Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97441788-c6fe-4124-9c5d-3eadc28ce7e3.roa
File: 97441788-c6fe-4124-9c5d-3eadc28ce7e3.roa (raw, json)
Hash identifier: dhifssv8w+F/GHu641Bm+0rRueaMmUVtbohe+qoaRhc=
Subject key identifier: 36:BA:A1:98:43:15:6E:E5:21:77:09:83:36:C7:AC:FD:72:7D:6A:19
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3211219C0C38F2389212AC6366149BBBF32366B0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97441788-c6fe-4124-9c5d-3eadc28ce7e3.roa
Signing time: Sat 18 Oct 2025 00:51:41 +0000
ROA not before: Sat 18 Oct 2025 00:51:41 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.8.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:11:21:9c:0c:38:f2:38:92:12:ac:63:66:14:9b:bb:f3:23:66:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 00:51:41 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=43101dd85216c098745151d5a12de521c3c3eb8155289a5feb9718ea32e42fb8, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dc:d4:15:96:23:8f:1a:08:77:dc:ff:25:b4:
49:85:04:60:6b:69:c7:b0:35:bf:ea:17:ae:57:95:
c9:7a:e5:95:4a:d4:bd:4b:ac:c2:2f:1d:5b:6b:c7:
99:03:03:2f:2d:d1:48:43:eb:75:58:20:68:87:3b:
3c:99:43:7b:7b:5c:0e:7a:44:25:04:3c:25:67:6c:
7e:93:59:dc:a4:09:ef:9a:46:a5:e2:9d:3f:9d:1a:
c8:39:4e:a3:d3:05:5f:c5:5c:0f:73:21:eb:4c:99:
cd:96:a0:bc:82:56:8d:15:7b:0f:7a:73:10:78:6e:
d3:a2:bf:5e:d3:ae:5a:bd:6b:69:b2:75:d5:56:16:
9f:c9:c1:f7:d9:7c:ea:aa:5e:4d:7f:e7:fc:04:28:
ae:d9:db:30:97:cc:59:06:5c:5b:a3:cd:8f:f9:c6:
ca:47:56:5a:2e:69:ab:34:df:44:d8:07:bf:b5:65:
0b:b2:9e:0e:b3:8e:b6:53:f7:58:70:46:e8:dd:3d:
b4:46:37:14:2a:13:2b:3c:e6:d6:e5:08:57:b4:01:
b2:aa:bd:22:72:47:f4:b6:ed:1c:bc:c3:71:3e:b9:
cf:47:ff:f8:bc:59:58:dc:6d:e6:34:bb:85:a0:9e:
72:f0:d5:fb:5e:4b:ec:cd:75:9b:c6:4a:de:dc:e8:
de:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:BA:A1:98:43:15:6E:E5:21:77:09:83:36:C7:AC:FD:72:7D:6A:19
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97441788-c6fe-4124-9c5d-3eadc28ce7e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.8.96.0/20
Signature Algorithm: sha256WithRSAEncryption
94:ec:ae:37:ab:3d:dd:28:0f:3f:ff:d3:f4:48:e4:1b:fc:80:
b4:72:d8:73:05:6a:fc:97:b2:15:9c:41:ba:3c:1e:03:8f:6d:
0f:f0:ed:38:65:4b:28:94:ab:f6:e9:93:8d:5f:7c:3e:78:a5:
9e:f9:ea:0f:bd:52:40:45:df:1c:5b:53:37:a0:dd:f3:d7:80:
52:61:c4:9c:7a:cb:54:0a:cf:0a:a6:28:89:10:91:f4:33:4f:
0c:3b:3a:3d:b3:66:2d:55:46:d4:08:bc:11:8f:95:22:d5:0b:
22:1d:1c:94:7c:c2:36:95:e3:f6:a1:3b:ef:01:a3:d1:5e:b0:
e4:0d:cf:8b:c7:08:37:86:18:03:0a:03:6c:70:30:69:50:a0:
fb:01:a2:80:4b:c0:a9:9f:e6:00:d5:ef:c6:b9:6e:21:85:2a:
d5:18:24:ab:8b:77:e4:19:a5:f5:86:38:a4:e8:03:6c:33:89:
e0:d0:4c:fc:b6:44:f3:7d:1b:5a:b1:d5:0b:89:89:49:fb:f2:
13:f8:0e:bc:fb:91:65:7b:0e:4e:eb:db:09:8d:29:92:67:16:
42:82:e6:21:52:2a:8e:36:5b:52:9a:dd:0e:46:aa:32:4e:03:
eb:78:e9:9f:d7:55:7c:08:e6:df:78:86:14:5d:5a:87:a8:be:
e8:53:cd:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:47:09 2025 by rpki-client