Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66098d01-e3bb-4ee3-9100-cd4130647348.roa
File: 66098d01-e3bb-4ee3-9100-cd4130647348.roa (raw, json)
Hash identifier: f8i1JVHd/0CkhkSj8qvE+tDkLPklnObXVWAx45gd/W8=
Subject key identifier: D2:2B:7A:3A:9C:46:C6:D1:08:F7:12:82:36:04:AD:DA:2F:BC:B5:3B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4F3EB87F646602F199E6F823263F2112A625CDDA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66098d01-e3bb-4ee3-9100-cd4130647348.roa
Signing time: Sat 18 Oct 2025 02:41:01 +0000
ROA not before: Sat 18 Oct 2025 02:41:01 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.8.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:3e:b8:7f:64:66:02:f1:99:e6:f8:23:26:3f:21:12:a6:25:cd:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 02:41:01 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=e96e2ef199d8fb1a65dfd302ba67cfb138d15dfd6d0f39d9b729d13bbed89bf2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c7:d9:ef:10:59:1c:a4:7d:5f:50:b2:b2:8e:
45:36:7a:76:a4:cf:d3:a9:d1:03:cf:a5:3f:a8:1d:
ec:c1:9f:71:91:63:b3:58:6f:99:f0:5b:48:a9:f8:
7c:9b:64:4c:8f:81:00:04:a7:cc:38:5a:5d:82:23:
a7:e5:0f:e5:2f:78:79:1c:e4:89:55:6f:40:ab:3a:
65:1c:ed:26:4a:35:fc:ff:0e:3c:e6:c5:7f:c6:b2:
0e:60:55:2a:ea:58:05:ab:fe:25:70:37:74:45:7d:
00:a1:65:89:20:29:c4:71:d2:fd:b5:e4:4a:57:f4:
1f:ed:70:52:d3:8e:64:98:22:9e:b8:40:63:d2:11:
cc:16:c2:51:4f:21:c4:15:54:7b:8b:89:2e:f4:cc:
5e:29:b9:07:02:5a:bc:e8:76:ae:d2:e4:3a:46:dd:
a4:61:c8:0b:d3:d2:12:96:eb:4e:91:b4:92:20:a2:
fc:a4:3b:02:52:aa:ae:2c:6c:bc:c2:4c:fd:69:c4:
1f:50:0e:a8:0d:80:99:a3:72:ee:b5:b2:14:57:0d:
ce:4d:cd:ea:fa:17:9c:55:74:11:e4:14:23:3a:d2:
2c:75:f2:6c:20:24:e4:40:95:e6:4f:f1:fc:ee:0f:
df:13:59:35:d2:69:52:5f:34:69:42:16:e0:4f:fd:
55:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:2B:7A:3A:9C:46:C6:D1:08:F7:12:82:36:04:AD:DA:2F:BC:B5:3B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66098d01-e3bb-4ee3-9100-cd4130647348.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.8.101.0/24
Signature Algorithm: sha256WithRSAEncryption
87:0f:df:f5:4d:a3:be:ac:5d:8b:20:a1:04:2e:53:8f:b4:44:
98:03:bb:0f:28:19:d5:e7:c2:d0:98:7c:6b:98:17:67:ab:1b:
65:2f:c5:79:d3:60:69:7c:61:5b:93:11:50:dc:ff:fd:44:2c:
1f:31:77:cd:67:cb:45:05:f7:70:b1:d2:e2:ab:73:33:2b:85:
e7:05:ad:4f:56:08:25:55:8c:76:39:f0:a8:7c:07:a6:30:9c:
87:b5:e3:26:04:00:89:b0:bd:57:65:a5:b6:7c:53:bf:43:52:
8e:17:4b:0d:eb:6b:60:b7:a2:5a:90:ab:2f:33:e1:86:d6:f4:
8c:23:1b:0b:97:e8:90:3f:eb:f0:3a:66:07:ac:e0:df:34:21:
eb:8d:2e:08:91:11:ef:b8:d7:12:96:a0:6e:46:89:56:ce:94:
5c:59:93:0b:39:e0:0e:50:2d:06:f4:7d:5a:2f:f7:b1:98:6b:
a0:10:d4:a4:20:0e:a3:b2:6c:88:34:3a:1b:0e:6f:c1:1d:a8:
10:b7:8c:df:05:c2:cb:cc:67:b6:81:48:d1:65:ee:23:23:25:
4b:ee:35:03:6b:eb:cf:50:9e:a1:a0:32:f1:b9:f2:a0:53:a2:
6a:b9:0e:33:0a:f0:f9:29:82:11:96:e6:29:2b:78:04:f7:ef:
46:aa:8a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:59:49 2025 by rpki-client