Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa
File: 2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa (raw, json)
Hash identifier: PXAuDqOqbDr81cmw1zFBpUEb8s6crmSS3hGx0MTrhlw=
Subject key identifier: D1:6C:5D:CC:1C:28:FC:B9:34:16:02:D7:30:1F:D1:28:C2:37:A7:9A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 37BCCCA38BEDBB1FFE7585820DF96A3B71F16AD1
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa
Signing time: Wed 12 Nov 2025 00:10:06 +0000
ROA not before: Wed 12 Nov 2025 00:10:06 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 198.13.0.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:bc:cc:a3:8b:ed:bb:1f:fe:75:85:82:0d:f9:6a:3b:71:f1:6a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 00:10:06 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=1be4ee01181170926e7ddec7a8a101054b606742fe17f0be4bcd7e0581b65d47, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:af:8d:02:a2:86:a0:cc:63:50:7d:13:5f:65:
ad:44:6d:d2:4a:62:b3:d8:1c:c7:93:d5:1e:de:62:
0c:55:d8:7c:fd:74:3e:93:1a:82:c9:39:12:42:89:
31:c0:0e:36:72:c8:e1:ec:10:e5:d6:83:b1:07:0b:
b7:d3:4d:3a:d3:36:79:44:21:00:48:5f:3d:b9:10:
b8:43:88:f7:3c:08:f7:ba:a5:c8:d2:12:e3:97:89:
3d:f5:6e:b8:ad:05:e7:b8:06:80:63:0d:0f:50:59:
71:ec:58:62:69:05:e1:34:ad:fc:74:7c:22:60:81:
14:81:b5:3f:ed:69:7b:49:5e:83:9e:9c:8c:8e:64:
8e:43:ec:bb:22:33:d7:8f:83:e1:f3:4e:78:57:c9:
31:b9:a7:7f:16:a1:0c:91:69:04:78:07:c0:f6:26:
1b:1c:e3:69:32:51:3e:a9:24:18:6a:d1:2c:b9:36:
1e:db:c2:64:28:25:a5:05:02:2e:0a:1c:e6:cc:76:
a0:9d:38:25:3b:f1:3f:95:64:b7:b9:bf:1a:ef:1c:
e1:80:d4:7d:80:72:10:72:71:3f:78:5f:6d:78:bf:
33:5f:e3:a4:05:9f:7d:ac:51:54:28:29:ba:8c:41:
e0:ab:65:be:96:12:f9:94:cc:92:b3:bb:6b:df:28:
18:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6C:5D:CC:1C:28:FC:B9:34:16:02:D7:30:1F:D1:28:C2:37:A7:9A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.13.0.0/20
Signature Algorithm: sha256WithRSAEncryption
44:0e:24:03:11:ca:76:50:7c:b6:31:f4:aa:e9:48:5b:0e:d6:
20:a9:bc:ce:34:da:1e:16:c8:bc:da:bb:68:9e:2e:13:f9:97:
8d:19:ba:96:57:f5:0a:fd:da:d4:7b:1e:49:ac:d3:ab:91:40:
d1:25:11:35:c8:fc:a0:c5:7e:fb:52:35:7a:47:49:9d:b7:93:
1f:3e:19:f0:2d:43:cc:03:4b:af:8e:ca:f8:b6:fd:60:69:4a:
d5:aa:77:27:fd:75:35:ee:35:3c:3a:f0:1d:f6:7a:a5:6a:94:
37:32:87:f9:70:4e:f8:cb:89:1d:01:79:f5:70:db:3a:62:a9:
17:ba:51:bf:85:b1:66:77:a8:23:2e:a8:1c:92:a6:40:62:bb:
18:f6:b5:cc:d1:05:1d:d9:19:94:ca:31:cf:4f:70:8e:3c:82:
a7:34:18:0f:bd:e2:c8:3e:03:2d:70:9f:49:5c:74:91:35:6f:
33:3a:67:7a:6e:94:d2:38:12:49:46:ae:93:37:74:d0:42:98:
3a:f3:52:ec:0b:23:a1:5d:71:5f:20:86:c8:fb:fc:f1:eb:81:
cc:5a:c8:65:70:f5:e6:90:7e:30:fb:95:33:50:58:1d:2f:8c:
0c:88:1c:a6:27:cc:91:0c:fb:56:d0:44:86:11:26:9e:ab:08:
63:f8:c6:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:25 2025 by rpki-client