Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/001e886e-4c42-418b-aa55-744e88958540.roa
File: 001e886e-4c42-418b-aa55-744e88958540.roa (raw, json)
Hash identifier: 5ljMHAOcw7NTqNowuIu8tNVKLXEDewEDtk9GH/u+Seo=
Subject key identifier: 34:2A:9E:42:D5:62:B6:19:40:24:11:B0:46:93:4F:C4:1F:B9:57:44
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 158A2CB1343EB5CB9E8228C1869EC23F669BB275
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/001e886e-4c42-418b-aa55-744e88958540.roa
Signing time: Sun 19 Oct 2025 01:11:43 +0000
ROA not before: Sun 19 Oct 2025 01:11:43 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 35.39.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:8a:2c:b1:34:3e:b5:cb:9e:82:28:c1:86:9e:c2:3f:66:9b:b2:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 01:11:43 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=c12319a0e8d379d6d7c921c2d052facc8e21ab5b346ddb1feeb7cdbb794222bc, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:10:86:78:bb:bb:9a:59:25:36:73:b1:12:2e:
f1:8f:88:0b:71:ad:aa:21:f3:06:96:ff:f4:f2:7b:
87:b2:d6:7c:3c:03:fd:55:05:ae:3d:7d:64:84:d8:
0b:f5:1d:7e:f4:0b:34:ca:5a:52:aa:60:4d:20:30:
08:de:b9:48:23:81:91:3c:e7:ce:e5:51:8c:06:eb:
07:41:2a:54:23:23:ef:3f:78:62:64:5d:65:af:c0:
61:2e:2b:23:03:c0:da:b3:25:13:6a:7f:4a:83:51:
40:4c:73:a1:eb:66:b0:28:35:61:26:8c:6e:14:2c:
65:36:15:c4:3a:5c:a1:a5:a3:2c:f3:b7:ee:3c:37:
a6:4b:85:a7:40:22:ec:eb:df:01:be:cb:9a:79:70:
f3:c1:f5:cf:35:f1:14:1c:a0:e8:73:7c:74:64:a6:
be:99:8a:0b:95:0d:74:37:e2:8a:9a:d8:30:8d:c8:
bf:22:d8:65:f2:82:b9:cd:35:cd:57:70:90:e7:6c:
08:74:a3:90:c6:ac:cc:11:b7:7a:f4:87:f4:bc:e1:
e0:b5:4e:49:3e:f6:d2:ff:fa:68:5a:f6:66:75:63:
45:f1:a5:fa:ee:4e:1c:02:87:e0:09:fd:8e:55:0e:
d8:f8:4a:eb:d1:25:c8:8f:cf:c1:ac:f8:cd:52:6d:
d8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2A:9E:42:D5:62:B6:19:40:24:11:B0:46:93:4F:C4:1F:B9:57:44
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/001e886e-4c42-418b-aa55-744e88958540.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.39.96.0/19
Signature Algorithm: sha256WithRSAEncryption
71:2c:b5:7d:ee:35:69:f2:32:e9:dd:35:ce:15:c7:ea:aa:17:
90:e0:37:92:df:48:d4:fa:d6:a6:4b:ac:8f:e6:b0:ea:bf:ae:
b5:d6:ba:9b:d9:18:f1:d1:18:2a:10:97:d5:ec:9c:95:66:e7:
df:9c:78:7e:e1:e9:3f:c3:57:0f:32:c1:a2:3d:dd:6d:10:b5:
2e:11:84:73:7c:35:f9:ef:fa:7c:ae:d4:09:11:55:ba:81:25:
34:05:de:fa:59:a6:50:26:9c:2e:0b:51:5f:79:74:1f:bd:71:
c6:34:ee:de:d7:c2:98:5f:5b:1d:2b:a0:a2:ba:be:0a:64:61:
9c:85:bd:17:c6:82:ce:cb:bf:d2:ad:01:ca:a4:6d:8c:e9:93:
18:d0:4b:55:8b:42:72:2e:df:29:85:49:80:8f:8f:00:22:69:
96:22:78:ad:bb:21:0d:70:ac:65:46:72:d5:27:8a:6d:eb:a9:
5a:42:79:f4:4e:4b:07:d9:9a:cf:4c:25:49:a0:bc:7c:ce:c2:
7d:50:50:1f:be:6d:6a:b6:ae:0c:56:56:01:a5:ff:af:ba:02:
4e:2c:1b:e4:3c:94:20:f1:7f:58:60:d0:83:3f:83:da:35:49:
7b:b0:d0:04:91:91:09:30:e4:98:9c:b3:f7:b6:7b:bd:ca:9e:
4a:5a:47:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 04:46:13 2025 by rpki-client