Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa
File: 0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa (raw, json)
Hash identifier: y/bisUyYzhtt/7VFZE7BnsKx1F0USHwA2OMHWsnduzw=
Subject key identifier: 2B:33:CA:25:E2:7A:D0:EC:EA:91:B7:C4:07:59:8D:4B:86:2E:F1:1F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7A9F5E16F3D1718C85C81EA8D224D389F2416AB6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa
Signing time: Fri 03 Oct 2025 00:41:02 +0000
ROA not before: Fri 03 Oct 2025 00:41:02 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 64.252.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:9f:5e:16:f3:d1:71:8c:85:c8:1e:a8:d2:24:d3:89:f2:41:6a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:41:02 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=c9e3c911e840fe57c2c4bc8354a8f883df38430553395690caee94312d797058, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:eb:10:53:d7:92:4c:82:f8:e7:e3:ef:89:fa:
e9:f9:88:e1:1b:73:eb:30:db:2d:80:4f:40:c8:3a:
04:5b:e9:b3:93:10:58:8a:d3:4f:fa:9b:bb:3a:07:
5c:c3:08:6d:8a:30:c1:66:f1:29:6a:39:a4:15:33:
e7:02:2e:35:4a:0d:b0:35:dc:b0:f8:3f:3f:3d:86:
86:61:a8:61:b7:54:7c:32:c5:fd:8c:3a:bf:96:e0:
e1:98:9b:7b:bb:8b:d1:44:c0:72:fe:60:cb:00:1c:
86:c4:38:a0:12:27:ef:80:0b:4b:fd:f1:81:2d:d3:
0f:83:3e:08:e2:f1:97:e5:ef:58:68:c9:7f:72:83:
bd:7c:49:c1:fb:98:1c:0a:60:c1:52:30:df:8d:f5:
7d:76:a1:c1:ed:cb:da:16:8a:4d:9b:ed:a0:a5:6f:
41:54:e3:6c:fc:97:51:67:02:32:c4:5d:a3:37:6f:
58:aa:4d:0d:81:32:f2:e8:02:39:ce:eb:c3:b4:fe:
95:87:d1:47:4b:15:5c:a4:53:f8:9f:c7:c9:21:8f:
29:2a:64:54:db:48:bf:76:97:46:c3:18:a6:d9:e2:
23:69:60:ef:55:a2:6b:b9:c1:d8:fc:54:b5:ca:20:
d2:33:df:03:70:ac:3d:47:f2:7b:08:14:60:ae:5c:
0f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:33:CA:25:E2:7A:D0:EC:EA:91:B7:C4:07:59:8D:4B:86:2E:F1:1F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.252.73.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:ad:98:4b:a2:fc:e0:02:9b:2a:71:02:04:19:64:48:3c:8e:
07:f2:cd:81:28:bb:b5:a8:c7:37:67:6f:97:4d:3d:4e:30:bd:
c8:20:b2:6b:68:1f:9a:f0:9c:0c:fc:24:07:37:09:a0:d8:f5:
7b:08:8f:73:c5:ef:13:3a:8b:66:dc:72:b0:60:ee:d5:90:a3:
aa:a1:16:49:43:f1:80:64:2f:b7:0e:11:e1:5f:d8:9e:bd:e4:
aa:6d:7d:99:b9:e2:44:a3:0e:68:51:51:4a:87:20:cc:67:3b:
13:f6:cc:8d:58:c7:98:c5:ad:0f:71:7b:38:90:e7:d9:a4:37:
bd:fe:46:c3:94:10:29:31:33:88:20:39:13:16:fe:d0:45:b3:
ae:72:31:17:ff:ea:6a:b9:1e:6d:07:17:4a:53:76:c4:73:77:
e8:e8:98:b9:27:67:2e:26:3f:04:e5:6c:6d:6a:fd:f9:57:7b:
f4:5b:25:ae:77:b9:ba:0a:51:bd:1f:0e:a9:65:c6:3e:2d:c2:
92:b4:7c:a9:b5:01:73:8a:9f:3a:a0:c3:32:7b:2c:24:ee:7a:
7f:9e:71:90:a4:38:9b:24:ac:21:75:5b:ab:92:2f:40:2d:09:
ac:66:aa:e4:cb:c3:b4:c8:f9:a0:96:87:5c:23:60:6e:d4:19:
3a:98:01:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:44:21 2025 by rpki-client