Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa
File: 6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa (raw, json)
Hash identifier: 1Ex8xBlXmGmsQFeDQXPcHTrkgV+0KYNbhy+6xayq6uU=
Subject key identifier: 15:26:D5:A9:3F:13:44:5D:94:14:E0:8A:6A:F3:7F:CE:DE:89:09:0E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 285D984B63973BC26AA3CFA92625C26B5923D31A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa
Signing time: Sat 27 Sep 2025 00:02:22 +0000
ROA not before: Sat 27 Sep 2025 00:02:22 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.11.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:5d:98:4b:63:97:3b:c2:6a:a3:cf:a9:26:25:c2:6b:59:23:d3:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:02:22 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=1854ddeb20a7eb7ae36adf6d586b099f8dc02b2701c14ee583493acfec810712, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:69:ed:3e:f4:c0:70:ee:94:a8:d0:a4:3e:2c:
c2:26:d2:32:ec:9f:a2:0c:e6:c3:91:5c:bd:ff:7a:
c9:7a:81:6e:95:ba:72:95:07:9c:90:61:0b:4d:3e:
26:58:34:ae:48:7f:71:ac:c7:98:c0:9e:31:b0:11:
29:fb:78:d1:ae:d2:4c:91:b3:44:86:b4:f2:cd:f6:
e2:97:1b:cb:72:60:63:7e:76:e8:7a:56:4e:50:2d:
65:b7:a2:51:4e:33:32:2c:be:82:be:8b:3a:4b:e9:
ea:d4:20:e5:4f:25:6a:b3:bd:24:ee:c4:ef:ec:c1:
16:b9:ef:db:e2:05:ec:b1:20:23:1b:3a:79:57:8b:
7a:58:47:a5:2b:54:27:8c:31:15:cd:8a:71:29:a7:
5d:dd:61:78:76:cb:ad:f3:14:50:03:d3:66:2f:2f:
aa:ae:a2:79:07:31:58:02:2d:ef:94:52:67:8f:d7:
51:42:4c:93:95:21:1e:c7:99:28:f9:d6:18:d1:32:
69:fa:29:84:a2:e6:53:d7:d0:aa:07:d2:5c:ed:13:
24:3f:25:06:a6:95:fe:d1:0e:2d:82:6d:45:01:8c:
b7:fc:49:fc:23:ae:e5:00:36:44:e1:a5:9c:95:35:
6b:08:27:a8:72:65:51:fa:df:17:ce:d9:61:ba:74:
7a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:26:D5:A9:3F:13:44:5D:94:14:E0:8A:6A:F3:7F:CE:DE:89:09:0E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.11.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:e0:a9:21:fb:a3:66:0f:77:31:eb:ff:79:2e:64:e0:9d:bf:
0a:9c:28:2b:77:74:9d:4b:24:0e:f7:83:75:f2:8f:80:7d:4f:
77:53:22:6a:7e:f7:c3:af:00:7c:91:11:5f:39:e6:da:78:3b:
16:b3:93:28:96:a5:17:1d:37:0e:bd:f8:fb:2d:16:54:40:d0:
93:57:2b:1f:d0:5a:ed:bc:da:47:24:b0:ed:17:1b:43:95:c5:
f6:1f:07:11:41:af:35:9a:e0:51:13:10:01:28:4d:b9:97:c5:
1a:33:0b:53:98:5f:d2:14:67:3e:ff:21:2e:34:0d:88:75:3e:
e0:27:b6:0a:db:f7:dd:56:93:87:2d:6c:5f:12:22:d2:ea:5d:
ca:6d:b4:ec:75:33:40:5d:8a:f1:08:f1:33:3d:2b:c9:6b:e3:
57:82:d0:57:1e:2c:f9:a5:4d:f9:53:2d:c1:80:99:94:ca:f4:
37:d4:e6:f9:c5:dd:1e:49:69:7c:38:5f:8d:8f:32:c3:be:a4:
28:f7:16:a2:96:17:cf:a8:1d:a4:dc:e4:58:e3:1a:91:36:28:
18:8c:16:90:ef:76:ed:70:18:33:66:b0:1a:15:41:36:ff:b6:
57:7b:0b:e4:29:d2:a3:ac:41:71:38:cd:b6:2f:90:7b:cb:75:
2d:79:32:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:02:41 2025 by rpki-client