Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa
File: 2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa (raw, json)
Hash identifier: KSirLqw1oXiyS6V2N+3lPCy2kGFoQD3y4CQWxcUADmo=
Subject key identifier: A2:B2:17:63:A9:B4:B3:FB:75:4E:FE:43:51:7C:08:75:F3:CD:A7:16
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1E2511B71769DAC0E9FD95E065D9603CE812F7BD
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa
Signing time: Fri 03 Oct 2025 00:12:51 +0000
ROA not before: Fri 03 Oct 2025 00:12:51 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff1:2000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:25:11:b7:17:69:da:c0:e9:fd:95:e0:65:d9:60:3c:e8:12:f7:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:12:51 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=742f500a40933f1d397740a6116283f8723ec2354c24576dfb1cfa11d967ed3b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:50:b3:a2:2a:05:7e:46:da:be:1a:5d:c8:01:
f6:6f:87:9c:19:22:36:a3:39:cb:09:c8:00:10:cf:
17:46:de:79:a1:c7:e4:ce:03:40:1e:bb:cd:f2:ba:
20:e4:9c:d8:62:92:cb:b3:46:fa:f3:4c:26:0b:1d:
92:f4:f4:25:44:ab:94:e4:af:3e:97:cf:21:25:9e:
5e:cf:c5:85:86:94:93:59:f1:08:a9:d7:4e:f5:72:
e5:15:c5:b6:11:86:79:a4:4a:46:f1:5d:09:36:4c:
8f:4c:8a:a4:d1:03:bb:22:b3:ea:b1:39:27:85:61:
6a:04:85:44:b7:7d:44:cf:d6:72:85:f2:c7:d4:b6:
86:df:f1:51:8c:de:2d:85:09:08:7a:9b:e5:b1:87:
41:6c:77:9b:88:70:dd:03:4c:5d:99:d1:4d:6d:bb:
04:0b:11:cc:47:65:1c:ff:ae:90:5d:e2:b9:4b:9a:
7e:8f:db:e8:fe:43:22:57:4a:69:ec:93:2a:d9:ee:
21:9f:d5:7e:21:51:05:9c:32:ef:50:af:6d:76:8b:
34:e8:6e:28:64:f3:a2:91:84:f3:b1:64:31:90:bb:
7c:d9:28:56:98:9b:06:2b:70:dc:9b:8a:f2:1c:3d:
9d:1f:86:bd:84:ca:eb:38:d0:41:90:b1:57:e2:24:
18:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B2:17:63:A9:B4:B3:FB:75:4E:FE:43:51:7C:08:75:F3:CD:A7:16
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff1:2000::/40
Signature Algorithm: sha256WithRSAEncryption
5b:26:5d:ce:98:dd:e3:28:8b:31:72:2f:cf:09:47:69:8e:20:
32:36:b5:db:94:63:19:79:9e:c5:01:c9:23:2c:f9:3a:a0:c7:
0f:e1:88:aa:39:f4:19:ea:74:09:ff:35:bb:35:08:e4:97:d6:
c7:c3:ba:38:fa:fa:b1:3c:45:4e:61:1a:75:55:38:6c:37:31:
97:47:6e:7d:14:2f:05:25:6c:59:2b:56:d7:41:50:8a:96:b7:
61:4b:0e:0b:52:c6:22:83:ab:27:4c:bc:54:14:6d:83:d0:09:
fb:ac:48:72:58:4d:80:90:2f:eb:4e:a2:03:56:62:bc:ab:4b:
35:d9:f2:48:70:5e:e2:54:bc:0d:5b:c8:79:e7:18:86:95:53:
61:0a:aa:ec:cb:f1:d8:0c:d1:e6:c2:5d:c7:69:e7:d3:05:f5:
b4:0c:b1:67:a8:a0:ef:05:ff:d2:06:13:d2:ad:da:85:24:f6:
ef:b8:3a:e4:18:b6:7d:97:31:bc:3a:cd:ca:73:42:36:55:9d:
4b:4f:ca:9d:d1:17:df:7a:1b:4d:92:5a:a4:45:ba:6a:1d:6f:
7a:8b:e7:34:98:57:48:54:63:65:2a:17:41:a4:a9:c7:a6:53:
fa:2d:39:d5:6e:c5:9f:66:31:e8:3e:6f:6a:e3:42:9f:88:14:
7c:bf:95:54
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:19:16 2025 by rpki-client