Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa
File: 199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa (raw, json)
Hash identifier: d2eeO/U0MbCX73rTHyKeyb8OKmtfXQLH2xIJawkZ2cc=
Subject key identifier: 36:0E:8F:69:15:CA:15:DA:CC:36:AD:36:BF:47:F8:BC:6C:9F:C4:C0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 787C6FC4A7B5175E5D1CFF323AB6A18D0FC28348
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa
Signing time: Sat 04 Oct 2025 00:37:40 +0000
ROA not before: Sat 04 Oct 2025 00:37:40 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.149.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:7c:6f:c4:a7:b5:17:5e:5d:1c:ff:32:3a:b6:a1:8d:0f:c2:83:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:37:40 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=a8b287d3b096bd86f71d974db32f3f7a4d0e655ed5fda4c69ba22046eb7c3fa2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:de:e1:ed:4d:6f:ff:76:4a:95:11:7f:59:cb:
62:97:76:d6:75:a1:69:0d:8e:b9:af:31:af:d9:10:
ee:4f:a8:9a:16:fc:3c:54:dd:ef:54:1d:22:24:04:
52:40:8f:cb:1f:23:25:c7:15:63:80:7c:e1:d7:27:
02:3d:a5:92:8f:b5:b6:17:da:0b:68:b7:52:cf:c8:
3b:8a:f0:88:78:3d:ac:10:c9:95:3d:9a:59:68:59:
e0:47:c3:2f:ef:87:f7:6b:0a:21:eb:d5:4e:0a:cf:
b0:9f:8c:c3:a0:30:a5:b4:83:62:73:b4:ea:50:92:
7b:22:6c:4d:c7:5e:74:45:03:59:30:e7:17:ba:7d:
fa:b0:0e:19:0d:5f:fc:4c:00:99:75:c6:8c:84:2e:
fc:24:53:0f:da:90:f5:e1:4e:20:94:14:e5:a5:6d:
cc:a7:ca:0a:64:cd:97:e1:84:00:9e:c8:9c:f4:60:
f3:5f:9b:f6:fd:f1:e5:80:ec:83:db:27:4e:1c:91:
40:f2:4b:dc:14:8d:0d:cd:c8:cc:ec:2e:25:42:55:
a7:3c:b2:ba:4f:93:ea:91:34:25:0a:45:c5:92:52:
a8:45:9f:48:9e:20:46:df:5a:78:20:cf:cd:8c:ee:
65:17:11:60:d9:e9:a5:95:47:88:75:34:ff:73:2c:
3b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0E:8F:69:15:CA:15:DA:CC:36:AD:36:BF:47:F8:BC:6C:9F:C4:C0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.149.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:58:2e:de:5d:15:96:28:92:d0:31:8d:17:f4:8c:f8:7f:8f:
13:4d:b8:59:fb:41:f5:8c:88:5b:94:78:4d:88:30:c4:ca:c0:
e2:28:90:fb:51:92:7e:b9:29:e7:a3:8d:fc:05:4e:01:04:f7:
b3:fb:f1:fe:7b:06:e2:50:a2:2d:98:e9:ef:62:11:69:0c:08:
67:78:5d:36:43:ba:38:d0:44:fb:f0:d8:3d:e4:e6:4a:67:48:
3a:03:9d:96:bb:8b:79:ed:36:73:9b:f2:85:4e:34:7f:bd:17:
46:04:85:69:0b:12:0f:df:49:a0:bc:43:6b:33:7d:88:1d:e0:
c4:f0:78:f2:fe:74:01:1b:06:4e:8b:da:ca:44:ce:ff:3f:bd:
6d:12:9a:21:c3:02:00:ab:1c:07:bc:8e:25:a2:09:73:cb:07:
5b:f4:13:97:8a:25:a4:41:43:6d:e2:9a:56:8b:43:bc:da:1b:
e4:6d:41:1a:f2:51:65:26:32:99:84:a0:b5:47:64:fa:c5:17:
1b:86:fb:e0:86:f1:0e:76:cc:22:b0:f2:13:33:af:13:b5:b2:
6a:e5:50:b1:f3:e8:e4:10:9b:31:1b:97:77:79:87:d4:6b:3f:
3b:3f:a2:90:92:8f:c3:38:98:70:e9:19:3f:19:1d:23:c0:b9:
9e:d4:fa:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:08:02 2025 by rpki-client