Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa
File: 3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa (raw, json)
Hash identifier: cZ61QbXNiVEYQPsfbXA5aucFyODLT71ZrgSXK3MM/1s=
Subject key identifier: 9E:29:B5:D8:63:A6:74:35:E7:60:15:26:CF:1B:9F:38:6F:62:69:F4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 693A8328F95CAFC763753F7E0D5A84DA832DDC4F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa
Signing time: Wed 01 Oct 2025 00:22:05 +0000
ROA not before: Wed 01 Oct 2025 00:22:05 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 32.160.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:3a:83:28:f9:5c:af:c7:63:75:3f:7e:0d:5a:84:da:83:2d:dc:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:22:05 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=f9a28fe7945db3f43becd1096d69607bd487a6cad94dfa0c61ea59aa00214e31, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c8:3b:ca:a6:9a:73:8b:02:88:dd:85:63:62:
20:00:86:0a:ad:1f:e2:33:53:0e:fd:46:05:0a:02:
d0:e8:1c:7a:db:12:8c:1b:36:02:9c:6d:22:cf:84:
77:42:e3:4d:03:d9:62:67:ec:84:4c:8b:2f:3a:ce:
d6:87:77:0c:46:b2:cf:ac:cc:da:83:9b:37:38:31:
c4:0e:14:2e:1c:1a:e4:89:a3:c6:f1:f0:7f:1c:e5:
e3:06:7f:1d:79:46:db:0b:44:67:d8:dc:15:11:8a:
8c:5d:82:6d:17:3a:c3:e7:e1:9f:e8:98:82:9f:c4:
e1:5b:4a:f4:85:6d:62:ae:85:01:91:71:56:22:c5:
e4:47:03:ac:12:5a:1f:4b:2d:b0:c7:1e:38:b8:19:
70:e6:a0:b5:09:0e:7c:21:4d:64:a1:f5:24:5f:4a:
79:50:d1:ed:e1:d5:35:52:a3:29:a8:76:9e:fc:b5:
f3:81:3a:ca:4d:02:28:21:19:77:18:84:a3:55:e4:
80:ba:6f:38:3d:ff:0b:22:3a:c1:ee:6f:7a:3d:b1:
4f:57:f9:59:b0:9f:a3:83:51:f7:1b:51:76:15:71:
58:0c:1f:ab:1a:72:c5:f2:f7:65:68:a7:08:ef:9b:
ff:05:2d:57:fe:e6:a8:37:db:ba:12:87:ef:1b:f7:
c1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:29:B5:D8:63:A6:74:35:E7:60:15:26:CF:1B:9F:38:6F:62:69:F4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
32.160.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a0:4d:8c:22:4e:9d:90:30:56:2a:51:ba:5c:b1:bb:23:c1:54:
fe:e1:94:8d:f0:a1:e6:e7:65:13:89:4f:f3:aa:8b:04:85:39:
99:c6:14:3a:cf:50:b7:b3:aa:38:ad:5a:a2:0d:5b:37:76:6b:
db:6b:b0:9e:f0:3c:dc:b7:99:81:bf:fa:c0:47:65:c5:fd:70:
4f:2a:8c:ff:2d:d0:fc:97:76:90:98:ba:cf:10:ff:8b:67:1c:
85:39:c9:79:ee:97:3b:80:6a:1c:46:a3:d0:4f:c2:08:51:c0:
d7:c3:37:d7:fc:b8:aa:e9:35:11:84:79:41:a1:30:81:47:5b:
6e:a1:bf:4d:43:e7:5a:28:7c:f7:29:7e:d9:e9:b9:4b:07:73:
00:89:c5:89:fd:85:db:c7:ab:61:16:0e:1b:50:33:49:1e:3a:
68:13:53:9e:53:52:ac:53:5c:3c:38:11:ad:06:e5:5f:39:41:
55:33:cc:f1:55:fd:39:1a:74:24:50:2a:73:a5:63:5b:ef:b6:
cc:4c:32:19:88:cc:a3:94:f6:e7:68:f5:52:0f:0e:7e:03:42:
df:0b:46:5f:62:e7:34:33:24:2c:76:9c:ae:7d:43:4c:ab:ed:
ec:89:33:36:d9:4d:a8:22:ab:83:1e:73:0d:a2:72:e3:bf:3d:
12:5c:bf:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:56:51 2025 by rpki-client