Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa
File: 69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa (raw, json)
Hash identifier: yCX3pjz892pIbKRKGZaZmfEYUhYJEuyw5y4xHTl7PWk=
Subject key identifier: 35:23:B1:D3:A5:B6:F6:FD:19:24:01:CB:44:9B:B6:8E:20:DC:18:35
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 272581104B8BBBF56742298E536E370D5387D3B9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa
Signing time: Sat 27 Sep 2025 00:40:34 +0000
ROA not before: Sat 27 Sep 2025 00:40:34 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 75.2.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:25:81:10:4b:8b:bb:f5:67:42:29:8e:53:6e:37:0d:53:87:d3:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:40:34 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=39e0bfa100ea25b98a84a75e824f2b7f68591c7d8149221d11accae3eeff0644, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4a:5b:d9:c3:c1:03:45:2f:67:75:b7:46:11:
fe:6f:9d:8d:47:d5:3d:74:2f:58:30:82:7e:13:44:
ab:05:1f:18:29:2f:f6:b3:c8:56:50:13:e7:61:bf:
ed:5f:ec:b5:88:99:5d:40:59:d3:21:fd:99:7b:b4:
1b:c8:a6:b3:c6:2c:82:1b:5f:99:1a:a8:b7:e2:ee:
7f:39:87:56:ff:89:31:7e:a3:26:46:6a:a1:0e:ac:
f4:b0:7d:52:45:33:c0:5a:1f:82:fc:ee:9a:40:30:
60:0c:57:0a:76:8b:ff:50:4f:3f:c7:e6:a6:4b:d0:
21:f3:77:15:00:c5:88:20:b0:2f:7f:41:ac:2d:ff:
ee:ef:ce:63:27:8d:74:02:81:d2:f0:da:9a:59:1d:
78:ac:4a:3e:52:82:0f:b8:02:aa:52:7b:33:0a:6c:
cc:58:e2:5d:d9:aa:d7:0a:70:cf:42:da:34:df:ce:
6e:9b:37:d8:26:39:40:8b:a6:3f:1e:6f:18:22:10:
54:80:11:ea:95:fb:e8:57:9d:7d:c6:3b:6b:c9:e0:
6d:c4:48:23:2a:39:d0:c3:44:e2:21:3d:0a:19:94:
c7:3c:21:11:d8:fd:8e:88:f1:5a:12:9b:c7:ac:ee:
38:02:14:c2:ef:33:f4:90:89:f1:cc:1b:23:d2:79:
43:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:23:B1:D3:A5:B6:F6:FD:19:24:01:CB:44:9B:B6:8E:20:DC:18:35
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
75.2.0.0/17
Signature Algorithm: sha256WithRSAEncryption
d5:62:0e:59:20:22:1d:bf:d0:86:c3:9b:32:5e:6f:f2:63:0a:
22:e2:16:0e:d9:df:b1:8f:ff:2b:91:59:36:8a:2a:6e:62:84:
07:fd:d1:61:22:34:40:5f:0e:20:4f:88:36:04:02:dc:fc:61:
2d:aa:9e:c4:bb:6a:f1:04:d5:6e:c4:f3:80:42:dc:0a:ff:e4:
5a:d9:aa:77:a4:42:54:c3:b5:cb:0b:a3:cc:f6:ee:0a:0f:d2:
93:0b:c4:05:cb:1b:cf:3c:1d:6f:e7:6d:eb:78:e7:2e:2f:22:
4d:8c:e3:d0:6d:75:a6:51:92:5a:ff:14:4d:e1:33:4d:f7:d6:
1d:2b:42:a8:08:e8:9b:22:c1:f9:2d:22:9e:c2:ed:b0:dc:db:
af:e6:cc:c0:9a:0e:55:f6:bd:c7:a3:27:85:ce:dc:de:02:2b:
97:77:fd:52:a4:52:0a:73:bf:66:b6:cb:a4:60:db:10:50:51:
20:02:6c:e6:bd:4e:97:f7:58:17:00:67:98:d1:0c:0a:9a:6c:
68:ca:6d:8c:a0:5d:88:88:87:02:22:17:4c:7a:6d:14:5f:57:
0c:e5:c8:cf:df:cd:34:da:b1:2e:0f:d8:b4:c0:c4:9d:6e:b5:
31:35:5a:cb:0e:78:0b:8b:24:19:28:c3:5b:f5:8c:d2:4a:e5:
0d:b2:2a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:38:36 2025 by rpki-client