Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e790948-9518-4339-b7cd-f658d299179b.roa
File: 6e790948-9518-4339-b7cd-f658d299179b.roa (raw, json)
Hash identifier: MszfY6kmcrr6jTTeWA1hdeUPlvNwjSTm64v3UainSQ8=
Subject key identifier: 36:23:64:DD:A3:68:A8:CF:EC:6B:86:10:7E:9E:73:CC:8F:7A:9C:2F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5339A1B54A428D5AF0014A356370903A07C13676
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e790948-9518-4339-b7cd-f658d299179b.roa
Signing time: Sun 19 Oct 2025 01:01:37 +0000
ROA not before: Sun 19 Oct 2025 01:01:37 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.136.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:39:a1:b5:4a:42:8d:5a:f0:01:4a:35:63:70:90:3a:07:c1:36:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 01:01:37 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=3da4f0b1a9043b9abcb245f6880ca72595b0d480857b1c7f4bd1d7023fcb88e3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:66:89:9f:d0:22:25:58:7c:f7:d5:38:e3:62:
cd:47:c4:c6:e5:99:23:5a:e6:b5:04:c9:b8:02:dd:
7b:7f:03:39:0d:54:69:7b:65:47:77:e8:1a:1c:39:
4e:1a:d7:87:a1:0c:1b:3c:8d:f9:eb:98:c8:96:3a:
90:ce:54:f4:5c:a9:db:ea:5e:d7:79:ae:d6:63:40:
2b:cc:37:66:9c:0c:e3:9a:7c:3c:d6:41:61:24:26:
50:7b:63:a0:42:6c:fe:2c:89:42:d1:7f:cc:71:1a:
b5:ed:2d:1f:7b:e9:50:ce:cf:ac:cc:19:51:2f:ed:
d9:41:af:28:85:54:86:b1:5b:3a:b3:36:b5:26:65:
bc:cd:2e:62:71:d0:88:4a:ca:35:ad:e5:7f:e7:8b:
95:9e:58:13:26:56:8b:4c:bd:2f:58:6d:d7:43:a9:
8c:a2:1d:b7:68:c0:25:06:4b:2b:e6:fe:86:5f:c5:
80:a2:5a:ce:16:3f:06:1b:33:b5:ea:72:ee:9e:1c:
7d:72:79:65:a0:36:bf:01:9e:74:77:86:da:71:f1:
f6:6a:c1:e1:c0:af:20:a0:d5:c9:d7:42:a7:a2:51:
7a:5e:8a:1d:06:8d:ad:88:02:a3:d9:e2:d1:11:e2:
05:05:c2:a1:8a:83:68:2a:1b:2f:2f:cc:e0:5d:bc:
6f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:23:64:DD:A3:68:A8:CF:EC:6B:86:10:7E:9E:73:CC:8F:7A:9C:2F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e790948-9518-4339-b7cd-f658d299179b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.136.0.0/16
Signature Algorithm: sha256WithRSAEncryption
29:55:2f:6c:3b:e4:8b:92:cf:a3:9a:07:37:34:8b:b9:a3:4a:
e7:c2:1a:dc:05:ef:22:b8:a6:67:db:f4:79:21:e2:5a:f0:79:
1a:8d:5d:c7:c3:37:fe:1f:1c:96:77:2a:b3:ba:a8:d6:9d:92:
c0:50:1d:9e:65:d3:fb:89:88:7f:9b:6d:44:84:d0:a6:23:66:
5b:6b:4d:09:81:ff:6d:91:0a:01:3b:b1:44:d0:a9:24:b5:b8:
96:f9:d5:24:96:28:83:d3:75:35:09:0e:ad:34:c7:ed:06:3b:
6a:b0:cc:2f:38:87:50:55:eb:c2:e3:98:24:84:45:ff:77:0f:
1f:95:5a:5a:2b:e7:97:06:cd:c3:fe:e5:bd:54:b1:40:49:aa:
99:0c:e0:fc:a6:f6:a8:a7:f7:11:0f:de:56:23:41:a6:0c:6b:
71:a2:36:6b:29:ea:d1:0c:17:58:46:94:e7:35:94:7e:96:e3:
9a:88:6c:d8:4a:82:02:e2:91:0e:f9:93:01:ad:b8:01:c7:3e:
e8:5f:8c:f1:39:7d:53:e1:43:c9:3e:65:3d:08:eb:5d:d8:26:
13:1e:db:33:10:37:a3:9f:68:ce:89:7d:08:a5:46:c7:b2:7e:
21:61:32:c3:95:4c:17:cd:00:8f:7b:ab:d3:05:0d:82:1c:24:
75:6a:53:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 05:29:09 2025 by rpki-client