Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa
File: e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa (raw, json)
Hash identifier: gHPZ/ZWwrJHbj15sQAnpJh07sO/ffOD6PkvcNh/r/3c=
Subject key identifier: DE:32:CA:E4:EA:FF:C3:AF:82:CF:65:9F:FB:11:79:81:7A:25:F8:E9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 794D8DEE666C6FB7027BD3AA1168490E544B4B1F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa
Signing time: Sat 04 Oct 2025 00:51:53 +0000
ROA not before: Sat 04 Oct 2025 00:51:53 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 64.252.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:4d:8d:ee:66:6c:6f:b7:02:7b:d3:aa:11:68:49:0e:54:4b:4b:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:51:53 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=b059628ba18ccd36ff2b6aa8947256ef511e8e2d45d3decd714458d25fecc3b7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:27:f3:40:a6:b0:c8:fa:d2:95:dc:6f:7d:
d2:8e:10:a0:32:81:e2:ad:35:07:f5:f5:5f:bf:89:
d6:09:51:8c:19:32:3f:c6:64:e2:77:5b:b6:a1:e8:
9c:40:f4:e4:58:1b:58:72:b1:f8:1a:50:8f:3a:70:
ee:2b:e0:a6:87:d7:1a:ce:58:13:77:45:0b:a7:1e:
ba:1e:29:bd:f4:08:52:d4:6b:6e:bc:2d:c9:0d:d1:
05:ac:86:18:10:03:e9:a3:84:b4:7f:ae:8e:11:f9:
87:30:84:0e:25:82:42:45:f6:f4:f2:a7:d0:cb:66:
19:26:73:d0:48:b8:99:7a:01:75:fc:06:c4:7d:f0:
b9:b8:04:ac:47:81:8c:81:6c:cf:23:37:b6:69:21:
fa:fd:07:33:9a:d0:2d:3f:e2:c5:79:03:b3:af:01:
25:d6:25:a9:53:b5:d4:7b:1f:29:34:49:f5:74:4f:
97:4b:9b:a9:68:a8:2e:2b:ee:46:43:a7:53:67:ec:
32:26:38:35:85:19:4a:82:ad:fb:47:33:5f:c0:43:
11:ae:d0:83:e8:5c:33:8d:93:51:41:23:72:a9:b5:
3a:1a:56:06:c6:a0:31:fe:85:2f:a5:c5:52:a0:76:
6f:be:02:af:de:19:f5:c8:c0:09:65:72:40:5d:7e:
19:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:32:CA:E4:EA:FF:C3:AF:82:CF:65:9F:FB:11:79:81:7A:25:F8:E9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.252.125.0/24
Signature Algorithm: sha256WithRSAEncryption
25:0f:65:e9:46:5a:f3:c5:67:bc:ad:db:6f:9c:ff:26:11:53:
19:41:a6:b8:3f:4a:76:db:71:82:9d:b5:b8:4c:f4:e7:f4:e6:
fb:e3:52:44:88:4b:57:37:b5:62:e3:25:38:93:8a:0d:da:73:
29:50:dd:b7:3f:53:00:59:78:3b:f3:23:13:07:0b:ca:1b:76:
78:16:c5:45:47:c8:76:71:65:a0:1a:ad:74:60:6b:57:73:a5:
24:e1:76:da:d2:6e:67:81:7d:a7:d9:e0:b4:f3:6a:c1:a7:6e:
3d:f2:3d:f1:bc:49:73:aa:f0:04:11:98:99:72:12:e8:9e:9c:
f2:ee:60:9d:63:52:16:8c:00:c8:3b:b9:84:40:5b:53:e7:06:
69:c5:fd:90:62:52:46:bc:c5:18:c2:5d:db:2c:35:80:89:c8:
3b:fc:89:51:53:13:8c:46:4c:18:93:1f:5a:72:8a:47:9b:c5:
20:c3:f2:5d:03:6c:dc:c7:32:8a:12:be:38:23:68:9c:8c:25:
1e:0b:24:84:f0:78:ee:bd:9c:11:7b:6f:02:59:ce:6d:88:fe:
da:47:6d:cb:3f:b9:59:08:e3:dd:7e:7c:99:9f:aa:11:08:e1:
13:6c:24:96:14:0f:24:6f:a9:be:c6:4e:8d:3a:b1:f7:35:81:
82:ee:58:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:15:31 2025 by rpki-client