Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/460009ef-5cd7-4d3e-8b54-cfb7e654aca6.roa
File: 460009ef-5cd7-4d3e-8b54-cfb7e654aca6.roa (raw, json)
Hash identifier: gnvAOoRXhDTypDLzvK71ra07vsB8b9ZRb1sk8cg6KZc=
Subject key identifier: 5E:00:C5:63:60:37:01:FB:09:32:16:BF:68:B2:7A:9B:3A:14:C2:0E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 576925797931B6056FFC3F14DD101F47BFEA14
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/460009ef-5cd7-4d3e-8b54-cfb7e654aca6.roa
Signing time: Sat 18 Oct 2025 01:50:06 +0000
ROA not before: Sat 18 Oct 2025 01:50:06 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.8.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:69:25:79:79:31:b6:05:6f:fc:3f:14:dd:10:1f:47:bf:ea:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 01:50:06 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=f89c5358246fdce5c49a45fecab28660c2d58000bd790049db67fe4bd9d1f2c1, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5e:f3:8b:ac:56:13:d5:89:59:02:1d:21:d4:
fd:23:b5:79:9f:d9:35:5d:d3:9d:5f:85:c5:18:e8:
be:b8:f0:6b:ff:d5:82:57:8f:d3:3a:36:c2:5a:d2:
dd:82:17:00:21:ca:38:ca:d0:92:df:e6:a2:ac:93:
36:1a:0c:6d:3d:4d:25:d2:8a:e0:d0:86:33:78:58:
ba:ea:3e:20:85:0f:c1:00:b0:7a:d4:16:4c:03:99:
f1:b2:84:6b:78:ec:c2:f7:05:b8:c7:01:77:3c:f8:
a9:6d:94:df:69:fa:2c:71:18:d9:d9:a3:eb:01:2e:
e1:4e:26:ac:52:ee:52:20:a4:04:a0:51:ee:c5:96:
77:9a:c7:d8:2e:42:e6:6c:dd:d9:3d:b5:22:67:52:
9a:1a:a2:c4:7f:56:88:80:91:9f:80:9b:df:b9:bc:
bf:77:13:a1:d0:22:37:30:c2:d5:74:c0:ec:00:4e:
fa:1c:15:a0:78:7b:03:e0:5e:a0:4c:2b:dc:c6:1d:
75:b6:c1:5f:69:4b:33:30:19:13:b8:03:4b:ba:7f:
33:73:bf:53:e1:6a:2d:f9:e9:30:9c:b1:cf:63:75:
0c:6b:df:f8:00:6e:b3:e2:75:e1:fe:15:4f:9a:5c:
7a:13:0e:ca:41:7a:b0:97:21:0f:56:c2:91:f5:f6:
e5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:00:C5:63:60:37:01:FB:09:32:16:BF:68:B2:7A:9B:3A:14:C2:0E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/460009ef-5cd7-4d3e-8b54-cfb7e654aca6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.8.17.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:dc:c2:d5:9c:68:19:c6:83:49:31:80:89:5b:5f:22:d8:59:
28:46:9a:5b:31:90:b9:bc:d8:b4:b6:61:a0:08:cf:cf:34:b6:
bd:07:2e:f7:c9:a7:70:c4:25:5e:2c:02:d3:2d:ae:2b:18:bd:
44:64:a5:66:9e:7a:3c:59:d8:cc:db:b6:e2:26:19:c2:0e:d6:
ff:0c:36:78:e5:50:ec:9e:75:c7:01:66:58:68:8b:0f:fc:76:
41:7a:85:30:e7:57:05:22:83:fb:31:0d:68:c4:7d:cf:da:ee:
72:e9:46:85:98:d5:5b:e3:bc:c8:31:f7:b3:46:6e:5f:78:53:
a2:a6:bc:01:f4:0d:92:62:93:84:09:13:e3:15:75:7b:e8:85:
8e:4b:56:10:39:0e:f1:e2:a1:35:de:56:8b:d4:4c:ce:62:eb:
6e:69:6b:a4:75:30:8b:c6:3b:49:d5:27:47:55:82:c1:0a:60:
bb:88:72:04:41:04:82:2c:a5:33:3f:a4:ef:6c:c4:c5:f5:b9:
c8:d6:31:88:6a:2a:85:d3:41:fc:ed:83:4d:15:06:b1:83:aa:
35:66:9c:fc:3d:54:1b:59:61:18:1a:d7:af:1b:bb:98:ee:9c:
f8:19:09:05:be:c1:4b:3d:24:ba:94:bb:cc:a6:20:c3:ac:5f:
35:66:5b:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:19:38 2025 by rpki-client