Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa
File: 242b5bdc-078e-4974-9ef3-af03ea079caa.roa (raw, json)
Hash identifier: USUiI4iB658WzvR9L5g2BUQZAzX174AirShXukX52Po=
Subject key identifier: 71:27:A2:93:AE:49:66:1A:87:FD:ED:8C:D2:AF:24:58:A9:E2:73:E5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 602FAF32DD89D4FBEFC7DE113738B7BFB0B705AA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa
Signing time: Wed 01 Oct 2025 00:41:14 +0000
ROA not before: Wed 01 Oct 2025 00:41:14 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 63.246.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:2f:af:32:dd:89:d4:fb:ef:c7:de:11:37:38:b7:bf:b0:b7:05:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:41:14 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=108ff7df595c49de7a8678da4a565630207b921de2ac57609c764ad56d3c6d5b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:dc:6e:b6:b4:41:c4:f0:ef:77:f3:50:4e:4a:
31:00:cc:e9:e9:39:07:14:73:99:70:10:b5:18:d6:
92:a4:22:03:9b:1b:eb:a5:09:b1:a9:97:95:20:44:
3c:73:72:e2:39:94:70:28:db:55:b6:75:01:4a:d8:
c6:8a:ec:80:cf:c3:78:65:88:25:77:e6:da:95:7c:
eb:4c:be:36:e1:64:c6:4c:c7:31:f2:c9:8f:2f:b1:
65:42:db:fa:f8:5a:7a:d8:de:4a:52:63:df:2d:b4:
cf:dc:f9:1e:fd:8a:b6:88:b5:59:51:f3:ff:14:33:
ee:80:26:52:af:4c:d3:07:be:23:e0:aa:ee:0e:a8:
ac:22:f5:57:17:bb:5b:04:ea:b7:d8:61:43:9f:2a:
3a:42:a3:f3:1f:50:79:61:0e:b2:60:81:37:05:2c:
cb:1d:ee:09:cc:5f:46:47:9c:f9:ea:1d:b8:21:ad:
a6:a1:5c:ae:f8:7d:b7:d8:a4:9b:3e:d8:94:8e:e9:
8e:0d:02:c5:6d:c0:a1:0b:91:62:1f:44:ca:99:a4:
bd:31:72:87:98:93:65:8a:61:23:0d:0c:cf:48:32:
72:dc:ae:5b:22:80:4b:44:6a:4b:51:04:f8:8e:f1:
2f:91:63:d5:2c:86:18:8f:b6:78:97:31:7e:e5:4e:
6c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:27:A2:93:AE:49:66:1A:87:FD:ED:8C:D2:AF:24:58:A9:E2:73:E5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
63.246.120.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:0d:a5:d4:5d:09:a8:e1:1b:16:df:79:d7:a4:21:f6:06:d3:
61:18:4f:ab:49:4f:68:1d:8f:d3:f5:2b:f3:d9:09:bb:a0:a7:
ca:fe:f0:55:7b:aa:6e:b6:10:dc:02:86:e5:7a:b4:1f:1a:29:
81:47:f9:e9:09:4d:35:72:40:23:5a:2b:d1:78:4d:30:fd:96:
4e:76:cd:e8:50:82:13:2c:54:2a:bc:64:55:e0:95:0e:ce:70:
92:05:56:13:e8:42:c5:99:9c:1d:64:2e:33:23:4e:a0:95:14:
b7:f1:35:4e:cc:00:d8:48:2f:03:3b:ed:77:30:a3:b8:18:74:
ff:1a:28:50:bd:5f:b2:eb:7c:22:55:fc:1e:64:42:87:60:65:
d1:cc:b8:27:62:4f:50:99:79:7b:4f:a4:7f:79:a2:6e:5c:9c:
db:44:25:5a:8d:f7:ca:b2:27:24:aa:18:25:7f:17:14:f2:98:
3f:c1:c2:9d:73:64:2a:dc:99:18:e5:07:b9:eb:15:56:f8:91:
60:a2:34:c9:a8:30:c0:07:47:11:1e:1c:4c:22:2e:4e:87:21:
ee:c5:55:10:15:17:ba:3f:87:8e:6a:e0:1b:47:34:5b:c0:9c:
71:f0:bb:cf:aa:e8:b4:56:69:09:d2:3c:31:1c:3c:51:c3:2f:
ca:fd:ab:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:43:04 2025 by rpki-client