Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa
File: 36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa (raw, json)
Hash identifier: yGckDUHQXTKqh64jxr4ZjtrjYTHKAgJ0aAbMhbi50Tk=
Subject key identifier: 22:8C:62:40:4D:7C:7F:C0:E7:08:34:A5:82:11:12:14:A2:01:89:08
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4DB1E21A393002A6754E6311987FB2276151D5C0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa
Signing time: Tue 07 Oct 2025 00:23:18 +0000
ROA not before: Tue 07 Oct 2025 00:23:18 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.15.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:b1:e2:1a:39:30:02:a6:75:4e:63:11:98:7f:b2:27:61:51:d5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:23:18 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=35bcf53ec595ead6bdb1718345d3b94dcd6b8bca0a724d5babdde98fe35fd756, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:aa:20:a3:58:f7:06:4a:84:11:dc:dc:96:47:
7c:c2:c3:6c:b4:5f:f6:3d:e5:62:e7:a6:04:20:59:
87:06:02:93:29:0d:2f:0e:0e:87:dd:1e:dc:e0:35:
40:f2:86:58:12:d7:35:00:c7:de:98:7a:1a:7f:35:
6d:be:ca:f3:63:be:73:4e:28:89:e9:db:0c:9e:3b:
22:5c:4d:e7:3c:0c:65:08:d9:da:b3:a6:65:f0:7d:
e6:d2:6b:d1:75:b6:d2:cc:50:92:5b:ef:bf:ca:79:
c7:a1:12:94:c2:40:27:fb:6d:e5:c7:b9:db:ee:1a:
09:dc:af:53:a8:de:2f:06:7b:84:01:cd:ab:6f:53:
e6:84:a0:b5:65:c3:2d:16:c7:ae:f7:1c:78:61:f4:
61:d1:57:eb:40:04:05:d9:81:62:9f:12:6a:a3:81:
64:91:56:a2:4b:70:aa:79:44:ed:89:c9:38:0a:0b:
dd:c9:33:e2:44:2c:14:e7:db:a6:bb:9b:a1:a1:ed:
5d:4a:8c:e1:11:dc:11:a8:ec:22:f4:b1:3f:1f:17:
27:1c:5e:6f:65:ad:70:91:3c:25:e0:bf:de:ba:55:
fa:8e:ba:f8:03:6b:b6:02:77:db:fb:62:8a:13:82:
68:6c:53:40:3e:51:9d:cc:b7:a4:88:dc:9d:e4:39:
92:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8C:62:40:4D:7C:7F:C0:E7:08:34:A5:82:11:12:14:A2:01:89:08
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.15.0.0/16
Signature Algorithm: sha256WithRSAEncryption
79:ef:d9:86:f0:07:11:c1:cc:7e:9e:84:ad:fc:d2:84:f5:5a:
39:61:07:bf:8e:3d:9a:f7:24:07:64:24:5c:91:0d:1d:98:7e:
ad:bf:b7:68:e8:1c:76:09:2b:45:b7:4e:bd:a8:ff:74:7f:8d:
31:cf:12:e1:df:bc:ed:cd:11:bc:c0:08:f8:31:39:e5:c3:71:
51:db:44:17:c6:d0:88:9e:d0:69:fc:8d:19:4d:fb:c5:8e:c7:
79:f7:59:9b:85:18:c6:ec:8f:eb:0a:64:37:0c:1c:4a:3e:57:
9f:b3:d1:4e:3d:1a:4d:80:4f:2d:cd:b5:1f:d9:4b:c6:5d:67:
32:65:85:26:05:cf:ff:15:2c:24:70:75:e3:5b:19:3f:dc:42:
c0:43:b7:33:69:4c:af:88:50:af:63:06:8a:3c:9f:85:df:e2:
ae:df:e1:f3:ff:76:db:b8:88:1c:bb:4a:12:86:1a:0d:28:b4:
e8:c1:4d:47:e2:f0:d9:80:47:9a:c7:cf:5c:87:b2:45:5e:60:
64:0a:7e:67:ee:19:83:8e:1f:87:9e:76:a2:29:7a:5f:5e:1d:
88:63:94:e2:5c:33:7d:1e:50:ad:ea:2f:9c:23:95:68:a5:03:
ce:06:f6:32:5a:66:cb:04:a7:6a:66:ea:34:d0:cb:00:dc:2f:
c4:4d:fc:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:04:06 2025 by rpki-client