Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/528b6591-3aae-49d5-aecd-8320249f6d0e.roa
File: 528b6591-3aae-49d5-aecd-8320249f6d0e.roa (raw, json)
Hash identifier: K4pYZKKkhjanvrzCCNvTx31MtmIGRu8tM7QyLabTUdU=
Subject key identifier: C4:5B:2D:14:16:50:00:67:7A:2F:D3:29:86:7E:B4:35:83:42:22:FD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4609349332831A8AAF70D21DF7B1E09A6E332B0E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/528b6591-3aae-49d5-aecd-8320249f6d0e.roa
Signing time: Tue 30 Sep 2025 00:11:06 +0000
ROA not before: Tue 30 Sep 2025 00:11:06 +0000
ROA not after: Tue 04 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.17.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:09:34:93:32:83:1a:8a:af:70:d2:1d:f7:b1:e0:9a:6e:33:2b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 30 00:11:06 2025 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: serialNumber=771fecaef9f8760302ac36b8ab5a32f83050cd95a8838ae9615b19484c0fb74d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ea:50:39:3f:64:c0:44:67:60:d0:67:23:3f:
66:0b:2a:7a:a3:5b:5f:88:24:39:36:22:cb:b0:4f:
32:e3:5d:23:27:c2:16:5a:2d:a8:a6:2b:34:8a:6c:
97:ec:48:fd:67:b1:6d:85:e5:3f:72:99:36:c7:71:
fa:d0:76:fc:16:a1:f3:24:71:cf:66:29:c5:55:17:
b7:95:f8:eb:d7:f3:b8:3c:ff:7b:ec:d5:fc:f5:9e:
27:ca:6d:6b:60:85:ed:92:9b:90:05:bd:4a:d4:fa:
67:b9:5b:90:73:b7:e2:82:ca:70:ae:a7:5b:63:96:
57:50:8d:50:6c:4a:c2:cb:b8:f7:ef:ac:68:30:4e:
df:8c:0b:dd:a2:32:0e:5e:71:dc:de:7d:74:1f:7a:
f3:62:8a:d6:ce:2f:44:7f:d3:7c:14:90:83:d2:73:
f0:30:ab:8f:29:72:7a:e8:85:b2:e4:d2:12:10:a4:
f2:fd:21:48:cb:81:6f:9e:35:9f:4c:80:ac:b6:08:
78:87:fa:ca:a9:a2:f1:1e:65:f6:a6:ed:6c:a1:de:
4f:1e:3e:6c:01:65:d2:54:52:c6:fd:cf:e8:84:db:
d3:27:6c:04:5a:da:74:b6:c4:5b:fd:f6:f7:78:14:
72:ad:e0:40:88:61:61:6e:53:4c:db:66:6b:82:bc:
9e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5B:2D:14:16:50:00:67:7A:2F:D3:29:86:7E:B4:35:83:42:22:FD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/528b6591-3aae-49d5-aecd-8320249f6d0e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.17.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bf:99:c7:49:64:0a:a8:48:e1:5d:35:3c:e9:79:81:62:c6:d0:
bd:e4:5f:11:a1:48:39:4d:a4:d9:73:d4:8d:d0:8d:fb:15:4d:
f4:f4:42:00:b4:b8:52:b5:81:6d:a6:84:aa:6c:6c:2d:ac:04:
ed:71:2e:36:36:f8:37:eb:36:e1:da:c7:e6:ab:df:e0:d7:0a:
59:be:e9:9a:fe:8a:65:45:0c:f4:d7:60:f0:11:bc:1b:67:74:
f2:32:b2:c7:00:a5:a1:c4:1a:78:a0:dd:03:7a:d6:5a:90:f9:
0d:18:af:f5:13:bb:88:bf:8a:9f:13:07:a2:1f:83:10:02:7c:
df:89:df:ee:6b:84:2d:36:cc:1d:3b:3b:4a:d8:d3:bd:b4:11:
65:d8:21:93:0c:0b:95:35:20:89:3c:3c:6e:07:4b:03:b2:fb:
9e:5b:28:72:84:9d:ff:59:be:cf:f4:f9:c9:27:0d:07:06:a4:
44:db:47:c5:cb:05:3a:10:e1:aa:4b:69:24:7f:0e:5d:2d:19:
86:27:57:2e:9f:89:3a:35:3e:a8:ef:50:d5:a3:5b:3b:65:71:
32:16:05:58:b1:62:b1:b2:85:3c:b1:ce:ad:4c:80:3d:f8:ad:
93:d6:f1:63:b2:eb:eb:c5:4f:30:7b:26:28:01:ad:12:50:cb:
17:bc:da:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:07:12 2025 by rpki-client