Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa
File: 4a029632-5153-421f-8163-5d2fe6018358.roa (raw, json)
Hash identifier: US1qvMvPdcINF8RL/+bM+e2Xkp4q8lVbbhjQaPQtNNE=
Subject key identifier: 96:A3:E6:4B:4A:41:46:E0:19:13:7F:E6:51:F5:39:FB:5D:4C:9F:AF
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: EF9D1E5FC06443704A49ACE9174C6E832F6D3A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa
Signing time: Tue 30 Sep 2025 00:11:08 +0000
ROA not before: Tue 30 Sep 2025 00:11:08 +0000
ROA not after: Tue 04 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.18.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
ef:9d:1e:5f:c0:64:43:70:4a:49:ac:e9:17:4c:6e:83:2f:6d:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 30 00:11:08 2025 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: serialNumber=4f5f5a06c4a24b98698844f05319b7a751260419eef955c8705e7d79fc788060, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6d:b5:31:5f:e9:75:96:86:a7:fc:40:58:c4:
02:c1:f5:d1:19:55:c2:ff:cc:5c:3a:10:67:61:ba:
8c:da:94:b9:3f:5f:f8:7a:13:8e:bb:af:92:cd:37:
9c:06:13:93:cd:25:29:2f:fc:55:d4:24:bb:2f:e8:
9e:37:2b:d3:ba:1a:dd:7a:82:11:ea:98:51:5a:c9:
7a:e0:fa:d1:27:bb:d0:a8:51:3c:1e:23:b6:31:f6:
d6:d0:ab:9f:16:ca:d4:8b:9d:bb:31:7c:6f:4d:7c:
23:c3:b0:86:aa:14:0e:bf:30:1f:8a:f6:f8:ec:76:
74:87:2d:59:b7:2d:a1:f5:72:e3:0f:07:b5:a6:92:
89:cd:27:ed:31:4a:10:5d:16:79:28:04:c6:56:bf:
fa:66:78:8b:88:38:ea:42:ac:98:2b:17:6e:e5:74:
ba:1d:16:b9:6b:7d:6c:67:a5:7e:a7:74:0d:c5:ff:
94:b2:0f:49:9d:9e:b6:e8:6b:a8:9e:4d:ce:53:df:
18:ae:eb:2e:d2:89:02:b8:86:c8:e1:c1:22:b9:81:
43:8f:f5:20:a0:dc:00:fe:3f:fb:41:b3:80:77:6d:
ab:b4:9e:bf:5b:09:91:09:96:7d:e7:79:b9:96:78:
41:2f:d4:32:2a:25:63:e9:27:ae:58:12:26:e4:32:
1b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A3:E6:4B:4A:41:46:E0:19:13:7F:E6:51:F5:39:FB:5D:4C:9F:AF
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.18.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:3f:3c:89:6d:36:c1:84:73:8b:04:74:70:44:d8:83:ca:3c:
02:d6:6a:c1:62:a7:0e:6b:3b:43:46:4a:da:9a:f3:0a:a7:02:
b8:ec:26:07:ae:71:74:66:fd:59:1a:fb:4f:28:49:b0:f9:6c:
26:5f:c6:98:7d:88:96:ae:72:c4:a8:de:20:97:4a:de:83:0f:
97:9a:bb:72:66:0e:16:e3:d4:93:cd:e3:90:b8:24:30:2a:02:
0a:c2:9c:35:1f:e7:a6:c5:6f:22:93:be:77:ab:75:f1:9e:d3:
cf:57:74:13:df:05:3b:cc:26:ab:90:05:9a:c6:5e:ba:e2:ca:
1d:41:6e:85:d4:13:50:0f:d3:4d:4e:62:e3:7c:65:77:a1:10:
89:ce:9f:f4:90:51:97:82:fa:6d:2c:33:01:d9:5c:1c:9d:d8:
1c:42:6d:df:23:86:ee:1a:85:69:bd:b9:e8:07:e6:0c:11:ad:
11:dd:91:cf:72:36:5a:b9:81:c7:54:38:31:94:c7:1d:4a:0d:
cf:f3:0c:ba:eb:6e:e5:ed:9e:45:0a:ff:0b:9b:0b:61:cb:50:
d8:b7:d6:0e:9c:ea:5f:0d:23:be:a6:a0:8c:17:c1:0d:6b:72:
73:ec:fc:b5:f2:61:ef:00:eb:2a:68:b2:90:fa:f7:14:fb:c4:
7e:c6:dc:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:35:04 2025 by rpki-client