Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e408e79-5dd1-440c-8f7a-e5775088ee1d.roa
File: 1e408e79-5dd1-440c-8f7a-e5775088ee1d.roa (raw, json)
Hash identifier: dl4/Y9LQGS1Iqy8ttx4COG9cEoakz/Ohgaaar+XGaUI=
Subject key identifier: 5D:A0:43:BA:FC:98:07:F9:40:91:56:11:80:29:BA:B0:6D:80:F7:60
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 56B7026C395494A9A3C26F5FC012199BAA7C7F24
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e408e79-5dd1-440c-8f7a-e5775088ee1d.roa
Signing time: Wed 01 Oct 2025 00:39:56 +0000
ROA not before: Wed 01 Oct 2025 00:39:56 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.96.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:b7:02:6c:39:54:94:a9:a3:c2:6f:5f:c0:12:19:9b:aa:7c:7f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:39:56 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=d027da7cf538daab8e9ffaa4171bae1b8deb17cbc2c5564b964452d65d08acab, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:86:8d:0b:97:2b:6c:b3:b8:d8:cc:b4:f2:b4:
e8:5c:bb:9a:c1:16:3b:2e:21:9b:23:2f:c4:be:91:
42:7c:0e:cb:36:59:b5:6f:95:44:b6:96:07:26:45:
60:cb:97:d3:79:01:0d:54:02:1f:ae:e8:ac:dc:fe:
75:19:3f:cd:38:af:ad:78:90:64:30:51:b4:0c:c6:
04:70:c6:61:e9:6a:97:35:a4:75:9e:0d:10:65:24:
e2:3a:2a:1d:30:0e:93:52:46:86:9e:7d:1e:59:4c:
22:8a:a4:0e:bc:c1:09:07:74:ff:0f:0d:14:45:e3:
64:15:72:19:07:62:e0:d4:02:bc:da:bf:12:f0:2e:
54:a8:0c:f2:b6:46:b0:31:8b:38:6f:34:4d:99:40:
98:55:38:ed:45:a3:22:22:32:18:37:89:8c:c8:51:
16:bb:b3:55:24:91:d9:1a:7e:7d:31:76:cd:6f:e5:
18:9c:f7:14:9f:2c:d6:d5:a8:f3:68:bd:c2:d5:84:
b4:66:e7:6b:7d:05:37:23:f1:f2:7e:76:52:23:25:
fb:f7:3d:4e:45:46:27:cd:99:90:9b:77:19:33:de:
1d:08:18:3b:98:54:70:18:64:ed:7c:62:99:e1:4b:
80:00:8e:03:cc:2f:5d:10:29:56:61:66:d3:e2:72:
30:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A0:43:BA:FC:98:07:F9:40:91:56:11:80:29:BA:B0:6D:80:F7:60
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e408e79-5dd1-440c-8f7a-e5775088ee1d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.96.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a8:55:c5:43:a3:ae:6f:9b:d5:25:0d:0b:78:76:f5:04:2b:d3:
e5:6d:60:18:47:93:3e:2c:a5:42:00:26:1e:7c:b8:4a:f5:0b:
f8:8a:b6:a2:2a:e6:17:2a:77:0f:f0:6c:8a:57:85:c4:62:fa:
94:25:25:ee:4a:d0:76:be:60:55:25:76:41:db:25:2e:ee:8d:
e2:cf:c8:31:cc:3e:ce:59:97:36:d9:2c:1b:c5:5d:78:44:32:
aa:f1:f8:db:1a:e4:d3:13:7a:0f:f0:c5:d7:7f:b2:da:f7:e1:
11:ef:91:bd:df:f9:26:23:00:95:06:60:9f:16:38:e7:fd:f3:
e1:09:06:4b:12:ec:c3:b6:b6:a3:5e:44:b7:e3:55:77:7c:7a:
7c:41:fe:72:c7:46:52:84:88:e9:65:c0:72:ea:33:f3:cc:37:
7e:66:73:10:83:3f:1d:b1:f6:c5:0f:06:76:8b:33:4d:b4:de:
e8:aa:53:be:55:75:65:32:8e:9a:ef:3f:84:d2:9a:26:37:4d:
e6:4d:df:f8:78:84:ec:d5:94:aa:fb:86:05:ce:12:a5:b0:24:
06:8e:6b:08:c5:15:20:4b:8a:0f:7c:d5:dd:4e:e5:9c:c5:a4:
3b:32:3d:34:50:18:eb:4e:1d:66:b3:4c:2c:1c:2f:c4:f4:ea:
d9:71:10:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:44:06 2025 by rpki-client