Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68d10ddc-0e77-4eb8-a625-89c8780d49ea.roa
File: 68d10ddc-0e77-4eb8-a625-89c8780d49ea.roa (raw, json)
Hash identifier: /96L11+VTg15CZnDS1XuS7SKyL5ttwu0pEPLS3x+m1g=
Subject key identifier: 7A:16:A1:6B:8E:31:FF:C6:F8:4A:D3:22:95:6A:E7:18:52:4C:B5:76
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 39C048F3187F7C877047D443C55D56DEACDBE1B8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68d10ddc-0e77-4eb8-a625-89c8780d49ea.roa
Signing time: Tue 21 Oct 2025 00:10:12 +0000
ROA not before: Tue 21 Oct 2025 00:10:12 +0000
ROA not after: Tue 25 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 77.123.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:c0:48:f3:18:7f:7c:87:70:47:d4:43:c5:5d:56:de:ac:db:e1:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 21 00:10:12 2025 GMT
Not After : Nov 25 23:59:59 2025 GMT
Subject: serialNumber=7ad04215e38511bd877027ba9963c8f677bce58ec73829049bb4eaee8a2bb318, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:56:32:8c:87:e9:60:40:6c:0c:7d:75:7b:f9:
88:19:f1:e7:be:8a:4c:ae:11:52:f8:c0:58:de:58:
0e:8a:0e:c1:19:1e:1f:67:05:ae:af:2b:7a:8d:9c:
54:49:bb:c3:5d:37:32:73:21:8f:34:74:30:65:41:
0f:2c:3b:cd:73:db:cb:fe:08:40:6d:65:7d:62:d3:
cc:5d:4e:d5:6a:9c:18:38:c3:22:cc:3e:e9:21:93:
a2:05:e6:9c:de:a5:7e:fa:dc:12:b9:16:74:11:5c:
fe:ba:34:f4:78:18:8d:cf:ae:9c:20:5b:a8:90:b0:
bf:c3:fe:5b:53:3c:c2:1c:2a:41:b8:a8:08:33:8b:
d9:6b:62:b2:a8:e8:c6:48:84:21:bd:88:8e:52:12:
ce:fa:2f:70:f3:75:1c:6b:65:03:d5:c0:9e:85:fb:
33:a9:51:92:25:11:97:7b:2a:06:84:86:c2:54:68:
cc:a9:d2:b5:27:8e:44:5a:8b:d2:36:80:ca:fc:cb:
f1:2f:b0:9f:62:a2:7d:d6:6c:2c:4b:f0:ff:86:5e:
75:e4:ce:0f:a0:6d:2f:15:c3:bf:72:9a:b4:4c:25:
81:39:1c:8b:b8:7e:12:d9:4d:30:4f:77:48:0a:a2:
44:12:d5:e4:f4:83:43:c3:a0:ff:4c:6e:47:01:4d:
44:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:16:A1:6B:8E:31:FF:C6:F8:4A:D3:22:95:6A:E7:18:52:4C:B5:76
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68d10ddc-0e77-4eb8-a625-89c8780d49ea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.123.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a7:46:a9:25:b3:69:43:71:19:2e:be:df:61:3a:2d:f6:ec:fd:
de:4f:39:e1:07:b0:f5:da:91:a0:bd:f9:68:cd:70:b9:cf:6b:
ac:09:8c:c5:b6:75:ea:3d:86:80:5f:bf:94:23:c8:94:c4:45:
fc:7c:64:28:0d:57:03:3e:d0:ba:c4:a6:73:0a:5c:4c:41:22:
8e:65:87:9c:dc:aa:65:52:11:29:59:f9:ba:28:9e:8c:66:27:
c9:ad:dd:fc:a6:bc:83:99:46:9c:33:f6:11:9f:a3:ce:af:ef:
d0:41:24:1e:6d:53:83:7a:ec:3e:83:ad:3e:2c:62:ea:08:46:
f4:02:9f:08:f1:c7:f1:34:e9:dd:7b:08:3c:45:25:13:77:05:
c9:78:b5:cd:26:0c:71:e6:4b:2b:fb:a6:01:9d:c9:52:d2:85:
5f:be:00:87:86:12:ee:83:93:6b:a6:23:e3:d8:d2:ba:c6:01:
0b:b2:8e:24:98:ca:41:69:4c:04:9e:f1:5b:b2:5a:0d:51:f1:
ed:60:78:48:c6:09:33:55:26:cd:a2:47:84:a1:1e:cd:27:46:
b3:ef:75:0c:9a:ef:98:bc:ea:d3:64:94:08:e0:8e:6c:29:f1:
d5:0b:b4:7c:a9:85:d9:a3:d5:0e:5d:de:29:10:c6:50:fe:82:
6d:f6:2a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:26:19 2025 by rpki-client