Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa
File: 5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa (raw, json)
Hash identifier: F3vQpoxE4vM3b6hMxJOm7JaueH5X/urfq8OGMZ1aRLs=
Subject key identifier: 0D:53:2D:5C:05:E1:05:8E:C4:80:79:75:D6:D4:F7:DA:DD:57:AF:43
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 12771DD3C7C7D8BFE84D3891D6B85A39B229FB40
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa
Signing time: Wed 29 Oct 2025 00:50:04 +0000
ROA not before: Wed 29 Oct 2025 00:50:04 +0000
ROA not after: Wed 03 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.56.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:77:1d:d3:c7:c7:d8:bf:e8:4d:38:91:d6:b8:5a:39:b2:29:fb:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 29 00:50:04 2025 GMT
Not After : Dec 3 23:59:59 2025 GMT
Subject: serialNumber=14552005a4dde92b7ea63165f0a921de0965a8c5fa841e29a92655ce1060dd24, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7e:97:54:b9:7a:51:1b:16:7c:4e:d1:0f:11:
13:d5:97:a6:4a:ae:dc:86:81:ba:29:c2:7b:67:84:
e4:7a:cb:a2:4e:b3:41:30:c6:1d:eb:d3:05:3a:b9:
0b:02:97:f3:79:b1:a7:11:f3:5b:c0:da:37:f7:a0:
12:6e:6b:35:1a:fc:91:a3:e9:38:5e:ba:13:dc:7c:
bc:f0:91:06:74:39:a2:8e:53:2f:48:ce:66:12:98:
a0:8f:42:cb:54:76:56:0b:a9:0a:48:16:37:1e:10:
d7:36:eb:dd:6a:b1:13:6f:53:4e:c0:56:3d:2f:b7:
2d:0a:b7:9b:5a:97:d1:68:99:01:e9:60:b5:10:a9:
25:6c:ac:6d:2d:c1:bb:6b:f0:09:89:cf:3b:5a:a4:
e2:ab:0f:23:0c:4d:f4:20:e4:eb:73:fb:91:b7:b8:
7d:d6:80:27:36:d7:72:d8:5e:25:2b:8e:2d:9b:87:
e9:36:e6:1d:d5:01:60:fc:dd:99:4c:ef:08:26:5f:
d9:fa:e8:af:3e:67:fb:f1:9e:84:ae:30:a9:e1:3f:
d9:f0:ff:2f:9c:39:b9:f5:0f:c8:ca:cc:1b:87:42:
78:04:ab:39:47:3b:7d:15:70:18:fd:b8:a9:e1:b2:
22:ff:31:b3:bd:02:04:ca:43:1a:12:dc:42:d7:47:
a6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:53:2D:5C:05:E1:05:8E:C4:80:79:75:D6:D4:F7:DA:DD:57:AF:43
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5d:a8:3b:b1:93:b9:e6:d0:65:45:43:91:e2:85:d3:05:0c:49:
4e:58:48:b0:62:f3:c4:51:79:2f:0f:d2:93:89:29:8f:b1:58:
c3:65:99:5a:2b:38:4e:87:a7:5e:6a:7b:cc:90:bd:13:99:55:
d9:cc:14:a5:8a:7e:e1:a9:46:e2:87:3a:a0:76:6a:3b:8f:d7:
e0:46:ba:22:68:26:29:25:92:3e:3d:4d:24:28:91:16:5c:e3:
ae:de:f5:68:47:d1:41:a7:c3:76:c5:8c:6c:e2:8b:79:50:59:
03:9c:dd:a8:d3:d8:a7:e7:64:77:8e:a7:6f:7f:2d:c1:72:df:
a7:33:9b:3b:d7:fb:a3:3c:86:c5:de:47:d7:47:7c:9d:11:62:
54:07:01:e9:a0:ce:46:d0:be:b5:5d:92:db:60:49:91:5d:05:
5f:d4:ef:ca:df:a0:bf:aa:20:47:e3:2c:bd:47:ca:e2:f6:d4:
6c:f1:61:8d:3c:7d:8e:ff:48:99:b9:47:64:dc:45:96:fc:b0:
71:9e:c3:8f:05:15:49:eb:82:bf:f8:c1:cf:47:9f:e6:52:45:
fa:d8:70:89:a4:6f:01:ef:67:a9:5d:76:c8:5f:fb:b2:1f:c2:
1d:d0:3f:c9:b2:cd:c8:0f:89:6e:cf:33:0a:ad:d7:ba:d7:07:
a4:21:a5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:26:11 2025 by rpki-client