
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12d46d44-c4e3-4542-a08b-4f833b5a0c91.roa
File: 12d46d44-c4e3-4542-a08b-4f833b5a0c91.roa (raw, json)
Hash identifier: p4SWxv2l69rnGe6Wjw6xxPHNgCaBDdfl5ovSOuYnUrA=
Subject key identifier: 51:7D:63:A5:FE:7F:28:DB:92:5E:2B:82:AA:40:1A:06:2D:AA:C9:8F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4B2A849C6D4DC486D8110A20F9691A7EB6AFFAF7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12d46d44-c4e3-4542-a08b-4f833b5a0c91.roa
Signing time: Fri 10 Oct 2025 00:11:18 +0000
ROA not before: Fri 10 Oct 2025 00:11:18 +0000
ROA not after: Fri 14 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1ff4:c000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:2a:84:9c:6d:4d:c4:86:d8:11:0a:20:f9:69:1a:7e:b6:af:fa:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 10 00:11:18 2025 GMT
Not After : Nov 14 23:59:59 2025 GMT
Subject: serialNumber=ae4a72d55cb398ac43b4e6a48d782a043706a1f069a87f8cd9c51911eb90bd81, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0a:44:f4:75:d5:8e:5b:fc:8c:25:ff:aa:ee:
2d:09:42:86:26:91:26:be:b1:ad:35:4d:23:1a:be:
92:e3:17:a1:5c:22:e1:0f:43:93:1d:2e:15:aa:ca:
ad:fc:75:5d:cf:77:f7:89:a2:17:c8:60:15:35:9b:
e9:7d:d5:0c:6f:a1:4b:16:6d:2e:25:b6:9b:e4:9c:
cc:0a:fd:53:f6:4a:0e:ca:ca:24:4b:2f:20:9d:b0:
c4:9a:d8:20:35:db:e0:66:4e:0e:03:67:5c:40:c2:
02:13:f9:9f:3e:cf:88:9e:24:3d:95:0d:87:b6:8f:
d1:a7:66:a4:a0:f9:0e:aa:e2:f1:ed:81:f7:51:7f:
b1:dd:c1:1b:64:ea:ee:51:d9:54:20:9a:84:26:db:
3a:56:62:14:b4:6e:f0:5a:3f:08:bc:58:6c:1c:b6:
19:32:cb:85:6c:41:ad:b3:55:db:12:58:5f:94:13:
6b:7c:6e:35:91:79:ad:9c:8d:59:a1:80:b7:42:2b:
b0:aa:e2:2a:35:6e:07:49:2d:9b:91:58:de:f3:52:
9a:48:c6:53:27:80:55:b4:74:93:eb:25:95:2f:0d:
11:93:fc:51:8f:67:79:ab:51:fa:e1:e1:e5:16:00:
6a:3e:84:ad:df:f2:7f:55:a0:e7:13:4b:38:08:82:
f3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7D:63:A5:FE:7F:28:DB:92:5E:2B:82:AA:40:1A:06:2D:AA:C9:8F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12d46d44-c4e3-4542-a08b-4f833b5a0c91.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff4:c000::/40
Signature Algorithm: sha256WithRSAEncryption
28:9e:d9:45:85:ba:cb:b4:a2:af:c9:89:a6:f3:97:92:b5:ae:
3f:af:69:e9:83:be:2e:60:09:63:ea:46:4b:60:0d:be:19:9e:
7b:8a:3c:09:e4:78:93:e9:2a:39:df:d1:c8:c2:4d:89:23:c6:
ba:d1:4f:b9:58:32:38:16:d3:ad:bb:ce:a5:ce:7f:1b:da:01:
a7:63:6e:cd:3c:7f:91:d6:f7:33:e5:ca:22:c4:30:68:65:4b:
e7:bd:09:fe:e9:67:d6:a9:55:f3:0a:6c:58:1b:00:f3:46:56:
1c:f8:df:f9:98:a8:da:b4:ce:6d:e9:4d:de:e0:30:dd:1b:1c:
c3:03:6d:d3:b5:91:6f:85:45:6a:ab:7b:ff:6c:4f:27:d3:b3:
57:f4:38:ad:2d:76:bc:c2:08:8f:04:53:c3:7e:bd:d6:7a:86:
93:cd:72:5a:20:24:81:75:7c:c8:d9:cd:80:56:b5:4d:d4:2f:
ac:76:60:7a:61:23:34:3f:86:84:84:e7:29:19:80:09:e5:b9:
9b:bc:32:ad:1d:41:c4:90:54:1b:17:28:50:5f:4a:2d:07:ca:
a3:c4:0a:bf:42:84:a8:a4:39:6d:6d:9e:d6:c6:82:66:ca:80:
23:94:4f:b7:3e:93:7d:07:e2:2c:73:20:bc:35:6c:d3:4f:d7:
ac:72:02:ba
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Oct 20 04:42:41 2025 by rpki-client