Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8854f7ca-e0f6-48cc-9e77-8916afc163d5.roa
File: 8854f7ca-e0f6-48cc-9e77-8916afc163d5.roa (raw, json)
Hash identifier: xjZmzXrHc2qEMOir7co+e/LgVcpIRDMUT5Ws8numnfA=
Subject key identifier: 55:72:05:56:B9:7D:CE:2B:44:C4:ED:A0:5B:C5:BC:58:F0:3D:0A:43
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0770954179285E7BA2B6E243B4683C817ACA520C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8854f7ca-e0f6-48cc-9e77-8916afc163d5.roa
Signing time: Tue 30 Sep 2025 00:22:08 +0000
ROA not before: Tue 30 Sep 2025 00:22:08 +0000
ROA not after: Tue 04 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 20.129.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:70:95:41:79:28:5e:7b:a2:b6:e2:43:b4:68:3c:81:7a:ca:52:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 30 00:22:08 2025 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: serialNumber=137e9a8c6591cc3d0050ba50eb2a82a74a428433f46955bf32a4b3e6d2cd0a46, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:de:62:39:5c:5e:ad:f1:c0:22:e3:0a:12:ae:
ff:58:af:56:e4:f2:79:38:89:a2:ba:f4:fe:a6:e8:
69:e3:d3:61:02:d6:1b:10:ca:81:21:2c:79:d7:22:
ea:2d:fd:ea:ef:95:42:17:47:d4:a6:b2:43:1d:72:
c1:04:66:5a:16:e6:c9:1b:53:bb:88:d9:af:6b:93:
36:b6:63:c6:34:e0:5b:68:c5:75:df:7a:1e:e1:e2:
27:89:f0:78:6b:c7:3b:3c:eb:54:0e:d2:57:d0:cb:
ec:67:a8:e9:11:b8:02:4a:a3:93:19:d9:57:96:1a:
39:59:c9:82:4d:ad:a5:be:b3:ff:11:d6:9b:d7:80:
c5:2f:ec:48:06:28:39:07:a3:f9:69:8c:25:4b:5b:
ce:2f:1b:12:c9:70:78:77:d8:f0:cb:18:8a:2e:c6:
96:34:be:76:6f:8c:09:bd:a6:32:19:8d:05:ab:f5:
05:75:9a:e2:10:e8:d8:16:da:7e:e7:28:d6:59:3d:
83:7b:a6:f8:fb:f6:65:fd:2a:0b:0b:73:c7:2b:a1:
84:f5:46:f5:bb:ed:aa:8f:e4:0f:cb:b0:1b:1f:0b:
43:1d:c4:df:21:05:21:43:1e:26:5c:9a:70:1f:61:
48:d8:df:ca:5d:29:35:0c:c0:d8:0d:ae:46:a9:94:
8b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:72:05:56:B9:7D:CE:2B:44:C4:ED:A0:5B:C5:BC:58:F0:3D:0A:43
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8854f7ca-e0f6-48cc-9e77-8916afc163d5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
20.129.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c7:2f:6a:ee:22:bf:0b:2c:9f:58:42:8c:4b:cb:a5:82:40:94:
20:dd:ac:73:cc:08:54:2f:2d:44:f5:69:30:89:58:72:5f:f8:
86:04:18:da:0c:7f:82:2e:2c:da:6c:11:f1:f7:33:3a:30:cb:
85:a5:10:27:23:63:42:76:ba:15:9f:87:cd:5a:d6:52:35:fe:
ac:48:a3:a7:52:f6:a3:11:c0:65:ac:08:85:eb:f9:03:a5:5d:
b5:90:f0:b9:f5:52:58:43:19:1c:2b:7b:24:1f:02:a4:38:9d:
6a:52:8e:46:a2:f9:f4:bf:6a:ef:2d:5a:72:6a:79:e2:65:04:
ff:73:36:9f:d9:16:c2:bd:16:b6:b6:af:5d:56:e0:b5:67:12:
be:d8:48:e7:68:53:85:97:7b:20:67:cb:8c:3e:16:34:49:07:
77:63:89:72:d3:70:85:2a:e4:18:b9:e4:fc:aa:58:ad:48:e8:
36:0e:df:14:9c:7b:69:7e:24:16:c0:33:56:e2:03:de:2f:a1:
e3:d2:a5:13:98:b8:44:8a:b5:6b:00:70:b7:06:ad:64:1d:a6:
30:54:fd:1b:63:f9:dd:b9:8c:ce:ac:49:1b:47:fa:88:fe:bb:
4d:ba:73:39:13:41:d3:12:b5:7b:55:44:e2:cc:fa:61:66:c2:
95:4e:b5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:34:56 2025 by rpki-client