Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/048fb9ae-8241-47de-bfd7-b835fb43f457.roa
File: 048fb9ae-8241-47de-bfd7-b835fb43f457.roa (raw, json)
Hash identifier: SiPkI+GTQLD2UAT9Y3VbAzBgWBGxFx2Z2rqmNAUZeng=
Subject key identifier: 13:7F:4B:90:C3:27:7F:88:D4:DC:3C:02:6D:FE:11:3F:93:3A:C3:B5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0B7F5DDF8B42E615E36A7A49E52F5EC126E90D49
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/048fb9ae-8241-47de-bfd7-b835fb43f457.roa
Signing time: Wed 22 Oct 2025 00:30:18 +0000
ROA not before: Wed 22 Oct 2025 00:30:18 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 40.195.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:7f:5d:df:8b:42:e6:15:e3:6a:7a:49:e5:2f:5e:c1:26:e9:0d:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:30:18 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=f232a6e54331b1fc6884fbe10989fb3f267a5f8ebb13c85b7b89d4f49a5f77fb, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ef:15:17:5f:23:a3:1a:aa:8f:aa:af:4b:ca:
d6:a8:44:87:bf:47:d3:06:13:a1:7f:63:26:1d:14:
2a:ef:70:11:a4:e9:9b:63:52:8a:ea:e3:09:da:46:
45:96:74:a5:15:22:71:0e:80:67:0c:2d:c9:f1:fe:
0e:bf:5a:17:f1:5d:17:92:7b:ec:68:48:35:cf:93:
96:70:bf:17:ea:33:e5:15:67:cb:57:77:2a:fd:77:
28:31:33:b5:9d:50:86:22:33:ef:06:39:d4:60:76:
c9:ab:21:21:f1:6a:ec:17:01:53:35:8d:4d:4a:ea:
48:61:ef:7e:6a:e8:ae:d5:69:45:de:01:1b:d2:62:
dc:22:50:c3:cc:c5:a2:9b:65:89:42:bc:e5:dd:46:
25:4b:fa:94:b2:21:a3:76:0c:8f:42:ff:cd:17:3f:
65:95:db:8a:f0:3e:ec:7a:aa:df:8f:98:bc:60:12:
b3:ac:42:10:e1:07:a8:47:56:ae:4e:88:01:6d:4c:
7a:15:23:b3:82:d0:2d:94:3f:74:ec:18:e9:f0:2b:
a0:54:39:e6:6b:56:46:d3:c8:f9:4a:9e:77:a1:8d:
4e:84:f1:f1:43:a9:05:20:50:22:c0:03:f9:5b:0b:
39:d5:bb:fb:53:14:59:b1:18:19:65:2a:e3:07:38:
86:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7F:4B:90:C3:27:7F:88:D4:DC:3C:02:6D:FE:11:3F:93:3A:C3:B5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/048fb9ae-8241-47de-bfd7-b835fb43f457.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.195.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:ef:58:cf:01:b2:57:7f:4d:11:ed:06:26:3f:93:4b:9f:05:
52:8f:27:05:83:76:25:70:7d:05:85:19:04:82:0c:4b:77:3a:
4b:35:a7:71:14:08:9c:85:67:41:7f:2e:da:85:5c:7d:50:75:
a2:60:eb:61:45:c7:45:79:d1:af:4c:be:cc:08:9d:7c:94:af:
45:a2:49:26:39:51:4f:fd:a9:4a:ad:11:98:3c:ab:9b:43:f6:
61:0d:63:7d:13:ee:53:05:70:de:f9:cf:2c:cf:5e:f2:01:a4:
36:0a:1d:fb:54:24:99:78:83:85:95:89:7f:02:79:75:38:4d:
46:56:e9:b9:79:c4:99:1d:81:f6:2f:29:9e:09:bc:de:9e:be:
2f:dd:83:b4:1c:b7:00:72:1c:6a:a0:53:a5:cd:39:fe:b1:0e:
5a:80:7b:29:d4:90:e5:b7:77:b9:39:86:59:1d:d5:a7:3e:2b:
4e:18:4c:c3:d3:ba:4f:85:fc:34:43:62:c3:03:fe:6f:e2:85:
94:67:7c:27:db:d4:7f:27:01:95:b6:76:cd:b4:f7:8b:d8:cd:
d1:bc:d0:19:59:fc:5c:be:e8:f3:c9:2f:c4:34:e6:13:7d:05:
f3:b8:a0:9f:a8:ce:1c:5f:fd:ce:2a:9e:fd:67:21:39:c5:3a:
ed:6c:96:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:48:48 2025 by rpki-client