Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c7c37e-fdc7-46c9-b004-05f7efea867a.roa
File: d3c7c37e-fdc7-46c9-b004-05f7efea867a.roa (raw, json)
Hash identifier: c3VMQGEvsT9X5zcIz53PTPH/LvaM4VKbi+OcHr4yv8o=
Subject key identifier: 27:CA:00:24:86:08:CF:98:1A:DF:CF:D0:9B:96:4F:AD:8C:93:15:81
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4A34FF1D7D8DBCADCF46696635D8EAED4647AF2E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c7c37e-fdc7-46c9-b004-05f7efea867a.roa
Signing time: Wed 01 Oct 2025 00:41:58 +0000
ROA not before: Wed 01 Oct 2025 00:41:58 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 64.252.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:34:ff:1d:7d:8d:bc:ad:cf:46:69:66:35:d8:ea:ed:46:47:af:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:41:58 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=d5fbc13a50fe5a31038883faf70542572437cc168e30d5a41aaef399a8b6a317, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:68:59:e7:db:9e:03:7a:2c:18:f7:ac:f5:75:
75:a9:29:e4:3f:15:52:77:ef:a7:60:d6:32:a4:f2:
d5:9d:6f:42:dc:78:23:f5:53:2e:f8:fe:2e:c8:b5:
ff:cc:25:c8:33:c6:80:ab:25:4a:15:f3:8e:5e:f3:
3a:ba:43:bb:b6:92:ad:53:c2:5b:78:e9:99:3f:d6:
12:f6:a6:cb:84:e8:19:dd:96:c0:a4:d6:d9:d0:e7:
5f:f0:44:7f:21:cc:aa:31:a1:84:15:5c:7a:74:3a:
0e:08:d1:13:f1:82:c6:83:06:c8:9b:c3:4e:f0:41:
d7:4f:4e:1b:a1:0a:5d:6f:ed:9d:d9:31:c2:57:93:
1f:8d:11:70:6c:65:ea:04:28:e6:42:a8:9e:90:c0:
45:cd:c6:fd:66:ce:ac:86:50:d6:82:e6:9b:61:54:
ff:07:76:1f:e0:29:23:7f:b7:12:62:79:99:99:67:
f9:24:ab:5e:a7:67:c6:bd:2a:88:8d:59:28:6d:80:
9a:17:a4:bd:fe:05:d5:21:e0:c8:fb:0a:36:7d:32:
51:ff:24:6f:21:7a:e3:34:1f:4a:a9:c3:7f:03:08:
a1:67:7a:c8:00:af:39:b2:2c:41:01:b0:e8:a3:bb:
17:09:22:01:6f:83:a4:5a:6f:60:b1:7b:3f:20:ef:
ac:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CA:00:24:86:08:CF:98:1A:DF:CF:D0:9B:96:4F:AD:8C:93:15:81
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c7c37e-fdc7-46c9-b004-05f7efea867a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.252.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:3c:22:e7:ff:48:d6:fb:c0:8f:0d:c2:5e:81:2a:95:9c:22:
d3:03:88:ec:04:1b:45:04:93:6e:ea:3a:63:78:a2:7b:97:fe:
54:8d:2e:65:59:c1:46:45:e6:d7:d7:4f:66:00:2e:de:99:b1:
76:e8:50:c0:2e:f1:ea:ee:f6:85:69:62:23:e8:50:71:aa:0f:
94:71:b1:9b:85:7e:9e:6a:41:ac:c9:6e:89:db:08:51:4d:e0:
26:00:49:5f:00:ee:25:2a:45:03:8b:30:d6:d6:65:87:d9:e6:
5b:aa:cb:8f:5d:75:e4:7e:8a:e3:bf:5f:80:d2:a2:69:78:a6:
2f:d6:d2:e2:19:18:a9:f4:61:6c:ee:04:3d:f4:26:7d:54:ec:
cc:97:f6:49:1e:9d:09:62:46:e8:8d:25:84:9a:ca:62:b4:ba:
dd:87:09:a9:0a:c4:c4:f7:76:d3:17:c4:bf:01:6c:31:80:d0:
e6:eb:42:7b:bb:8f:2b:30:3e:40:c6:0e:56:0d:53:4f:b9:9a:
16:7d:7b:80:11:fb:36:2b:da:68:f8:0c:76:87:41:78:f4:e1:
6d:fc:94:b3:ec:0e:c0:dd:cd:39:72:7b:3c:07:40:51:f4:8c:
e9:70:17:82:68:ee:4f:f2:01:4d:0e:05:d5:ff:5b:34:69:07:
97:9f:f8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:44:11 2025 by rpki-client