Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b030d88-5685-46ca-b3be-8ba57658a104.roa
File: 6b030d88-5685-46ca-b3be-8ba57658a104.roa (raw, json)
Hash identifier: 7nnVOApq2LkbVlW5ba439RawqSBdlORmzBDSe4SQyFQ=
Subject key identifier: 91:71:D2:55:F9:9A:29:55:B6:51:45:AA:FA:1A:FF:24:83:85:22:B9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3C0F505240D587621F31AF5742D37C95BB4D8DE3
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b030d88-5685-46ca-b3be-8ba57658a104.roa
Signing time: Sat 18 Oct 2025 02:21:36 +0000
ROA not before: Sat 18 Oct 2025 02:21:36 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.9.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:0f:50:52:40:d5:87:62:1f:31:af:57:42:d3:7c:95:bb:4d:8d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 02:21:36 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=a660e7f9d3e2225ed0545398d614300a5cadfca19c29f5f9def1d79a0e0a3a1f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1c:5d:df:27:2b:e2:b9:f9:09:dc:d1:8b:61:
82:4d:15:76:3b:fa:ca:24:42:2f:e8:ff:6d:e3:b9:
a0:3f:11:ac:78:f8:0c:c1:8d:be:80:ec:27:20:b8:
d5:25:ff:87:cd:22:a5:4f:a8:7d:d9:45:60:37:2e:
ad:e2:4a:d2:43:38:68:8c:50:73:82:ef:26:21:2c:
78:b6:7c:35:dd:54:d8:05:e8:b9:a1:c0:40:8b:62:
a4:c2:5f:a5:99:a5:c1:97:0f:bd:a7:e1:76:fe:21:
f5:5d:93:8c:f2:2b:d9:a7:77:69:0d:ba:dd:21:42:
e2:be:54:5f:1b:e0:a9:01:41:bd:b7:cd:fe:82:11:
a9:b1:c5:57:cd:b8:f9:ff:eb:2f:dc:95:76:3e:f5:
66:c2:d5:e5:46:e2:b6:ff:e5:b8:1e:de:8d:5a:93:
67:1a:98:2b:21:81:c7:2c:24:4e:ed:23:6b:88:a0:
f5:5b:de:c6:8a:79:73:13:d4:17:a2:c0:dd:cc:86:
34:f8:26:58:9f:80:78:39:f9:ef:12:ff:98:5a:13:
4e:d2:e0:4a:6d:dd:dc:50:84:33:c1:69:43:6d:c1:
62:8f:f5:e7:0c:30:9b:2c:4a:cf:e5:49:e9:a2:11:
0f:21:28:15:72:d4:75:b3:62:2c:a2:df:36:da:ab:
20:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:71:D2:55:F9:9A:29:55:B6:51:45:AA:FA:1A:FF:24:83:85:22:B9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b030d88-5685-46ca-b3be-8ba57658a104.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.9.18.0/24
Signature Algorithm: sha256WithRSAEncryption
96:7c:be:25:83:3a:a6:12:de:8b:5a:03:49:af:51:ed:a0:db:
77:18:46:cd:1d:64:e0:b2:6d:65:7c:56:f0:46:19:91:68:7e:
cc:01:60:b7:07:72:c6:4e:4d:c1:12:bf:3a:b1:7c:eb:e0:3b:
a8:5e:65:be:c8:6c:7e:11:fc:a0:e1:f0:61:bc:03:f6:f1:d0:
64:1b:d0:94:5a:98:01:5c:cd:5c:b9:4a:06:68:be:d0:ae:42:
a5:9c:21:4c:76:69:1f:0f:34:f4:17:e1:a4:ac:b8:0a:c1:62:
26:73:29:03:55:31:90:25:0e:68:1b:8c:46:99:7a:19:fa:13:
ab:ca:1c:34:26:a3:61:82:df:34:25:34:55:b0:26:d8:c8:cb:
3e:f4:9a:a8:a7:13:5d:aa:3b:da:83:bf:9e:3e:9d:2a:79:e4:
82:18:55:98:82:29:a9:8a:a9:37:4b:64:08:60:b3:e7:50:b6:
85:84:cf:68:1a:41:ef:7d:5c:3e:c8:21:c3:a2:1b:84:7f:13:
a1:3a:07:13:20:06:7e:00:3c:ac:c3:77:b5:fb:ad:fd:72:c8:
f7:4d:75:6f:50:56:b5:9a:9e:ca:4e:ee:d9:12:90:35:3e:b7:
f7:cc:a8:62:76:78:b1:7e:45:74:87:95:35:a8:86:8e:48:cc:
bc:df:65:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:10:26 2025 by rpki-client