Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa
File: 4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa (raw, json)
Hash identifier: mU0yRN2y9BDAXkJYIrcaFlbKZwCcfKihr+BzjpOHQfs=
Subject key identifier: 1A:11:78:33:D1:29:B8:39:FA:24:9A:0A:8C:E5:3A:D9:46:55:47:20
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5B1506DD4E1F0A7F5E7E443AC837E614D6F378B2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa
Signing time: Sat 27 Sep 2025 00:41:36 +0000
ROA not before: Sat 27 Sep 2025 00:41:36 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 63.134.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:15:06:dd:4e:1f:0a:7f:5e:7e:44:3a:c8:37:e6:14:d6:f3:78:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:41:36 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=9a359fd60848e6d4add7bbe87e33e7ef3572d31dbaee3e0608387f65cbdb7914, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:ae:89:b0:8f:ca:76:17:79:f2:b3:43:97:
ff:d7:de:6e:b1:53:8a:02:11:10:ae:d7:fe:0f:da:
3b:62:0b:24:55:74:04:bd:ad:94:2c:bd:c6:bd:ed:
50:ad:2a:a2:2b:41:61:fe:87:81:f2:f1:65:d6:9b:
b5:e4:fc:e7:90:f7:a9:00:9e:ad:1e:06:72:37:f5:
8d:61:91:ea:31:fa:de:95:d8:a7:89:80:0a:4d:1f:
8f:09:d4:54:4d:bc:35:33:b4:d4:11:5c:98:79:94:
8a:c1:d2:11:4d:7b:a2:39:3c:19:a1:f7:dc:b8:7c:
cc:74:a1:c7:84:de:67:ea:a8:29:54:26:c1:89:6b:
67:7d:86:6a:a1:f2:e9:28:e1:8e:6e:40:6d:86:87:
4d:d3:a4:a6:ef:25:ca:e5:27:bc:98:09:b9:7c:ce:
8a:ab:1d:21:4d:b6:42:0d:7b:96:54:86:9e:07:71:
be:0c:b5:4c:68:6e:40:46:7e:27:40:13:27:6f:b9:
4a:4a:ce:c0:f5:26:00:64:77:a9:8b:58:96:e5:fe:
cd:36:ef:bd:53:d1:e4:5c:4a:16:d7:71:de:6c:19:
9c:4f:bb:1b:eb:40:07:27:3f:5f:2e:1b:fb:63:28:
ad:0e:77:08:2e:4b:fc:40:c3:40:7d:b9:9a:b0:5b:
b7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:11:78:33:D1:29:B8:39:FA:24:9A:0A:8C:E5:3A:D9:46:55:47:20
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
63.134.0.0/17
Signature Algorithm: sha256WithRSAEncryption
64:2f:c5:cd:ba:bc:4e:ac:eb:83:9d:1e:fa:50:2d:a9:c9:26:
2c:2e:42:83:26:cf:7d:20:1a:14:51:e6:34:b8:39:bd:09:18:
ea:92:42:d3:20:3a:90:27:93:3a:bb:97:46:2a:6a:5e:fc:15:
c6:77:0a:3c:94:54:bc:65:66:a7:4b:98:3b:c7:7c:e7:86:e4:
cc:84:64:03:3a:ad:fa:f5:7c:ea:48:a5:75:14:a9:38:81:88:
a8:77:e0:c6:f3:cd:85:22:db:d8:2a:71:c4:91:e8:c2:8f:2c:
ab:8c:7b:71:59:c1:c4:d2:3a:49:41:a0:06:3a:62:32:b1:cb:
19:81:56:55:52:bb:83:68:76:8d:09:5d:ad:06:31:3d:04:09:
7e:e8:50:4e:b3:ad:7b:f6:ea:fa:a1:6b:25:88:7a:f6:30:af:
08:b2:6e:3f:45:33:7c:bd:c1:de:a9:93:6e:c7:81:29:2c:c8:
1c:30:3c:07:85:fd:b0:eb:13:34:72:c1:6c:98:26:5e:c6:b7:
68:bc:2f:18:94:c5:0d:71:83:51:02:25:f7:f8:d4:3e:87:a5:
5c:d9:ee:00:d8:fe:51:3d:21:16:e0:fd:af:4c:6c:5f:33:15:
ea:95:f9:ba:72:cc:13:c3:44:43:02:ac:72:f3:c9:81:d6:69:
65:05:c5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:39:43 2025 by rpki-client