Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9fd639c-d4db-47b2-9abb-f75b4bd8aa30.roa
File: d9fd639c-d4db-47b2-9abb-f75b4bd8aa30.roa (raw, json)
Hash identifier: yqv9fFkZHcB/pfoWWOL4hWt+xliEjPVNOBble3EOoQQ=
Subject key identifier: 3A:4A:E0:48:E6:D5:E9:03:52:2C:C6:55:55:4E:33:4F:02:DA:19:5C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 665E3C813D940D5EC0B51687D48B71FCA5C061F0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9fd639c-d4db-47b2-9abb-f75b4bd8aa30.roa
Signing time: Sat 18 Oct 2025 01:11:44 +0000
ROA not before: Sat 18 Oct 2025 01:11:44 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.9.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:5e:3c:81:3d:94:0d:5e:c0:b5:16:87:d4:8b:71:fc:a5:c0:61:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 01:11:44 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=1b14aec579ce1e53ca003102d72901a89f041066a225255f46c3ca0f64694106, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:7a:b8:a6:27:d1:38:27:95:56:b1:2b:09:
17:31:8f:0d:57:cf:ac:11:54:12:94:22:48:9c:89:
a3:22:06:bb:5e:72:07:8e:a5:3c:d3:e1:fc:ba:f5:
24:ae:81:90:0c:99:fc:12:a5:1b:6d:88:22:e5:cb:
66:af:6a:48:70:0e:ab:09:1e:9e:e3:62:4d:15:37:
9c:e1:6b:52:1d:51:4e:da:3e:11:d3:6d:71:e2:d6:
4e:f3:7b:fa:50:22:ad:ca:11:32:59:eb:84:ee:98:
15:f7:17:36:2f:c9:3f:0c:81:8e:c4:97:85:2a:75:
54:46:0a:23:2b:6d:ef:4d:87:6a:43:39:ae:a0:f6:
cb:31:90:44:1d:af:58:3b:c0:a8:8f:fc:bc:1b:e1:
dc:26:d5:6d:f7:5c:ab:0c:cc:99:63:e6:7f:4a:db:
fa:72:72:2a:be:c3:d6:17:72:c9:21:fe:f4:6b:00:
0e:59:55:26:ec:e7:54:f8:f9:a4:7f:4f:7d:37:0e:
b3:12:15:ac:b7:fa:8a:dd:ef:f9:5c:2b:3d:44:76:
20:23:dc:d0:76:bd:8f:aa:46:06:83:44:c8:93:3b:
8d:6f:3f:ea:91:df:79:9e:7c:da:83:7b:7a:42:cd:
ab:0d:02:3c:c8:65:18:23:fc:13:08:af:84:68:cd:
6e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4A:E0:48:E6:D5:E9:03:52:2C:C6:55:55:4E:33:4F:02:DA:19:5C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9fd639c-d4db-47b2-9abb-f75b4bd8aa30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.9.159.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:38:c2:08:3e:bf:11:de:1a:00:65:54:a9:b2:b6:b4:33:fd:
ed:8e:f3:16:ae:94:ce:25:b2:90:db:b8:ec:d5:e9:90:ab:b1:
cf:06:17:4d:8d:b2:74:0b:56:22:2f:0e:c8:c2:88:7c:0a:54:
ce:ed:6a:46:24:cf:17:14:90:f1:71:57:9b:82:b4:a5:9d:23:
01:7c:e9:c0:e7:ce:e7:a8:82:14:21:90:a1:08:94:74:72:9e:
99:a6:a2:c5:37:9f:2b:3b:11:06:1b:87:14:09:73:3e:d1:2d:
75:55:7e:20:11:8d:38:c5:30:af:b5:e8:a7:ce:a5:eb:ba:b3:
46:9e:99:ad:79:e0:a3:60:e1:ca:9e:a5:cc:9d:39:4d:40:6a:
22:56:09:e3:bd:77:72:cb:13:66:7f:81:31:03:b1:c8:2f:99:
1c:4e:97:7e:88:96:d4:2f:fd:92:bc:af:2e:62:12:7a:58:42:
5c:45:1f:d2:93:a6:2d:0d:1c:9b:ee:0f:f7:f5:d8:d1:80:cc:
b7:c5:d2:ac:92:c9:93:4f:9c:76:9f:7d:0e:7b:52:ed:3e:d1:
1c:63:23:86:6f:e5:c1:dd:57:58:29:ba:41:af:4b:f7:71:dd:
87:29:a0:8d:66:51:60:53:09:e3:16:19:df:20:3e:4e:15:68:
66:75:d3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:26:24 2025 by rpki-client