Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4df06b-3548-461b-a74c-4446484dc350.roa
File: 6e4df06b-3548-461b-a74c-4446484dc350.roa (raw, json)
Hash identifier: 7ulgxxYE1BEzT3yD4WNvCFhg+Ga2bHs0C9lAC7/IPrY=
Subject key identifier: 19:4A:CE:89:F7:73:C1:12:18:1A:72:08:E1:1B:B4:DC:EE:93:E1:B7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 64389BAADA52C6F93BC5C0DD9A3D220C33BC7A25
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4df06b-3548-461b-a74c-4446484dc350.roa
Signing time: Fri 03 Oct 2025 00:01:31 +0000
ROA not before: Fri 03 Oct 2025 00:01:31 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 8987
IP address blocks: 16.65.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:38:9b:aa:da:52:c6:f9:3b:c5:c0:dd:9a:3d:22:0c:33:bc:7a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:01:31 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=70e56676a30ef53e7cf0518ee575d7730ef8ceb21ed49e387b5b1ae335f0ffba, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:85:ae:df:fc:4a:fd:6f:17:6e:2e:40:db:de:
03:c3:df:f4:df:ef:db:56:c7:57:1d:39:5f:8a:37:
1c:fc:0e:15:87:20:4c:0a:57:82:96:a8:5e:eb:24:
a4:53:35:8f:f0:18:58:db:40:64:16:93:2b:96:f9:
20:2a:fd:50:9b:81:8a:e0:a0:49:35:df:51:67:c8:
9b:2c:ab:61:f6:57:8e:25:7d:b8:b3:5a:89:d3:38:
d6:be:72:5f:38:0f:3f:a1:60:b9:77:fe:29:df:5a:
81:bd:1a:2e:ca:03:a8:6e:2e:42:72:c6:8c:1f:a9:
d6:02:37:80:e0:b1:67:6b:e9:7d:26:ec:d7:fb:9a:
b1:d5:8e:eb:3a:57:54:44:19:b2:fb:d3:0f:f4:16:
7c:f4:df:95:63:3d:a8:f5:1b:ef:23:19:1a:52:a4:
d5:67:a9:03:a6:e3:be:b5:c8:c9:24:23:46:ff:dd:
e8:1f:7a:a3:62:18:c8:26:c5:01:46:dc:3a:bc:06:
c4:e3:c1:c2:3f:1c:9b:2d:60:3b:21:4b:6e:39:19:
32:29:f6:a4:eb:cd:5a:28:81:ce:78:c5:2a:6d:38:
2f:87:cc:35:86:55:88:29:46:78:e7:31:76:65:17:
34:98:b5:3e:00:fd:52:73:ee:e4:14:95:61:76:09:
73:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4A:CE:89:F7:73:C1:12:18:1A:72:08:E1:1B:B4:DC:EE:93:E1:B7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4df06b-3548-461b-a74c-4446484dc350.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.65.0.0/16
Signature Algorithm: sha256WithRSAEncryption
54:ba:a8:9c:d1:f8:4d:af:06:3a:da:c5:46:1f:bf:3e:f1:96:
55:25:80:cb:a6:91:ec:c0:48:13:32:36:9e:d2:69:4c:1b:52:
8b:08:8b:c3:21:b9:2a:68:82:05:b6:72:76:05:b3:01:bd:ad:
14:46:2c:2b:d5:6c:f5:61:b5:a9:af:ae:8c:8d:4b:3a:0a:aa:
64:9a:c9:be:36:91:0f:bb:df:d1:a3:81:c7:2d:43:4e:54:5f:
d1:c5:a0:8a:e6:3f:b9:af:ba:53:7f:e2:c9:f4:b2:86:5c:29:
7e:4b:f7:ff:52:6f:81:9e:87:9d:a2:f6:15:6a:8a:97:7f:f2:
ca:e4:ee:34:a4:a1:37:6d:6f:9a:c8:e1:fd:f6:3d:0a:77:a2:
68:0f:1a:ab:0a:76:67:13:67:7b:38:da:06:c8:33:76:c2:a5:
de:29:3a:ca:1c:56:d1:42:98:90:d8:8a:fc:31:17:d8:be:b9:
ee:24:57:b2:f5:18:08:30:4c:eb:3b:8b:71:8e:ab:73:a4:7b:
85:df:f6:64:e9:dd:43:78:4b:83:0b:e1:48:29:25:60:03:65:
c0:9f:0f:7e:27:aa:29:5c:ee:6d:5e:d1:09:52:3c:d3:7f:f1:
9c:d4:7b:f5:8d:2c:47:2d:6a:94:b2:06:83:d2:25:fe:a9:d5:
95:e0:7f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:23:12 2025 by rpki-client