Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa
File: 6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa (raw, json)
Hash identifier: UiD1r+TB+//Xb+SrDKSU3oP6D9J9zzDAloM3u7m8Z00=
Subject key identifier: FA:13:85:26:D9:B1:53:79:1D:D2:B8:DC:7D:2C:36:A2:16:E3:32:A8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 71DDFBE3295725B9DC654E2EE7280A3D92DDD50F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa
Signing time: Wed 08 Oct 2025 00:12:46 +0000
ROA not before: Wed 08 Oct 2025 00:12:46 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.126.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:dd:fb:e3:29:57:25:b9:dc:65:4e:2e:e7:28:0a:3d:92:dd:d5:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:12:46 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=2e1655b8461c88c50f05b2e948fea90ca86c12ff63b6dabb0b4532f58be87dcd, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e4:0c:be:c8:98:df:39:c1:09:54:e3:9f:6f:
a9:68:a1:57:82:aa:0a:30:29:1a:0f:47:57:1d:a5:
81:93:8b:4a:65:fd:c2:bf:0e:bb:0e:f6:e5:a3:4d:
7b:27:7f:1d:6e:58:4f:ed:20:2f:02:bf:4b:67:9c:
d0:90:85:24:4d:92:0d:19:7d:26:f2:24:05:f0:24:
74:38:29:4c:3f:d6:18:f8:93:e2:f8:8d:3c:d3:e7:
7e:6b:af:b8:97:35:53:41:7d:37:6b:af:a0:10:81:
01:7c:7a:58:fb:ef:16:57:33:9c:a6:fa:f1:11:a6:
4f:25:12:4e:aa:8f:26:9b:9e:b5:11:f5:1e:8c:bb:
5d:86:c7:a0:f7:7a:f3:71:42:92:1c:83:af:a6:dd:
24:ec:27:3c:d1:2a:ad:9f:c2:35:bc:fc:af:cb:77:
29:fe:23:a7:99:44:31:e2:86:0c:53:24:1e:08:cc:
8a:97:2b:cb:00:5a:80:d7:ab:3e:be:70:3a:fd:20:
19:13:05:5c:88:64:77:b8:cb:9a:e1:bc:bd:c0:4d:
4a:cf:bb:f5:18:c5:a2:1e:d0:8c:7b:ba:4f:8d:f0:
e7:30:7f:c7:4c:4c:df:93:c0:1a:d1:a7:4a:f7:45:
87:95:61:31:3e:13:bd:08:80:9b:5d:87:ca:42:4e:
92:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:13:85:26:D9:B1:53:79:1D:D2:B8:DC:7D:2C:36:A2:16:E3:32:A8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.126.0.0/16
Signature Algorithm: sha256WithRSAEncryption
91:ff:fa:9c:71:af:a7:f8:30:e3:be:14:75:f8:c0:65:a8:b4:
5c:39:a0:d8:57:b5:20:5f:6a:f3:ca:3e:6e:e4:68:c6:58:bd:
7d:9f:6a:c2:c6:21:8a:a9:a0:4e:05:b4:da:ce:41:8f:40:9a:
b0:04:8c:ab:d7:bf:9b:a9:be:c3:1f:1b:1d:12:fd:e2:4a:cc:
4b:10:da:67:0d:b8:5e:88:4a:17:e1:ff:e2:a6:7a:8a:d6:2d:
55:86:3c:75:7f:f3:9e:43:b0:78:77:24:1b:a8:a8:69:7a:1b:
97:4a:02:87:c5:a8:56:92:a7:33:ab:65:0d:82:8e:14:c0:21:
99:4c:89:d8:a0:b8:3e:f9:05:4c:a7:ac:15:16:3b:49:1f:b1:
71:9d:26:a8:2b:0e:23:b9:df:fe:26:e2:f2:f9:6d:93:59:18:
38:9d:96:1d:e0:1f:e1:c8:89:48:df:e9:10:de:23:f7:38:55:
75:c0:a6:e3:20:c5:ae:f3:32:4a:82:90:7f:17:62:2c:52:b5:
74:4d:42:2e:a3:13:bc:67:76:20:f5:ed:a4:74:ea:e9:1e:68:
b6:1f:4f:bd:4c:21:ad:e0:52:38:0b:53:69:4d:c5:57:00:40:
7c:2d:ea:0a:ec:4c:94:8a:4f:47:87:e9:25:82:76:0b:ee:b0:
40:44:32:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:18:40 2025 by rpki-client