Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa
File: 034c3528-4b36-4ade-a86b-759701bbc55c.roa (raw, json)
Hash identifier: J4fpnw+dx2gaNdcyuPOnm4rD7+EoT7wXW2TPIlzeU1c=
Subject key identifier: C0:B2:1F:7C:B7:64:99:08:EA:0C:C2:FA:57:9C:8B:C6:A3:B0:B6:C5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3C98923B8DBCB48A16B539C5F473E74F3C6F9B2F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa
Signing time: Wed 12 Nov 2025 01:50:53 +0000
ROA not before: Wed 12 Nov 2025 01:50:53 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 23.23.80.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:98:92:3b:8d:bc:b4:8a:16:b5:39:c5:f4:73:e7:4f:3c:6f:9b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 01:50:53 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=ca410840c6b1af23a22ed9f8d744d1bf7293673ecd782f04b564d23bfb700407, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c9:41:d4:2e:d5:f2:a2:8a:70:ff:63:8e:ff:
bf:63:42:51:15:34:87:d7:d1:c2:ff:9f:41:60:c3:
02:ee:f7:fb:8a:aa:91:72:75:f1:ef:56:a2:fb:7b:
cc:ce:8f:99:2d:3c:b5:aa:f2:43:2e:b3:e0:98:ab:
52:97:84:b1:87:d7:7b:5f:71:84:ae:06:ef:ab:f5:
a2:43:bd:bb:38:20:d2:17:6f:e4:1d:a1:e5:18:09:
f3:5d:1a:66:d5:cf:b2:ac:af:15:85:df:25:23:ec:
1b:1b:88:5b:dc:cb:86:70:85:02:84:b9:b7:57:6a:
b6:c1:d7:87:76:33:03:41:43:07:95:cf:e8:3a:9a:
c1:30:42:c5:85:b3:41:31:a6:e8:45:8f:89:de:ba:
9f:f7:d1:ba:be:50:bb:55:44:af:bf:6e:b0:4e:e3:
e8:cf:15:dc:22:9f:97:1c:da:69:18:c2:ce:06:e2:
ea:ec:32:61:53:78:2b:65:96:0c:7b:8a:22:1c:df:
08:48:1d:1f:26:c2:22:d9:1d:c5:53:d8:b4:5c:41:
4d:68:eb:6f:b8:27:f0:01:8e:a3:ee:8e:80:55:e3:
a0:d5:17:f6:ad:20:41:0a:0a:86:e8:e9:16:fe:37:
78:82:b0:1e:79:c8:38:78:2d:c2:de:aa:71:4d:15:
a4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B2:1F:7C:B7:64:99:08:EA:0C:C2:FA:57:9C:8B:C6:A3:B0:B6:C5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.23.80.0/20
Signature Algorithm: sha256WithRSAEncryption
9b:ed:fe:78:fd:f6:e0:8b:44:ae:63:b8:2a:32:7e:09:95:20:
97:d4:4d:32:fb:8d:10:eb:0f:a8:05:ef:35:0e:12:b8:e7:d7:
46:ff:5d:15:a8:57:3b:db:1b:c6:67:45:46:a5:f5:57:28:54:
70:d0:67:6c:e8:0a:71:0c:b2:a1:6a:42:fa:8d:55:d5:06:c4:
33:f2:ea:54:d0:2e:a3:28:44:ac:6d:fe:2c:ea:2d:c8:ec:0e:
0f:bb:a9:42:de:37:3a:f3:12:57:62:e2:25:ea:56:6a:c2:39:
ad:26:00:32:e4:c6:78:34:c3:79:68:51:2e:44:a5:2d:4b:82:
99:0c:0b:73:00:97:5b:a8:ca:63:df:0f:a7:c1:c5:fc:6d:f1:
c6:7f:a3:99:91:60:46:0a:48:0b:1b:8c:e5:1b:78:6f:91:32:
99:27:66:3c:10:f2:d5:eb:b6:71:05:9e:2b:7d:1f:6b:c2:92:
f2:df:00:77:31:65:9b:92:1e:bf:e5:bf:2a:1b:39:53:d4:c5:
32:f6:b3:6f:d9:da:0f:d4:2c:77:c7:7b:61:f8:d3:58:a3:90:
ee:06:f5:de:aa:0c:7c:03:e1:7a:94:5c:37:af:06:5e:58:5a:
49:4a:76:98:83:c8:37:15:dd:36:a2:10:a2:ce:e5:99:11:d8:
94:7c:0e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:52:32 2025 by rpki-client