Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa
File: b72f4616-5ee0-476d-82ee-4c547532502d.roa (raw, json)
Hash identifier: VuzTgzMQJZu1ijljLRUBKAXzhejUm5r8YDtFW8L+Ko8=
Subject key identifier: 80:3F:28:86:DB:3F:B6:CF:63:DB:43:8E:2C:E1:CD:66:58:40:27:D1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5F552D766B4387F84D1E6D00DC68806353EB92C8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa
Signing time: Fri 03 Oct 2025 00:01:29 +0000
ROA not before: Fri 03 Oct 2025 00:01:29 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 157.135.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:55:2d:76:6b:43:87:f8:4d:1e:6d:00:dc:68:80:63:53:eb:92:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:01:29 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=90a8746bfda3d8ef92fc7c463a4743def73625d582c62d6176238be2df36d6f9, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:24:ee:3d:13:7c:42:ba:c2:0c:1c:a7:e4:52:
90:9d:73:2a:54:f8:5d:7a:57:56:1c:84:72:8f:84:
22:05:d7:dd:19:0c:e9:90:2b:76:1e:2b:0a:6b:c4:
31:2e:ce:05:92:0d:fd:93:86:f9:7c:64:bb:5f:9a:
ab:4c:3b:22:48:08:f1:1d:a9:26:9c:a5:93:f9:63:
3f:35:e3:19:ad:7a:6c:7f:a2:f4:5a:e5:79:1d:de:
45:cc:6b:c4:58:ff:d2:b9:33:bf:8e:5a:4f:fc:22:
bc:40:55:83:15:96:c9:32:ca:ec:fc:a4:0c:82:7e:
a3:08:db:d5:b9:46:4f:5c:1c:f7:86:5d:31:00:17:
ec:81:41:50:6a:e9:d7:4c:5b:21:31:97:12:41:ab:
d8:9c:ee:68:4d:02:89:be:15:7d:87:74:9c:e1:b0:
a2:14:82:e4:b8:84:4d:28:82:e0:41:3b:a0:f9:7a:
20:08:63:6a:17:dc:08:26:54:77:75:ce:4a:7b:79:
ff:33:68:87:e1:07:fb:bb:cb:cd:17:31:72:a8:df:
20:b9:31:79:96:02:df:38:fa:4d:40:a1:6b:13:60:
4a:e7:c3:ba:0f:f0:93:5d:d6:48:ca:15:c9:e4:e8:
87:a6:6d:6a:b6:21:91:98:14:64:f0:d1:55:3a:56:
a9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3F:28:86:DB:3F:B6:CF:63:DB:43:8E:2C:E1:CD:66:58:40:27:D1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.135.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6d:36:93:87:5d:f6:7b:a3:4b:0c:9d:3f:41:1f:aa:8f:03:0b:
2c:51:2a:8e:ed:a2:98:ed:4a:04:dc:84:f9:3b:48:40:a4:eb:
10:94:0b:19:cc:66:8a:49:dd:bd:79:23:29:93:d8:26:8c:14:
8d:dd:36:aa:46:15:1d:7b:0f:41:a9:7f:31:a9:d8:4e:41:f5:
a7:d8:93:97:c9:8a:56:91:0d:35:d2:7d:02:c2:2c:87:46:61:
3f:08:18:8f:c1:4e:26:dd:bc:d9:f0:f1:24:1b:64:bf:61:ce:
27:d8:ad:d5:6a:d7:ea:9a:a6:c6:66:b4:7a:09:60:05:33:ec:
f4:05:2f:e7:a4:7e:b6:01:3d:6f:27:65:c3:b4:a0:7e:e8:d3:
88:7a:fa:52:d7:6e:ce:90:95:29:e9:1b:d6:6a:a1:bf:4f:3b:
4c:1b:a0:a7:87:ca:98:25:6e:1d:9e:d7:7b:2a:0c:0a:9d:26:
37:ad:80:67:d3:52:09:19:f3:0b:1c:4b:06:9b:b8:ad:d8:c1:
1a:26:4f:e1:7c:64:59:59:29:0f:bd:62:05:d2:47:15:2f:77:
0c:b4:ca:e8:fa:6b:d1:27:22:bf:a7:1c:f4:d0:7a:06:ab:5c:
59:e8:98:c0:39:34:da:70:97:78:8c:d7:77:16:99:8c:ab:55:
4a:00:c9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:08:04 2025 by rpki-client