Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa
File: 5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa (raw, json)
Hash identifier: M93tPajel1ao80OxQ4iyHCFTew3nMn/Eaqlao4LHT5Y=
Subject key identifier: 6E:78:29:4F:A2:54:DA:E9:45:EE:72:85:25:EE:0C:04:1A:1A:D3:FB
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2A742C7CC6B78C81673147C33E096A0C4DF09FE2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa
Signing time: Wed 01 Oct 2025 00:40:34 +0000
ROA not before: Wed 01 Oct 2025 00:40:34 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.233.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:74:2c:7c:c6:b7:8c:81:67:31:47:c3:3e:09:6a:0c:4d:f0:9f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:40:34 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=363627581db2497ca1a580b6ad5c5805da208e1bb5cc220e159f8792364816f1, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:21:63:f3:0b:ea:d8:c9:1b:7f:9e:0b:fe:e5:
f1:2b:2c:d0:3d:19:8e:e0:29:d8:46:83:69:7d:e6:
db:9d:d8:c6:55:34:ca:7e:d3:2d:82:2f:2e:9c:80:
56:44:69:a0:0f:ae:0d:23:d3:12:66:04:37:cd:e4:
4b:f7:4c:85:b1:11:a1:8d:bc:c9:95:6a:22:01:b5:
e0:40:28:1b:8c:07:aa:90:c9:a8:13:68:b9:e6:44:
5b:db:4b:f6:87:db:e1:62:05:db:ad:81:08:ab:76:
9e:2b:e0:bc:57:30:61:33:42:81:33:81:44:1e:e9:
5d:41:7a:2f:38:92:43:f0:33:29:37:dc:7c:67:e7:
c9:a4:03:4b:01:d8:30:35:97:3f:04:8d:41:fd:3d:
f9:29:d8:70:7e:8d:1b:49:75:ff:4c:26:b6:f7:61:
1c:51:60:db:d0:98:7b:65:7d:23:8d:b5:1f:7e:18:
a6:07:0d:bb:5b:81:b6:09:20:af:9b:84:c3:47:32:
8b:02:b8:28:fe:f2:70:ed:a7:0e:b3:ea:1d:84:10:
39:1d:a8:30:f7:04:f9:a9:85:3e:22:c1:d1:ad:ec:
47:db:9b:92:4d:4f:55:56:fe:a5:79:c2:00:ac:4e:
1a:5c:8f:4d:26:c0:9e:fd:84:40:46:42:f1:b9:5d:
f6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:78:29:4F:A2:54:DA:E9:45:EE:72:85:25:EE:0C:04:1A:1A:D3:FB
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.233.0.0/16
Signature Algorithm: sha256WithRSAEncryption
22:ab:2d:7f:2b:a8:83:f9:55:24:4a:42:87:ca:0c:b4:68:28:
62:de:67:cd:6d:4e:4e:0a:b6:ec:5b:dc:3d:ab:ae:aa:ad:4e:
9e:3a:ff:08:72:fd:79:8c:d0:95:b9:9c:c3:82:bf:0d:48:9d:
40:d3:a8:e2:f7:57:c6:16:04:f9:cc:5b:65:af:ac:4d:9d:62:
61:f0:69:bb:f1:6e:39:d1:30:d1:8e:54:72:78:43:98:5c:54:
db:3f:af:27:f3:9a:1b:4a:1b:f2:0d:6a:01:51:76:e4:e1:75:
89:0f:76:f4:e5:c9:b8:93:cf:09:7c:63:a9:ba:26:90:d5:25:
78:27:7f:2e:60:dc:b5:9c:91:c6:1d:23:25:2c:70:6c:44:c6:
a3:41:ba:31:84:cc:a8:ce:aa:4a:73:45:f5:cc:26:bc:6d:b5:
6b:c3:ad:9b:1f:30:40:3a:63:9c:33:6d:ba:9e:1b:b8:ec:03:
49:8a:fc:73:f4:2d:67:ed:d4:65:2b:2d:45:fb:1b:47:4f:43:
6b:f4:f1:48:ab:d1:12:41:36:1e:fe:8d:32:a0:56:eb:c0:44:
41:e2:ff:5c:e3:94:4c:0e:3c:39:4a:bf:1f:ee:de:6c:27:2c:
38:7e:c7:5b:d6:b9:26:6d:8e:5a:c9:25:88:f1:e9:0b:86:ee:
87:0e:3e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:56:17 2025 by rpki-client