Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0327027b-1093-4d52-982e-7633219ee2ec.roa
File: 0327027b-1093-4d52-982e-7633219ee2ec.roa (raw, json)
Hash identifier: 9dgujPjEiVnQTUkMIj6zqJdQpnXawSInaJa/TagZ3/M=
Subject key identifier: 07:68:08:EB:FE:FD:ED:19:6D:C9:00:9E:16:67:F1:8C:00:DA:85:0D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3ED124BCA8C88844380053FD848EDCBA2AF32148
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0327027b-1093-4d52-982e-7633219ee2ec.roa
Signing time: Wed 01 Oct 2025 00:52:06 +0000
ROA not before: Wed 01 Oct 2025 00:52:06 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 76.162.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:d1:24:bc:a8:c8:88:44:38:00:53:fd:84:8e:dc:ba:2a:f3:21:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:52:06 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=9bf5a035e8981423b12e574a70c541b07f264c7f62b0f29807eacb5febe0324b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:2a:e9:78:82:f6:57:76:e6:70:c6:7d:bf:
54:9f:44:c8:37:3e:34:df:61:9e:c3:50:f1:93:44:
1f:31:8b:34:fe:e6:1f:9e:84:eb:4f:9c:4f:ba:cd:
8d:2b:05:79:42:af:ec:b4:d3:d7:4e:9e:3d:1d:be:
de:19:90:9a:28:08:01:f0:b5:53:ab:ab:90:76:a9:
7f:46:14:e5:74:42:b6:a4:9e:10:75:02:93:5b:e4:
07:54:9e:43:d3:16:f9:91:88:e3:a5:43:69:08:4f:
ff:5c:42:cd:e2:4c:c9:bd:87:53:65:7f:db:fe:9c:
25:df:90:3a:5e:20:2b:a2:fc:4b:c0:df:96:47:96:
f9:12:84:c3:86:ba:5a:68:c7:9e:ed:15:31:e6:83:
2b:83:ed:53:00:f2:ca:56:2e:f3:d7:38:d8:76:1d:
43:39:b6:9f:5d:ee:88:09:d6:7e:50:5c:83:7c:30:
2c:7a:b2:27:fb:31:41:0e:9c:a0:63:b5:76:14:53:
ae:13:37:38:f7:66:a7:aa:38:d3:30:03:c1:ae:a2:
cc:0f:63:6e:f3:f3:11:47:07:fd:68:b3:5c:02:b7:
24:44:cf:52:54:57:b7:8f:5a:17:b3:8e:a9:2f:06:
fe:26:d2:0e:47:30:be:a4:5f:56:93:97:0c:10:dc:
fb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:68:08:EB:FE:FD:ED:19:6D:C9:00:9E:16:67:F1:8C:00:DA:85:0D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0327027b-1093-4d52-982e-7633219ee2ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
76.162.0.0/15
Signature Algorithm: sha256WithRSAEncryption
03:b4:b5:05:92:b6:e7:f8:06:81:96:8e:b0:28:99:8e:2a:36:
49:1f:b4:b5:df:77:4d:fb:d1:88:b4:4e:90:0b:c0:ca:ad:7d:
98:12:3a:c3:e5:62:ff:ba:62:5f:ee:17:37:30:b3:16:44:36:
15:ed:cf:19:f9:12:d1:c9:6b:ea:f4:ea:49:51:89:76:a6:43:
a9:43:6a:d8:90:d9:40:fb:7b:25:8b:ca:fc:bb:81:b9:ee:89:
bd:93:80:1f:bb:df:ff:f8:8c:77:e5:6c:35:39:b2:db:78:5b:
5e:f6:14:76:57:e6:44:5e:c9:4d:da:22:73:23:7a:3d:38:54:
5a:c8:69:a6:00:f6:31:e9:7c:1f:5f:09:93:37:64:d4:bf:2d:
8a:c0:a9:2a:8a:06:14:c8:85:48:73:23:ba:9a:a1:e0:ff:40:
a4:2a:3d:8a:22:ab:b5:d1:88:22:32:16:bf:cb:4e:f8:63:2d:
27:84:36:3b:f5:7f:4b:4d:94:ba:24:84:52:8b:47:6b:2c:89:
61:80:1a:0a:5d:69:5d:ed:29:53:dd:46:1b:ec:a5:50:2d:6d:
80:34:b2:ba:9c:17:6c:b7:34:cd:59:2d:b7:37:a2:b1:fc:0f:
49:90:7d:16:db:cb:b0:e9:19:32:87:e4:64:8d:3d:ad:a9:55:
71:cf:11:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:13:17 2025 by rpki-client