Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8ec112a-1a95-4219-8fa1-d54ea3905809.roa
File: c8ec112a-1a95-4219-8fa1-d54ea3905809.roa (raw, json)
Hash identifier: RA9YOe213ilInYghm42Y3eudJoHOWK6PWFzgGk3p1Q8=
Subject key identifier: 35:F0:49:1E:15:5F:D1:11:74:C0:D4:46:98:B4:AF:79:87:5E:95:94
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 09E46057C5DE3700CC64CD652E1C04BEDBB50D79
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8ec112a-1a95-4219-8fa1-d54ea3905809.roa
Signing time: Sat 18 Oct 2025 02:31:11 +0000
ROA not before: Sat 18 Oct 2025 02:31:11 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.8.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:e4:60:57:c5:de:37:00:cc:64:cd:65:2e:1c:04:be:db:b5:0d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 02:31:11 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=af4e0eabc1314d87cb67221ff93a83c0d80d05f4460d384293d7e4f09a7485cc, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a2:6a:54:a9:77:a5:df:92:7d:63:ca:39:f3:
22:a0:a2:9e:bb:5e:0c:bb:9b:d9:ef:ba:2d:0a:37:
32:17:7f:c7:71:d3:80:fb:60:f8:db:83:31:de:d9:
7d:72:c0:ae:19:19:0b:0c:92:38:12:f5:50:f4:a5:
9c:82:51:b8:18:e6:aa:d8:af:09:b8:4d:77:9c:8b:
48:01:ea:fb:20:73:8a:2f:fa:18:35:f5:09:7c:6a:
20:59:26:a2:e1:60:8d:c4:66:33:ce:aa:61:68:1c:
84:86:9b:15:b4:db:4f:b7:a0:af:9b:69:d1:14:9c:
26:af:d6:ae:df:da:52:3c:21:8d:3c:66:e8:c5:11:
ed:e4:14:5e:aa:98:2b:82:29:73:1f:e2:8f:5c:b6:
00:7f:71:1e:af:b3:4f:3c:b7:a5:d8:d1:18:38:e7:
2c:1b:8e:67:57:60:bb:26:88:d4:93:58:b4:0f:d6:
61:4f:eb:ab:5b:bb:a7:10:1d:99:9b:91:a3:ef:03:
6e:34:eb:cd:30:bc:6c:79:a9:5a:da:6a:24:ed:e6:
18:8e:2a:6c:1f:7d:d5:c4:53:28:36:87:b0:95:b0:
52:15:3d:49:bc:32:82:02:e9:87:7c:53:b2:98:e5:
8a:ac:12:aa:0e:55:71:14:d0:b0:4b:42:04:c7:f2:
7c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F0:49:1E:15:5F:D1:11:74:C0:D4:46:98:B4:AF:79:87:5E:95:94
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8ec112a-1a95-4219-8fa1-d54ea3905809.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.8.9.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:7e:a8:94:08:c6:46:99:5e:22:c5:e7:ba:4e:c1:4d:1c:3f:
6c:1b:e0:a0:2f:51:7a:37:a6:fb:21:e8:7a:aa:2a:d3:e7:df:
e7:0f:dd:d3:bb:e9:85:fc:ac:d2:c8:cb:65:c0:b9:91:ff:ab:
77:21:84:98:e4:7b:48:f1:63:2f:2c:7e:5c:f1:4d:e0:5c:1d:
62:f8:4b:70:90:b7:34:ff:ad:39:35:ad:64:6f:66:27:b5:41:
30:be:19:64:1c:19:2a:cd:80:f2:06:df:89:68:e0:43:45:6c:
98:ea:e3:8e:46:d2:7e:a3:73:dd:4c:86:c4:86:af:3e:e9:33:
12:9d:44:18:4d:cf:95:5c:f4:38:d7:7a:ad:7a:bf:01:b1:7a:
27:ca:fa:d3:ab:85:1d:c0:8d:9a:a9:64:cb:07:19:57:8e:ec:
2f:2e:06:13:be:49:81:36:46:e6:50:47:26:cd:63:64:22:b0:
16:8c:32:46:4a:af:a3:d7:55:5c:a6:56:c6:c2:89:01:90:4e:
7d:10:5a:2e:58:99:4b:fa:e9:b0:e2:73:86:ea:be:6d:8d:23:
48:aa:2e:6d:10:cf:10:6c:40:de:7c:e4:7d:27:55:06:5e:3e:
57:7f:52:80:79:b1:b6:5d:5b:81:b1:1a:1c:f6:8c:2a:07:0e:
59:63:2c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:11:07 2025 by rpki-client