Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73d38cbc-8e57-413b-a607-243ebf7b63e0.roa
File: 73d38cbc-8e57-413b-a607-243ebf7b63e0.roa (raw, json)
Hash identifier: v/jJYprFHk2wDdVlk2Fin7L2TnDTIQ/8gDNZC8e0r3Y=
Subject key identifier: 56:73:B9:A0:39:BE:E1:B3:B4:7D:95:46:94:05:4F:0A:6C:5B:E2:55
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2744F2218D9881F2926DFD5816299F5B63DA0E78
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73d38cbc-8e57-413b-a607-243ebf7b63e0.roa
Signing time: Sun 19 Oct 2025 02:01:06 +0000
ROA not before: Sun 19 Oct 2025 02:01:06 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 210.56.66.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:44:f2:21:8d:98:81:f2:92:6d:fd:58:16:29:9f:5b:63:da:0e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 02:01:06 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=94364c9195832e95e751380762da7fb898cc912c84d1c6a378e9f74b0d913c00, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:44:01:7a:0c:e6:d9:c7:0a:b8:a8:ed:9e:8a:
5d:b0:74:39:61:69:c7:e4:cc:b7:4c:f2:fe:47:20:
ec:46:0e:1f:37:ab:a8:4d:cb:2c:4f:86:6c:c6:19:
62:a9:02:65:fa:c6:d3:c1:a8:52:e1:21:f1:c1:ad:
d8:27:bb:3a:15:2c:54:eb:c0:7f:09:69:4c:c2:8d:
6d:e0:cc:a5:f6:a7:e3:66:6f:8c:a3:3c:f3:e4:ad:
3a:2d:33:84:62:8a:cb:9e:8e:7d:eb:37:3f:a0:6d:
5e:4c:10:6e:1f:0a:0a:da:f2:b4:8a:e7:8f:7c:34:
86:6f:3c:e1:ef:20:36:7d:f6:c6:d3:60:9a:93:a4:
79:f6:e1:be:2e:97:ea:87:5b:cf:6d:9d:dd:65:29:
af:51:ec:22:cf:d6:de:b2:77:9a:14:82:8b:bb:78:
fa:5c:58:e5:11:62:ee:ca:75:e5:76:c9:1d:4f:24:
aa:4f:78:8d:17:3d:47:5b:95:88:76:d0:58:f5:28:
81:22:43:3b:df:e2:a6:19:3b:71:1c:4e:29:49:df:
c5:0e:6c:98:67:42:93:33:7b:1d:3c:eb:a0:b0:c3:
02:1f:ce:98:7f:ce:c3:eb:a1:f2:90:da:b8:fe:67:
f8:91:4d:fe:48:ff:46:d4:49:f7:61:ed:4f:16:c1:
fc:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:73:B9:A0:39:BE:E1:B3:B4:7D:95:46:94:05:4F:0A:6C:5B:E2:55
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73d38cbc-8e57-413b-a607-243ebf7b63e0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.56.66.0/23
Signature Algorithm: sha256WithRSAEncryption
70:20:aa:e8:94:b3:43:04:5c:cf:9f:b3:e3:21:19:96:f1:3b:
2f:cd:72:44:81:29:85:2a:40:de:98:c5:98:41:fb:5f:88:df:
54:da:c9:cb:68:1d:fc:3c:40:08:da:ad:ef:20:46:62:28:90:
08:dc:d9:c3:c7:54:b4:cf:e7:68:80:6b:07:1c:20:37:91:04:
a2:ad:b1:df:23:c9:39:2a:98:33:66:69:f6:15:60:e1:e8:ac:
e6:40:ec:0b:99:51:81:bb:ac:9d:0b:95:8f:3b:50:e0:f7:5f:
8d:2e:a7:a8:9b:cb:48:73:c9:53:9c:a9:be:56:ba:2e:26:28:
5b:f6:ac:10:11:21:bb:19:53:7a:09:ed:26:11:53:e8:b5:7a:
9a:d6:c3:13:17:45:fd:9a:43:b1:8c:8d:db:73:cc:e5:77:d0:
03:09:1e:13:a9:ee:d0:45:1c:c9:a3:dc:56:d7:8d:19:f1:5a:
f7:b6:84:6a:e3:37:b6:18:e7:03:86:bd:7c:ec:c5:b5:07:b1:
cc:0b:d3:86:ad:2c:83:42:bc:6b:1f:f1:0c:18:56:84:55:11:
fd:fc:c5:60:58:65:e6:4d:3c:6b:69:69:3c:4f:6a:cd:c2:9b:
5a:d3:51:d5:d0:c4:f9:0e:6a:de:42:22:76:af:56:6d:33:d9:
f6:86:86:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:45:44 2025 by rpki-client