Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa
File: 1c928d8f-5fa6-47d3-8912-a67751764ad7.roa (raw, json)
Hash identifier: K219t2W6N0aHSfqMdn4NfNtnjyExsEMSW0TKgh6kz8A=
Subject key identifier: EE:59:98:F7:60:84:EF:0C:BE:3E:C0:81:0C:27:05:69:C6:CE:A8:F0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 11B30C29993D27BE63EA4124509A1C19118B70D1
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa
Signing time: Sat 04 Oct 2025 00:51:45 +0000
ROA not before: Sat 04 Oct 2025 00:51:45 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 40.188.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:b3:0c:29:99:3d:27:be:63:ea:41:24:50:9a:1c:19:11:8b:70:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:51:45 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=0c70204ca09c332895dfe34388b0ac385035084338beefd6e6279cc533bdec75, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0e:4c:65:e7:e6:ca:c6:3c:a2:1f:8d:e4:68:
19:d0:b4:e1:41:cd:ee:a0:dc:22:9f:7d:7d:2b:f4:
ea:e4:cb:77:2d:3c:78:8f:a3:ac:09:08:ce:f6:ec:
70:b6:45:cd:3d:95:18:6b:04:e9:d2:78:cb:6b:9f:
e3:39:9b:4e:06:8a:b7:7d:23:0a:45:ab:5e:b8:44:
33:0e:47:51:0a:0a:c5:5e:fe:bd:6b:e7:7e:f8:12:
be:51:58:a7:4a:5b:0d:cd:67:79:bd:f6:45:0e:3b:
cf:0b:89:8d:46:20:08:42:b1:37:a1:fa:b7:e4:a8:
bc:44:2c:4a:93:97:36:2d:9d:33:ad:5d:2d:8e:e2:
92:b8:45:33:89:97:1a:d0:23:f8:08:6d:6f:d7:7c:
41:f7:ba:87:b3:1d:04:81:68:bc:c0:66:90:fd:de:
fe:f7:d5:ec:6a:67:41:fc:54:ab:18:e3:a2:53:c3:
f1:23:55:fb:fc:29:d5:4d:d4:fa:74:45:89:e4:8f:
02:d7:ab:3a:a7:7b:22:19:7c:28:b6:a1:8f:32:ea:
ac:2c:42:6b:4a:15:a3:72:fb:19:06:21:55:86:9e:
4a:b5:55:ca:65:dd:63:f0:0b:a0:72:6d:66:81:dc:
ad:14:91:f8:a9:dc:0d:85:f2:56:bf:d0:4f:95:2b:
b8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:59:98:F7:60:84:EF:0C:BE:3E:C0:81:0C:27:05:69:C6:CE:A8:F0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.188.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0c:d0:62:eb:a1:21:e4:81:37:c3:0c:2d:32:6e:42:0f:f2:ea:
cd:48:30:f5:f8:f1:d1:1d:63:30:7b:55:39:ce:4e:49:ca:db:
c5:fd:2e:b8:29:ea:61:d6:55:63:dd:65:fe:89:de:c2:f9:fd:
1e:2a:d6:b8:92:b3:97:ec:cb:2e:bf:32:79:5d:f9:c9:88:3b:
6e:b6:99:6a:16:54:01:ca:36:24:79:b1:ac:44:b1:fa:3e:93:
bf:ef:6d:07:88:73:ff:4e:2b:c4:95:18:c4:79:5a:8f:ea:82:
11:07:7b:1c:d0:5d:fb:26:06:4a:cf:ec:24:44:fb:b5:bd:7d:
fc:ad:f5:5c:9c:fd:a5:b7:fe:05:b1:6c:59:57:35:af:5d:48:
16:ca:47:29:12:04:51:47:a6:64:11:09:20:38:25:bf:a7:28:
9d:c3:2c:a7:ef:67:f7:80:63:38:6b:25:53:5a:5f:81:39:0d:
1c:9a:2e:66:36:6b:dc:a7:d7:3b:21:2c:9c:05:3d:f9:c3:fd:
c5:95:ec:49:a9:69:82:05:4a:2f:9e:9a:7d:2e:27:e1:96:78:
97:7f:e9:68:34:60:5c:d7:ad:27:a1:64:b4:a2:98:eb:60:cb:
2b:4b:14:75:cb:a2:23:f0:44:a5:a9:f5:c3:9b:ac:6f:1c:61:
f4:54:64:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:55:49 2025 by rpki-client