Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e790948-9518-4339-b7cd-f658d299179b.roa
File: 6e790948-9518-4339-b7cd-f658d299179b.roa (raw, json)
Hash identifier: 48/d2z7mcz2D5KideJLmMOHSgcvUlAECoIlZ0PwNXQA=
Subject key identifier: D0:02:4A:71:6F:B8:1A:29:EE:B9:2C:59:06:39:DD:BE:B2:9A:95:DE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6E6496C5B67A9DB3535F2B61D2A4804F8BB7D812
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e790948-9518-4339-b7cd-f658d299179b.roa
Signing time: Thu 13 Nov 2025 00:21:29 +0000
ROA not before: Thu 13 Nov 2025 00:21:29 +0000
ROA not after: Thu 18 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.136.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:64:96:c5:b6:7a:9d:b3:53:5f:2b:61:d2:a4:80:4f:8b:b7:d8:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 13 00:21:29 2025 GMT
Not After : Dec 18 23:59:59 2025 GMT
Subject: serialNumber=8a833797a7977a1dd9ac3fd45b8b17e843af50b66e69a7c422ddea01507979e3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b7:e1:20:3a:09:0b:e7:68:65:d4:3e:9f:e4:
af:06:d8:80:f5:c6:bd:36:eb:61:53:bd:f9:2d:77:
0b:57:a1:a2:f4:ec:55:f3:33:46:72:d9:98:9b:9f:
c4:16:a6:e9:b4:19:db:39:c4:95:45:59:c5:d8:7e:
b2:1d:9a:b1:86:46:43:ee:b9:9b:99:17:32:7f:f2:
13:97:cf:ff:7d:30:0f:89:7e:0a:f8:22:68:58:bd:
29:76:62:4e:88:cf:79:5f:71:32:6c:89:8d:31:09:
b0:eb:45:d9:c9:e4:74:7f:23:7d:91:0a:8d:9b:a2:
d1:8a:62:32:eb:d1:de:09:e7:25:ab:fe:d1:98:de:
52:d4:da:e3:27:0d:73:b5:48:9f:e0:86:f9:b9:52:
b1:de:12:16:8e:af:88:8b:2f:90:1c:45:dc:14:e0:
03:b4:5b:21:5f:38:63:ae:7f:e5:26:d1:33:2c:2f:
0e:52:5d:74:44:ec:a5:0a:f4:b6:36:2e:cc:33:0b:
bc:74:6e:41:c0:ed:df:6b:95:17:2e:e4:7e:51:1b:
34:a1:d5:3d:0d:34:f0:18:6d:d0:7d:8f:35:f1:fe:
65:c3:46:76:fa:0f:79:3f:2c:54:6a:24:30:e4:2a:
e8:f7:c3:78:9f:6e:8a:73:d5:ac:bc:6a:73:e2:11:
1e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:02:4A:71:6F:B8:1A:29:EE:B9:2C:59:06:39:DD:BE:B2:9A:95:DE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e790948-9518-4339-b7cd-f658d299179b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.136.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:bb:02:71:ae:fc:d5:78:2f:da:d5:0f:3f:79:4e:61:2e:d2:
67:98:cb:51:5f:d5:b2:af:ee:a8:32:dc:5b:02:df:8c:fe:da:
e6:e1:46:bd:bf:e5:92:4d:54:ff:a7:66:81:c0:dd:70:b1:91:
31:2f:1a:0d:86:1a:50:d8:12:fa:8e:34:64:0d:7c:ae:3f:3c:
37:00:5c:23:fe:22:64:0f:ff:9b:4c:65:18:e9:46:e8:d4:eb:
aa:3a:0f:dd:15:96:c3:7e:9b:c1:8d:f4:e1:a0:a4:44:0f:ec:
b8:59:9f:a2:99:3c:4b:2d:b2:4f:d0:12:e5:c5:b5:11:ca:77:
d8:f5:cf:b4:3c:dd:49:28:a3:d4:c4:4c:93:0c:de:2a:91:63:
80:6c:69:96:6f:6d:09:da:3c:80:a3:ad:ec:0f:89:0d:39:10:
4d:56:7e:eb:66:dd:41:e5:71:e2:9e:e4:25:6a:40:dc:b4:ac:
c6:bf:65:1a:e5:77:ca:29:bf:00:87:a9:7f:1c:1f:b8:09:1a:
f3:32:9f:9b:20:53:10:cd:be:5b:ff:22:8c:c9:a0:ab:24:99:
fc:2a:8a:dd:14:1a:4c:b2:73:63:f1:09:3f:b9:b5:59:8a:a8:
7e:08:36:99:34:ea:d4:6b:26:00:57:e5:d4:c4:d4:02:10:39:
72:f8:6a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 15 10:42:37 2025 by rpki-client