d:f0:b2:64:77:ec:66:ed:f3:96:12:94:bb:
25:74:ae:50:84:20:5f:dc:b8:84:04:be:80:02:2a:13:a6:07:
bb:48:38:53:08:fb:8c:a7:43:68:bf:7d:bd:3f:a8:bf:cc:d5:
15:3d:27:93:e5:cf:86:b0:1b:4e:17:57:6a:d9:04:b1:49:87:
41:84:43:c5:c5:db:1a:98:56:16:1f:86:9a:40:8b:8b:93:8a:
9e:55:46:20:20:a3:ae:be:dc:a1:99:d7:69:7a:1d:05:88:bb:
fd:16:ec:67:a3:2b:19:0d:81:51:c3:32:89:a9:f6:39:f6:f3:
73:42:40:0a:ff:ee:fa:5a:73:78:00:b6:3d:84:33:5f:66:24:
08:d8:50:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:26:50 2025 by rpki-client