Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b5097f8-8740-437f-8ecd-21820985b249.roa
File: 0b5097f8-8740-437f-8ecd-21820985b249.roa (raw, json)
Hash identifier: mVUzTPFGS9liIXBgSlrpTYwq5HwQIZUGM8KCfH///o0=
Subject key identifier: 34:77:69:CC:60:E2:52:9D:8F:D4:68:83:1C:E8:E7:9C:3C:2C:68:E8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 566BA2F3D925971A02710930E0555A44BD372017
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b5097f8-8740-437f-8ecd-21820985b249.roa
Signing time: Fri 31 Oct 2025 01:00:02 +0000
ROA not before: Fri 31 Oct 2025 01:00:02 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 13.152.16.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:6b:a2:f3:d9:25:97:1a:02:71:09:30:e0:55:5a:44:bd:37:20:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 01:00:02 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=051dd0ff2b257d5c9fade3414aaa33b043c72d2fb64667e7267880350c7a6d87, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:45:93:b4:86:50:ef:49:28:0b:9a:60:ac:91:
c3:a6:3a:d3:71:9c:36:6a:3e:ce:d9:a1:ff:f3:18:
1a:51:60:e1:62:75:b9:6e:e9:ca:2b:95:cb:b4:eb:
33:43:32:92:93:f4:cb:bc:b2:30:ea:6b:24:f8:a8:
8d:cc:40:60:10:fc:89:cb:29:4d:ac:e2:65:60:e1:
b8:07:27:d4:36:bc:67:f3:58:b8:c7:7c:94:3d:6b:
73:2e:d1:ee:a7:32:db:68:02:ce:4e:23:bd:07:1e:
e7:5b:7a:1c:2b:ac:36:df:3a:8c:2b:17:9b:43:52:
c2:50:ff:e6:d3:ef:77:ac:e8:50:1d:e8:b6:3c:05:
76:09:ab:bd:e1:ee:61:df:60:28:a1:08:f5:2a:e1:
b7:8c:b3:be:87:8e:e4:e0:1a:c4:8f:c9:2e:8c:92:
13:00:93:9f:05:33:6a:a9:a0:50:09:49:54:dd:af:
b5:41:f4:13:d1:80:4e:f0:12:fb:f5:34:ab:9c:35:
95:49:c9:51:cc:15:9c:99:9f:1a:32:3e:9e:4c:c5:
fe:77:87:96:c8:b4:7d:f8:04:da:69:8b:21:ca:85:
e7:a0:b9:b4:fe:40:8c:ac:02:3d:ba:2d:6f:fa:8a:
1b:e9:a1:c6:8c:37:e5:89:61:6f:6e:f6:30:ed:26:
37:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:77:69:CC:60:E2:52:9D:8F:D4:68:83:1C:E8:E7:9C:3C:2C:68:E8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b5097f8-8740-437f-8ecd-21820985b249.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.152.16.0/21
Signature Algorithm: sha256WithRSAEncryption
d0:57:fc:fb:ca:04:25:a2:13:aa:0b:57:39:95:29:b1:fa:bf:
b5:2a:d1:f6:68:45:99:fe:e5:a5:8b:61:0c:5b:66:5a:0d:d9:
d0:8a:ea:30:1a:0a:79:9c:0b:4a:82:75:1b:e1:12:b9:a3:94:
d7:bc:f9:86:68:fb:83:73:36:98:5f:db:46:f4:63:93:d4:03:
ff:1c:61:72:d8:2a:32:28:1c:79:42:e0:02:76:18:35:0a:85:
44:b0:8a:0c:28:4c:71:e5:d9:82:31:ea:ff:d6:40:96:1c:df:
0e:18:95:f0:f9:17:db:81:04:3e:d9:79:39:01:3f:73:f7:45:
08:62:4c:67:6b:88:8f:c7:df:a6:6a:ed:f5:ff:24:b3:e0:45:
23:4d:b1:18:eb:3b:37:76:85:b0:8f:18:72:94:83:bd:0e:53:
a0:35:0b:c4:08:53:a1:c1:55:9c:16:21:40:51:41:66:79:d6:
d0:42:33:4f:f5:15:7f:e5:44:3a:cc:d7:36:89:49:2d:f9:44:
74:fe:95:65:6f:f5:e7:77:8d:3e:25:19:ed:48:ac:4d:5c:4d:
d2:6d:fd:09:b2:51:3f:3e:c2:3e:11:0b:13:48:8e:b0:66:26:
83:35:e4:65:b3:4e:6f:7d:16:be:d8:aa:60:6e:d9:5c:3c:38:
34:40:9b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:50:09 2025 by rpki-client