Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa
File: 5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa (raw, json)
Hash identifier: gF/Yri9FLjfsmMxHQM7WSPPl272MbQmB08djB06zQaY=
Subject key identifier: C3:38:DF:ED:8A:10:BD:0F:6E:46:FF:90:58:52:04:3A:15:75:6B:3C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 389185F606FB9BA90F353CE3F0594884476893BE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa
Signing time: Sat 04 Oct 2025 00:38:58 +0000
ROA not before: Sat 04 Oct 2025 00:38:58 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.56.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:91:85:f6:06:fb:9b:a9:0f:35:3c:e3:f0:59:48:84:47:68:93:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:38:58 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=813f3955eea47ac21921af8e6445bc2a8ad6bf729d8e7ae1d6a56dd8f7e7e87e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:37:29:3e:01:ad:c4:67:0f:03:8c:4c:19:ee:
fb:40:b1:9f:b8:70:2c:cd:7e:1e:f9:2a:ae:01:f4:
96:7e:04:33:0a:ac:cf:d1:ff:2d:29:d8:37:2d:23:
15:11:2e:46:e2:c3:6b:01:c4:82:cd:a7:21:40:6b:
e0:00:3e:eb:8f:6c:c4:e2:f2:db:d1:15:0c:93:12:
b5:64:32:04:57:70:7f:24:c9:bd:8e:0f:48:6f:a5:
6a:c5:ec:0d:37:67:c2:02:7f:ce:1c:7a:93:e6:e9:
60:03:eb:ea:a1:fc:0b:f0:e8:ff:1b:d1:42:0e:cc:
5f:26:98:67:4d:f8:3c:44:56:49:76:af:a1:9d:2d:
d2:41:d5:24:7a:d4:db:66:f2:74:1a:5f:7d:ef:3e:
c7:09:44:d0:41:3c:cc:bb:36:ed:ef:b9:de:80:f0:
ef:6e:82:0c:e1:d1:a9:6a:b0:3e:bb:3d:2e:82:18:
17:cf:a7:12:3b:6a:93:45:0d:a1:ab:6b:3b:79:7c:
54:4f:5b:6e:a0:91:b6:6f:7a:43:d4:f3:5c:61:f7:
4e:4a:d3:aa:1d:f6:c5:30:f7:23:7d:1a:6e:dd:d5:
81:42:ce:30:aa:2d:fa:4c:e2:c5:ab:d8:24:db:94:
fb:ec:ce:b5:fd:67:5a:71:49:7e:28:60:02:9e:e6:
a6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:38:DF:ED:8A:10:BD:0F:6E:46:FF:90:58:52:04:3A:15:75:6B:3C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0a:ec:a9:9c:cc:b0:68:19:9a:77:d6:82:82:86:64:1f:7e:4a:
fe:fd:8e:7e:71:82:51:6b:44:a7:03:89:6e:e0:71:58:ac:46:
f3:9b:16:3f:cd:12:11:67:55:bd:b9:77:80:d2:d7:18:12:7b:
08:d7:1e:de:a2:ba:c0:c5:b9:65:cd:e3:ce:53:eb:d3:87:e3:
f8:42:7e:68:8e:18:bb:76:96:9f:e1:b8:cd:70:82:18:96:a4:
85:ab:dc:86:15:ea:90:6e:ed:22:58:8e:53:36:63:b9:24:5b:
8a:b7:29:99:bc:22:e8:ed:02:1a:c6:70:4c:87:a1:9d:83:ca:
ee:9b:4d:66:59:cf:1f:a2:23:ab:b6:d1:76:df:9a:c2:6f:4f:
66:e3:c9:1c:9a:67:38:51:c5:59:ab:8a:60:dd:59:9e:c8:02:
db:44:fb:9f:16:1d:0e:16:34:c7:cd:5c:88:54:f0:86:2c:d6:
aa:95:f1:09:30:4e:74:11:77:70:7e:61:b2:c0:d9:81:90:19:
22:af:0c:31:88:e8:33:b1:20:b8:57:79:57:64:c9:3b:a8:8c:
4c:ab:9e:86:e4:f1:7b:7f:28:f9:9d:66:15:5b:93:db:1d:a5:
6d:ed:3e:f0:7b:29:a1:6f:d4:e6:24:21:4f:08:b9:fc:fb:7c:
b8:5d:b7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:55:59 2025 by rpki-client