Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa
File: 83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa (raw, json)
Hash identifier: g5XZm++CKBX307o0vk1s840RF68ln9qJRHmwLCmqHVE=
Subject key identifier: 5B:D1:EE:0A:6A:D1:F8:8B:91:0F:14:B8:9C:42:72:0F:A1:02:D9:CE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 12A39C2EF57F291CD1CDAE204E30FFB8A59B5DF1
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa
Signing time: Sat 18 Oct 2025 00:50:52 +0000
ROA not before: Sat 18 Oct 2025 00:50:52 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 216.182.224.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:a3:9c:2e:f5:7f:29:1c:d1:cd:ae:20:4e:30:ff:b8:a5:9b:5d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 00:50:52 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=4623aa3bd6d6c713d1ee959cc207846cbd7f815850abb7343ebf7624c2baf466, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fa:fe:d7:b5:1f:4d:9c:80:2a:7d:0c:ac:55:
bd:b1:05:70:69:b5:bb:a8:05:79:f5:81:91:99:e3:
bb:9b:94:d5:34:e2:f4:0f:72:ff:84:f0:ec:6c:71:
ab:8e:5e:ad:4c:bd:a3:3c:91:5c:b7:47:fb:50:50:
a1:ef:7b:ea:76:13:fd:01:57:24:05:bd:3b:50:83:
db:65:96:c5:5c:6b:40:16:f2:b5:0e:0c:f2:5e:42:
66:88:b6:6c:f1:e4:50:f0:9a:d2:96:93:e5:c5:3d:
d3:03:c5:7c:4d:18:ec:89:2a:b3:3b:38:38:08:87:
0e:e6:d1:c0:b3:01:70:1e:a5:6f:00:39:6e:d7:a1:
ac:f1:75:79:bf:7b:0b:5f:47:70:ad:91:5d:47:41:
01:02:7d:58:0a:c7:81:9f:a8:9d:db:43:1e:5c:9e:
9c:d6:85:4d:c8:73:96:8a:16:ff:6a:33:c7:e9:cb:
5c:83:d3:f1:64:ba:17:63:e4:d0:50:cc:5a:00:bf:
ba:76:a8:6b:45:e3:97:87:d4:9f:75:41:c3:a5:06:
ab:af:6e:45:fc:29:74:fe:d7:49:41:3d:8f:eb:68:
52:82:82:d3:1d:3f:6d:cb:ba:0e:4f:ce:a1:18:cd:
20:30:83:de:ca:49:f7:80:03:d4:70:f1:eb:b5:a3:
c5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D1:EE:0A:6A:D1:F8:8B:91:0F:14:B8:9C:42:72:0F:A1:02:D9:CE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.182.224.0/21
Signature Algorithm: sha256WithRSAEncryption
4c:56:59:09:98:fa:d0:f5:3f:84:75:16:66:71:ef:93:ac:87:
57:ec:2c:c5:de:46:e3:be:f5:3f:07:46:dc:8a:46:f4:de:9e:
a9:cd:5c:bc:2a:a9:81:de:5c:bb:a0:9a:36:9e:05:f6:10:19:
bc:1e:ef:f8:2b:b2:b3:d3:db:d9:5a:10:4d:dd:de:26:23:da:
1e:30:92:3e:ed:cd:5e:b1:90:9f:7f:e2:7d:d2:6d:49:94:3e:
80:63:5c:49:0e:7e:0b:1f:b5:fc:ea:3d:56:98:30:ad:c9:0a:
7b:f2:1f:b2:59:63:f8:5e:75:7b:c3:35:46:1c:ac:55:7c:b0:
4c:34:d2:bc:4d:37:b5:8c:e7:bc:bf:64:08:13:2a:17:bd:ca:
c8:d8:d3:b2:8f:d5:db:0d:d1:7a:c4:18:5b:6d:60:7a:70:1e:
1c:eb:dc:bc:4f:58:c3:82:3b:6d:e6:ef:ee:09:16:49:ed:a4:
92:5d:f3:53:89:9b:51:b1:38:f2:9c:f1:03:56:6b:01:dd:7f:
c5:d4:0a:fe:02:66:44:12:3e:9c:ef:c6:e3:ad:33:07:e8:a1:
30:41:ee:1d:a2:b9:d8:8c:4c:8b:e0:77:48:bf:18:54:55:38:
a7:d3:c7:d2:18:ba:c4:82:23:9c:97:41:e8:f6:3a:c3:e8:4b:
3f:40:55:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:54:14 2025 by rpki-client