Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1aa5c348-4f71-4b77-96b3-2f64a134b487.roa
File: 1aa5c348-4f71-4b77-96b3-2f64a134b487.roa (raw, json)
Hash identifier: 7oLf8nO/uN83TeHrsrBN5R2GgBHt6+SDGAzTkhmGu48=
Subject key identifier: F0:1D:1F:4F:41:22:8C:77:24:5C:E3:C2:72:56:54:C9:E4:FD:1B:3F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3734899F48C8BD9AD4705797CF7C689F4F934385
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1aa5c348-4f71-4b77-96b3-2f64a134b487.roa
Signing time: Wed 15 Oct 2025 23:38:22 +0000
ROA not before: Wed 15 Oct 2025 23:38:22 +0000
ROA not after: Wed 19 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.26.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:34:89:9f:48:c8:bd:9a:d4:70:57:97:cf:7c:68:9f:4f:93:43:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 15 23:38:22 2025 GMT
Not After : Nov 19 23:59:59 2025 GMT
Subject: serialNumber=87e0c0cef2bb71593bb2ee4abcc43f87638a9267e5b196439ad61bef6d40e89e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a6:a9:2f:a3:e4:1e:2a:d4:8a:50:97:38:47:
c3:f7:f1:9b:ad:28:93:b8:54:7d:28:42:a5:a2:d9:
87:f4:9e:f4:ab:b0:2a:14:e5:58:c2:8c:06:3f:71:
69:f9:28:2f:ca:34:22:32:f3:ab:aa:d2:08:68:04:
8f:7a:ed:e3:e3:44:65:b0:f2:54:4d:df:25:1b:d9:
21:d9:c1:22:57:aa:ae:d0:7b:2e:75:de:66:03:65:
df:20:b0:5d:49:7d:e9:2e:21:2b:39:07:2f:35:58:
ff:9c:c9:a2:8b:84:6e:19:71:ae:14:61:e7:0e:7d:
62:12:32:2d:bd:12:c3:6f:96:38:c2:ee:44:1e:04:
03:e1:da:e0:73:f8:88:15:de:38:d0:f9:57:4e:4c:
47:41:ac:a1:02:e5:17:32:4d:af:6a:bb:88:33:0b:
e7:7a:50:ba:e4:7f:79:8b:8e:55:fd:4c:7f:03:cc:
e6:ab:42:47:2e:38:8f:f3:b4:42:76:67:d7:a8:28:
dc:83:62:fa:aa:d8:f4:a2:65:be:39:3f:28:3c:97:
a6:70:3f:82:b4:63:4c:58:50:8d:cc:44:15:4e:4e:
bf:d2:ca:fe:ce:a3:a3:c3:ef:51:05:b0:3e:de:0f:
6c:9d:e7:eb:14:8f:02:14:a9:9f:05:1a:2d:c9:f5:
fc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1D:1F:4F:41:22:8C:77:24:5C:E3:C2:72:56:54:C9:E4:FD:1B:3F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1aa5c348-4f71-4b77-96b3-2f64a134b487.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.26.64.0/20
Signature Algorithm: sha256WithRSAEncryption
c4:96:61:52:a4:3f:1f:3d:e9:96:4d:6b:37:b9:c3:d9:63:5c:
fa:a1:d5:c2:ef:0e:30:c2:da:07:12:50:c8:8b:d9:63:c8:a5:
ba:67:1a:92:d5:27:2c:fe:c5:e7:72:a6:df:52:5e:9c:8a:57:
66:81:21:58:f1:48:a3:d5:7f:ef:0c:78:9a:cf:d6:96:6f:3c:
23:19:c1:f7:1a:39:b9:1c:f3:67:c4:19:43:4b:8b:37:b0:d0:
1e:43:90:6f:a5:9a:9f:53:c0:88:51:c4:0d:23:64:83:17:72:
aa:60:b3:fd:8b:7f:43:e3:c6:ab:90:e5:7e:1c:99:43:27:27:
ba:1c:5a:fa:c3:d0:83:d2:1b:7f:e0:50:91:00:17:7d:79:6b:
c5:18:54:9d:e6:ed:8f:f6:65:11:3e:33:b5:f4:8a:f6:40:f0:
28:67:47:14:b9:81:a3:60:33:b9:bd:88:f7:fe:dd:9c:3c:38:
73:13:95:5f:96:67:aa:44:6f:89:48:ad:a9:72:7c:8d:b5:67:
45:60:88:8f:4d:e6:19:71:49:d9:e9:af:06:c8:b9:f2:7a:82:
02:d8:c0:91:79:23:c2:f1:88:b6:a2:6f:97:6b:7c:80:a0:0d:
65:d3:12:e0:3d:b6:af:84:97:06:6b:33:8a:19:a7:48:e7:a9:
62:98:94:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:47:51 2025 by rpki-client