Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4504c80e-4ba3-448e-ae5e-bd057f790c27.roa
File: 4504c80e-4ba3-448e-ae5e-bd057f790c27.roa (raw, json)
Hash identifier: jI2GJ7mErHlPwHofYxRRL0rBtNYV2Lr1+ox53uM/Chs=
Subject key identifier: 8B:37:FA:EB:78:0C:DC:1D:95:94:F1:DE:2A:0F:CB:67:22:9E:6E:B6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5D972B3A7479F4D0C9709D0224999B2A4339FC22
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4504c80e-4ba3-448e-ae5e-bd057f790c27.roa
Signing time: Wed 01 Oct 2025 00:22:47 +0000
ROA not before: Wed 01 Oct 2025 00:22:47 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fa0:e000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:97:2b:3a:74:79:f4:d0:c9:70:9d:02:24:99:9b:2a:43:39:fc:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:22:47 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=b9f920c7b8dca9451f43efd4b1e1b0416429ca22746294d62a796496c9d5d7b5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5c:a0:15:36:6e:c6:63:48:5b:db:e4:a5:6c:
21:8a:19:82:b1:94:58:1e:43:a1:ba:35:52:f2:48:
60:eb:60:b1:58:46:cd:26:4b:42:32:31:82:3a:7e:
b6:4a:b9:cd:03:6a:80:b5:42:76:f4:16:d4:6e:c3:
f2:ff:ae:4e:e4:e7:02:04:3e:75:f3:c0:0f:f5:65:
b4:23:27:8c:21:3a:5c:11:c1:13:93:3b:b9:a3:b2:
03:19:39:b3:6d:79:96:71:38:06:29:84:54:eb:8d:
05:ee:fb:0e:30:d1:a9:a4:f7:08:17:7c:0a:a2:0e:
97:5a:78:e8:39:1c:a2:74:85:58:c9:7a:4d:c3:83:
a1:ea:c9:47:e8:ca:a4:9f:6a:bf:81:6c:11:70:a6:
d4:dd:d4:e8:b1:c3:52:13:58:25:d9:36:e8:be:65:
99:8e:f6:51:d5:3f:30:72:34:b5:4e:35:c4:9f:0b:
b0:5b:39:6b:b2:08:01:01:df:98:2d:e5:f9:90:77:
9d:ff:21:45:b3:9c:21:bf:aa:3d:a7:e6:3b:da:e9:
6f:9f:1a:f2:34:4e:7e:16:65:de:cd:3b:ee:36:63:
0e:19:9c:33:6c:aa:56:88:05:92:13:15:f1:22:c4:
7c:d8:dd:09:8d:0e:6b:b7:c5:d2:e9:df:08:d4:d9:
c4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:37:FA:EB:78:0C:DC:1D:95:94:F1:DE:2A:0F:CB:67:22:9E:6E:B6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4504c80e-4ba3-448e-ae5e-bd057f790c27.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fa0:e000::/40
Signature Algorithm: sha256WithRSAEncryption
9e:8f:07:05:19:a1:53:2e:65:34:7c:f3:00:b2:23:ad:1d:fe:
b2:51:de:ea:b6:25:79:9a:69:c4:67:40:3a:5d:37:2b:0d:97:
fe:6d:c2:23:25:e1:ad:63:f5:68:d1:64:1c:84:f7:b4:99:8c:
4c:e6:47:d0:fc:6d:32:56:ae:38:26:8c:f6:52:c8:50:cc:ce:
aa:a2:ae:e4:f6:26:16:02:99:f0:25:40:53:e4:e9:e5:46:67:
fc:53:a4:09:f5:21:57:b5:09:2a:97:17:6e:03:c2:fd:25:d6:
b5:12:1b:c3:c5:af:01:7f:73:8e:70:16:e1:86:c1:36:ae:af:
c7:b6:52:fe:a6:d0:85:80:95:ff:c5:1c:59:88:f2:7c:2d:f9:
91:65:9c:ea:10:c2:93:cd:6f:90:44:2a:77:5f:0a:98:f6:a3:
75:61:bb:6f:98:bc:9c:e8:ea:f1:fc:81:fe:68:78:2b:d3:a0:
03:3c:1a:91:02:1d:0d:b2:60:43:ba:35:c2:d2:b4:73:6b:e8:
46:2e:c7:54:43:48:5b:1b:8d:82:29:7d:37:d7:40:68:f5:08:
9f:ac:5e:9f:df:f7:7b:27:7e:c2:17:7e:93:f7:53:45:28:4e:
17:a9:37:f4:94:2c:0a:9d:c6:3e:fc:19:9e:7b:6c:bd:51:70:
11:66:7e:38
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:06:14 2025 by rpki-client