Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75da3273-1141-407e-8be6-2c12ada7102b.roa
File: 75da3273-1141-407e-8be6-2c12ada7102b.roa (raw, json)
Hash identifier: f9BYUm5k8izlfXB5vCGhM2MCBRAOIyJ1CA3t46ZmDuA=
Subject key identifier: D8:BA:24:B1:10:88:B0:90:35:95:C5:33:7E:B3:63:0D:E1:74:4A:55
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4275F403185DCEB72C3F45C214F76411DD16AB77
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75da3273-1141-407e-8be6-2c12ada7102b.roa
Signing time: Fri 26 Sep 2025 00:42:19 +0000
ROA not before: Fri 26 Sep 2025 00:42:19 +0000
ROA not after: Fri 31 Oct 2025 23:59:59 +0000
asID: 16509
IP address blocks: 82.176.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:75:f4:03:18:5d:ce:b7:2c:3f:45:c2:14:f7:64:11:dd:16:ab:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 26 00:42:19 2025 GMT
Not After : Oct 31 23:59:59 2025 GMT
Subject: serialNumber=59eb674b3747ec920eee31c772d85209b657907f924b7d276a6e29b8ee390718, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6f:6f:1d:61:4e:42:64:72:64:a6:c7:7a:6e:
a1:25:68:ca:a7:8d:74:0a:bf:b0:93:08:61:a7:fb:
84:43:16:c3:e4:bc:97:4d:54:73:ba:7c:8f:1d:65:
7d:59:f8:f9:84:b2:31:c0:38:88:a0:9c:5d:9e:a3:
e1:93:f7:a9:56:ab:40:ec:69:1f:a4:45:cb:22:01:
60:b7:d6:d9:93:61:5a:85:d3:33:9b:bf:28:8c:48:
9c:48:10:20:0a:cc:c8:17:79:08:54:e1:0c:15:a6:
a2:09:57:67:9e:64:ad:30:89:c5:38:8f:bf:dd:45:
42:a4:d5:a4:33:c0:d1:e2:2e:18:f5:a9:79:9d:5b:
01:d7:19:a7:32:bc:ef:08:b2:ce:cd:90:80:69:de:
4b:6b:c1:31:19:1f:e8:4b:2d:1d:7a:43:73:17:d3:
c6:9d:d1:85:e9:0e:87:82:6a:02:2d:3f:a6:36:21:
35:d4:cf:84:d4:f5:c3:03:a0:d0:ca:0a:b1:c6:75:
10:96:4a:ca:7a:7a:2f:e6:01:29:70:ee:27:90:d8:
98:61:e5:06:0a:cd:f0:4d:91:69:20:25:68:ac:53:
5c:ad:02:b5:90:8a:57:df:ec:e2:4c:0b:d8:48:64:
f4:cd:69:9e:bc:d3:5f:cd:ea:b1:d2:7c:35:5b:d9:
ca:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:BA:24:B1:10:88:B0:90:35:95:C5:33:7E:B3:63:0D:E1:74:4A:55
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75da3273-1141-407e-8be6-2c12ada7102b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.176.0.0/16
Signature Algorithm: sha256WithRSAEncryption
23:0f:c8:27:be:32:fb:3b:b9:1a:7c:f9:54:f8:97:fc:bf:89:
82:24:8a:c2:f4:04:be:17:4a:48:9a:ff:f2:3d:5b:5d:d9:9e:
85:6c:c0:8f:70:d1:53:b6:87:37:10:3d:43:3c:51:92:9a:7c:
f4:35:7b:d0:c1:ba:ac:98:71:7c:69:50:47:8e:eb:67:15:d6:
14:39:fa:b7:4f:85:72:57:dc:54:c8:76:59:fe:6c:be:02:06:
f2:3f:56:98:f2:30:0d:ad:9b:c1:59:83:5d:f8:49:33:a3:52:
b3:82:bb:74:5f:d5:c7:bc:d4:98:4e:ab:10:ac:eb:3e:bf:00:
22:5a:7e:0f:1f:6d:19:34:03:c1:6c:71:23:74:2c:ff:c6:80:
7f:27:24:01:30:4b:a1:9f:d8:a0:a9:fe:f7:14:7e:58:16:a1:
77:e6:0a:20:b8:37:d3:bf:f7:14:33:26:6d:95:46:2a:1b:94:
04:a7:dc:c3:24:59:8c:10:28:ed:20:a6:bf:2d:c3:06:d3:d7:
ad:78:0d:3d:1d:10:13:23:4d:d2:17:26:41:57:9f:44:d7:1e:
e4:af:b2:8b:0d:83:a9:ab:49:df:11:bf:57:7e:11:b3:38:cb:
12:06:a6:4b:a3:0f:4c:1d:84:cb:aa:1f:5a:de:91:c0:12:7c:
f8:47:f7:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:17:52 2025 by rpki-client