Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa
File: b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa (raw, json)
Hash identifier: pbtURHqi9PojfBjcx2DG3KFzPFWpVyCIRg5OA6GV32Y=
Subject key identifier: 60:FF:74:C5:39:D4:F8:D7:B3:B6:A7:4C:6A:71:2C:4D:F3:25:07:B6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3F50DBFFB145268D00C2C8C9B91276C38E8372D7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa
Signing time: Mon 06 Oct 2025 15:22:37 +0000
ROA not before: Mon 06 Oct 2025 15:22:37 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 13.130.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:50:db:ff:b1:45:26:8d:00:c2:c8:c9:b9:12:76:c3:8e:83:72:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 15:22:37 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=bc669f55865952b43f3da2b7fc9f8627f0b1457418c1801b09efdf15447ad2b6, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:5e:11:4d:3e:9b:f8:57:07:09:eb:80:c5:
50:78:27:79:b5:2b:9f:ea:a8:ec:14:f3:58:69:78:
ae:4b:e1:b1:7f:c0:46:c0:6d:fb:e0:28:ec:93:8e:
ad:07:b5:ed:fc:9d:70:91:c1:0b:a9:db:05:09:07:
24:49:73:d8:4a:49:e0:77:45:a7:e6:b7:0a:44:31:
72:9b:a4:fd:7e:39:62:64:de:c9:61:9f:82:66:f6:
68:5d:fe:04:04:53:a5:05:dd:a6:b8:79:0f:8e:8e:
2f:cc:ee:d9:cc:bb:e9:95:76:8c:86:fb:1e:1f:9f:
36:c0:1d:0b:8d:80:49:b5:91:4c:65:51:43:0e:8e:
24:93:ba:11:fe:df:f8:00:57:ac:ac:11:09:4f:b3:
1b:0d:36:3f:20:9a:89:1a:4f:b3:8c:1f:44:f2:47:
db:ea:1d:b9:00:51:51:9a:00:8a:65:b3:12:40:63:
5b:c3:6e:9d:89:29:4f:d4:81:f8:26:34:90:68:f8:
a2:89:3e:6a:07:ef:f2:19:4e:e3:98:4d:7c:ad:8b:
89:51:d3:8e:8e:13:69:0c:53:13:d7:d9:0c:32:da:
03:07:7c:14:e1:26:fe:9e:94:64:49:5d:72:d0:d5:
a3:0c:c8:39:11:7c:21:f4:f6:52:97:62:a9:ed:6f:
09:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FF:74:C5:39:D4:F8:D7:B3:B6:A7:4C:6A:71:2C:4D:F3:25:07:B6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.130.8.0/21
Signature Algorithm: sha256WithRSAEncryption
56:f7:32:3c:5b:a1:98:b2:06:16:4b:31:0a:e5:d5:fa:fa:08:
af:58:f1:4c:47:24:16:a2:9f:54:eb:94:91:4b:21:03:59:e1:
d8:60:18:7c:7c:29:dc:37:dd:e1:5a:0a:7b:47:e6:8f:0e:07:
56:a7:aa:9c:b6:f8:93:80:77:4a:3e:d5:0e:c6:fc:ea:4e:f9:
73:d8:a6:d9:b1:ac:f2:d3:a2:4c:2c:83:8f:f6:0e:03:ed:79:
9b:14:d4:2b:47:84:c6:33:37:ea:9b:a0:95:b4:bb:90:b8:55:
e7:85:8a:e6:8a:3a:fa:3b:36:b7:70:a4:bd:48:f3:d0:46:77:
03:84:1c:84:dc:81:29:6a:38:ac:3e:27:37:81:98:ed:22:1f:
98:c8:35:ee:07:0e:37:18:e3:6e:9e:31:7e:70:54:4b:18:9d:
b6:04:b5:70:d1:48:e4:60:e9:6e:fe:97:08:2e:4f:b3:28:38:
72:c9:19:00:4d:00:29:bd:f6:d5:2e:25:86:8e:bf:12:38:6d:
e6:51:85:c4:8f:5b:ee:b0:6e:c2:2e:b3:19:a3:ea:49:15:de:
4c:50:ff:6e:41:be:30:c2:ee:3e:fd:cc:fe:2b:c0:ae:b3:2b:
f6:3e:22:bf:6a:51:fc:12:f9:d2:36:5f:02:aa:85:b9:fd:8c:
c6:1b:5d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:55:58 2025 by rpki-client