Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b75fc685-6ff7-4561-a025-4dcec65b9036.roa
File: b75fc685-6ff7-4561-a025-4dcec65b9036.roa (raw, json)
Hash identifier: 1sasTKoUmv78U0sN+34xv1myeuBX4Ssl37zLDtkeJS0=
Subject key identifier: F8:8B:04:82:C5:D2:B9:1A:5F:AC:67:3A:FD:02:48:69:61:AF:31:28
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3E600E7E2B392165A370F253ABA84F7F5A6B35AF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b75fc685-6ff7-4561-a025-4dcec65b9036.roa
Signing time: Sat 18 Oct 2025 04:31:48 +0000
ROA not before: Sat 18 Oct 2025 04:31:48 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.9.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:60:0e:7e:2b:39:21:65:a3:70:f2:53:ab:a8:4f:7f:5a:6b:35:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 04:31:48 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=bbbe9f239f7c9a6146dc353b4c0a11b20a1b5e2f2a2c796627f9d0a491e56e27, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:77:62:0a:46:71:fc:52:6f:64:73:0d:9d:a1:
0d:c6:27:3e:5f:f1:51:a4:6b:4d:51:7c:67:b1:af:
3b:69:cb:99:fb:7d:19:d0:31:94:ef:94:ed:c9:8c:
a5:7a:36:ae:b2:73:d0:c8:56:09:19:c8:14:1e:01:
83:77:6b:62:52:f5:a5:f2:a0:8c:88:96:d4:c5:f5:
27:38:48:c0:2c:aa:75:0c:7e:27:d9:6d:e7:f0:d2:
ac:6a:7b:55:30:9d:10:c7:46:5f:ca:ff:ff:03:ba:
45:61:f9:df:87:c7:3c:45:02:23:f3:86:44:5c:59:
86:b7:cf:fe:dd:a8:78:a2:72:59:b6:ae:08:ea:27:
ac:e2:b4:4c:e8:34:c7:0c:b5:42:a0:9e:de:58:d4:
8a:c0:86:bd:8f:6c:66:a1:48:60:60:e9:10:98:8f:
fe:58:7f:8c:b6:5d:8f:f9:03:fa:07:da:74:0f:81:
79:fb:b8:f8:eb:e8:fc:33:91:db:95:16:e5:2e:8d:
cb:d2:a2:22:44:39:48:49:f2:e3:31:90:ae:4e:bf:
47:8c:f0:f9:cb:74:09:62:d8:d8:c8:e6:12:0b:09:
5b:72:2e:47:92:88:a2:3f:94:f3:4d:00:e5:4f:ce:
10:41:e8:ba:c6:91:1c:20:d0:bc:ab:af:e8:58:c8:
37:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8B:04:82:C5:D2:B9:1A:5F:AC:67:3A:FD:02:48:69:61:AF:31:28
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b75fc685-6ff7-4561-a025-4dcec65b9036.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.9.23.0/24
Signature Algorithm: sha256WithRSAEncryption
65:db:5f:e3:b4:f6:a6:48:72:89:2a:e1:46:80:e5:d6:e6:3a:
d4:a9:06:8f:7a:52:ef:47:7b:08:91:a3:13:a3:72:5b:5c:af:
4f:a9:ba:1d:a9:5b:20:59:d5:73:05:01:2a:53:db:d5:9d:aa:
57:97:2e:4b:9a:7b:87:5b:2c:91:cb:55:8a:62:26:f3:6d:a1:
40:50:b2:e1:f1:80:fb:90:35:99:56:ce:17:38:84:f8:a5:c0:
b4:c9:1c:67:06:05:ba:a2:8c:10:26:f3:d6:1b:d7:8f:04:c8:
89:ea:60:5b:56:97:cb:94:0f:85:c1:3c:2c:cc:a6:f1:5b:46:
4c:4b:5e:10:64:e2:c5:52:9c:8f:4d:4a:a1:5e:86:25:a7:02:
49:bf:d3:cb:e2:20:e3:df:37:26:1e:46:fa:03:9c:f2:b9:a1:
4a:a2:56:ea:4a:1b:8a:df:44:71:78:34:e5:f2:ad:fe:6c:73:
47:40:3e:72:4c:35:07:14:1f:a4:0a:b8:38:b5:a3:ae:f5:6a:
a9:d8:c1:53:ea:b4:87:0f:b7:03:d1:1d:23:79:47:59:99:fa:
0c:05:cd:31:04:42:75:1d:1b:86:4a:4a:36:39:2c:93:21:0b:
75:6a:6a:f0:cf:47:24:49:cd:d3:75:27:4a:ee:af:d0:bc:e3:
ac:69:ae:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:30:29 2025 by rpki-client