Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa
File: 7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa (raw, json)
Hash identifier: 96GpB1N1FYLVc5WMKh98QlSPb5LLY8EGXpOTKH4Kn8g=
Subject key identifier: BB:49:83:8E:CA:B2:0D:8A:E0:25:B0:A7:E4:06:59:11:2F:97:6B:05
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 247AF22399EBA82BA3F6AE18A060BB9E286F8BC9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa
Signing time: Mon 06 Oct 2025 15:21:14 +0000
ROA not before: Mon 06 Oct 2025 15:21:14 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 13.128.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:7a:f2:23:99:eb:a8:2b:a3:f6:ae:18:a0:60:bb:9e:28:6f:8b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 15:21:14 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=ef812b734e9f8f5048c4d8f9b10251af2512c0bb83269f68d5884517bfe506f3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:af:2c:2d:91:55:28:17:8d:a1:06:5f:8f:43:
ff:e6:5a:f8:bf:d6:6f:66:c2:c0:50:f7:dd:0e:0c:
73:a3:cc:8b:fb:0c:96:9d:13:a5:a2:9c:ef:c6:ab:
b4:58:2a:07:86:e1:f8:75:35:fa:cb:08:ae:b2:ea:
4a:8c:50:37:21:f9:1d:71:51:41:2e:dd:11:43:fb:
82:2d:b2:d3:cb:25:cb:98:c6:ff:d4:6e:30:5f:61:
46:92:84:04:30:5d:bd:ce:7c:d6:6d:aa:1b:3d:6b:
3c:3d:a0:f2:d1:0b:8a:eb:cd:d8:78:7b:72:c0:8e:
35:58:1c:3e:82:27:9f:b5:5a:63:d1:3c:14:50:e0:
9e:0e:60:30:cb:22:fd:4f:74:63:9b:eb:50:8c:a2:
92:48:6a:9b:f9:10:3c:d7:b6:7c:8f:0b:b6:32:83:
8d:cb:c7:7e:71:99:53:8a:ff:14:d6:30:7d:bf:90:
fb:30:cf:85:bf:67:07:74:3b:63:c8:00:d5:bf:06:
d9:dd:7d:1a:9e:da:5a:eb:c6:ae:4e:c6:40:6c:e4:
96:97:ed:d1:f9:dc:cb:c4:70:f3:95:d1:55:39:ee:
22:a1:74:75:42:69:65:6b:0c:11:7c:ba:1a:64:bd:
5c:57:96:a0:7a:2b:08:69:fe:4e:fa:e1:80:58:cf:
58:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:49:83:8E:CA:B2:0D:8A:E0:25:B0:A7:E4:06:59:11:2F:97:6B:05
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.128.240.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:e8:0c:3a:bf:20:17:71:be:6b:61:0d:a1:51:ec:0f:ea:66:
0c:ff:76:77:e2:aa:9a:6d:15:97:9e:f5:8a:75:c9:df:bd:c7:
4b:4f:7a:7d:5f:0d:f3:2f:72:9f:57:a2:4a:0c:9b:d9:c1:fc:
25:31:7c:29:05:31:de:24:de:53:da:d6:02:f5:50:2f:0d:dc:
36:c0:af:b1:b7:0d:f9:9b:11:3a:31:f1:36:b4:28:c6:0e:5b:
ec:aa:3e:5a:5b:db:c9:6f:3d:9e:c8:9c:46:7f:3c:f6:72:91:
17:db:95:78:f8:8c:0c:f9:25:2c:54:be:26:2d:bd:fb:bb:1c:
1f:a7:b0:7e:05:68:b1:bd:f3:26:b0:a1:bf:a6:6c:2a:57:37:
80:20:dd:7e:df:1e:ed:a5:6c:99:e5:e0:02:a2:14:1c:cc:71:
58:c2:10:3d:a7:81:af:05:74:9b:95:48:79:67:16:06:6f:85:
e2:ca:c8:c0:2e:3d:63:01:3c:ae:d1:8a:a7:64:ec:0e:63:b1:
f3:ce:ed:55:99:95:10:9c:cd:69:d1:90:a9:93:93:18:0e:37:
1d:a5:8e:b5:0f:d7:1c:c9:fc:85:18:83:e6:56:01:dc:eb:b7:
ec:90:25:db:4e:a8:47:bc:77:27:cf:32:8d:a1:9a:19:2b:cc:
b7:3b:57:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:35:04 2025 by rpki-client