Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa
File: 570db642-6bdc-4f5f-a286-d6a5418c1967.roa (raw, json)
Hash identifier: qFmFHaJsUtseFGcPx8sgRB7RY/0rhKmFwkN9UT6ETes=
Subject key identifier: CE:8D:91:62:BA:ED:1F:63:B9:1C:AD:84:4D:EA:F7:EE:59:16:C5:52
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5B880CFB56D01A5159E24AF30A85EE3583AC8C1E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa
Signing time: Wed 08 Oct 2025 00:22:59 +0000
ROA not before: Wed 08 Oct 2025 00:22:59 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 93.75.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:88:0c:fb:56:d0:1a:51:59:e2:4a:f3:0a:85:ee:35:83:ac:8c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:22:59 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=8eca016db5633037ad8a19b6fa87a174ea1627a745a99ee52a7ce23ad897b0f7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9d:0e:09:6d:be:00:bb:cd:66:c3:51:b0:ad:
7b:23:6a:86:1a:ed:7e:56:c4:c5:cc:84:53:5f:41:
5f:60:9b:ff:de:ed:32:c7:c6:02:7d:31:c2:1d:80:
ca:82:a8:37:68:ea:7b:bb:7c:f3:9e:2e:65:70:7a:
83:74:f4:62:9e:44:12:5d:12:2e:48:a9:0d:85:ae:
77:91:d3:9a:9b:d4:e0:a4:f6:4d:1e:23:77:2d:6b:
34:eb:d0:35:0c:da:ab:f9:e7:96:7b:97:0b:a0:8e:
94:cf:77:e0:e9:1f:04:6a:6b:83:7d:6d:92:4d:99:
b2:82:8e:b0:f5:47:1e:00:89:22:e0:0f:41:50:00:
8d:81:cb:01:65:29:33:81:b4:81:a0:ec:f3:07:8b:
c8:b3:6c:db:d7:ba:99:a8:44:26:d4:b6:bf:df:0a:
d5:17:b1:1a:58:e4:cb:b6:ac:c4:0a:4a:ee:c8:82:
ed:d7:a0:7f:9a:5f:46:b3:22:d1:df:02:81:2e:f1:
f0:8f:8c:50:3b:54:0f:36:33:c4:9c:83:32:55:ee:
57:64:8f:3f:0d:4d:52:49:de:29:03:58:46:ee:c2:
6d:16:f2:b5:2c:fa:35:3b:ac:ea:82:f5:a2:09:45:
27:7b:5f:49:8d:ba:09:44:d0:83:7a:77:53:c4:b5:
b4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:8D:91:62:BA:ED:1F:63:B9:1C:AD:84:4D:EA:F7:EE:59:16:C5:52
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
04:de:b7:26:20:9b:32:35:72:ad:9f:b7:47:23:c1:bb:f7:78:
8d:bf:54:fd:70:c3:5c:59:8d:0d:11:19:46:25:09:ca:64:47:
81:67:7f:46:bb:7d:2e:a5:8d:81:0b:9c:d0:db:d2:38:54:a6:
0d:5e:23:8b:c4:6c:21:dc:03:80:a6:01:eb:c6:20:fd:a6:8f:
d2:80:32:69:f6:ac:c7:17:7d:13:30:52:67:dc:4c:4d:7d:5e:
42:a1:25:fd:84:d2:01:07:fe:8d:20:58:ad:bf:d6:fe:03:9f:
18:0d:44:7b:dd:92:ed:24:3a:6e:c9:7d:2b:d2:fc:21:e3:de:
c1:76:f0:af:cf:d3:06:f3:79:81:a1:80:24:43:4d:a7:81:2b:
24:3b:7a:2e:81:12:b6:c2:fc:63:d8:3f:3e:df:c1:d8:fc:67:
c1:95:a3:a8:41:9d:06:74:c2:1c:47:ac:f0:fe:16:e5:d5:1e:
25:c8:f9:7f:ee:6d:3f:b2:eb:2a:be:5c:6b:b9:c5:b6:8d:03:
f6:57:40:48:1e:ab:78:a7:bb:f0:8a:3d:03:04:53:30:5b:95:
d0:6a:27:5b:bf:ee:d5:b6:26:11:b8:f0:21:72:21:8f:f9:5d:
3d:65:c7:5a:41:f3:58:f6:ba:17:6b:ed:1d:4f:9f:02:52:0f:
5e:be:c4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:05:26 2025 by rpki-client