Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797d3498-a160-4006-845e-131ce55f21f5.roa
File: 797d3498-a160-4006-845e-131ce55f21f5.roa (raw, json)
Hash identifier: qCqM+Gc7LIareO6kfXuJWGcBA9TJeVlPPVSnCNtNlC8=
Subject key identifier: 13:E2:82:26:C0:C4:72:09:7C:5E:4D:03:33:21:11:62:9A:89:CB:9D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0750718C233CAF6A509FB3286C4F2C02EF951215
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797d3498-a160-4006-845e-131ce55f21f5.roa
Signing time: Sat 18 Oct 2025 01:10:59 +0000
ROA not before: Sat 18 Oct 2025 01:10:59 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f00:4000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:50:71:8c:23:3c:af:6a:50:9f:b3:28:6c:4f:2c:02:ef:95:12:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 01:10:59 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=2ca53961373ea0eb884773d88fcec66c62d7cd93c2ba0f614bde4a3c9f673d1b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:66:07:78:f4:95:42:de:77:ee:9c:13:9d:ce:
9a:2e:3a:16:3c:81:eb:fa:c8:81:e1:79:ea:c1:52:
45:c1:73:b7:fa:64:ba:2b:58:09:a0:73:56:78:3a:
0b:b3:a4:0e:0d:ab:9f:90:cb:69:21:b3:d5:20:eb:
13:19:9a:1b:95:57:3a:e9:42:3a:f5:6d:0d:cd:6e:
2a:8b:37:2b:d3:18:4e:9f:55:d6:88:f6:a5:d3:bd:
5f:92:e2:e2:68:32:1a:74:b9:31:c7:eb:af:39:b1:
1f:4e:51:e5:d0:dd:a9:40:d3:ad:6b:8d:00:d3:f5:
11:45:99:03:8f:ce:0c:70:ba:b8:39:7a:ac:aa:56:
49:a3:05:10:0f:33:15:81:24:b2:94:e4:3b:19:f0:
4a:9d:d9:3b:4e:23:b4:32:23:3b:1d:ec:54:13:30:
da:10:41:59:7a:84:ca:d9:dc:87:73:43:72:27:75:
7a:72:47:db:dd:4f:1a:e5:64:78:53:79:a0:55:7f:
cc:af:ca:c3:44:8c:b5:70:1a:1f:ab:60:d4:03:8a:
38:25:a8:a7:54:99:c4:b8:c6:01:0d:87:43:b9:05:
4a:49:40:d6:b0:34:2c:81:bc:e5:b6:77:d1:0d:42:
ee:bb:1d:76:57:1d:33:d3:35:f2:b2:aa:3b:5f:48:
0e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E2:82:26:C0:C4:72:09:7C:5E:4D:03:33:21:11:62:9A:89:CB:9D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797d3498-a160-4006-845e-131ce55f21f5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f00:4000::/40
Signature Algorithm: sha256WithRSAEncryption
a5:c7:2a:a1:30:24:70:5b:f3:e4:ee:11:4a:7a:b8:14:31:0a:
f2:0c:14:7c:59:cf:20:77:fb:95:41:41:6a:18:5b:55:3a:47:
40:d1:56:bb:24:56:8f:2a:1d:1b:f0:08:16:d1:48:ea:42:31:
6e:47:5f:4e:5b:16:e9:1e:db:10:f9:c4:2e:2d:7a:bf:a8:b7:
9a:11:ec:27:9e:67:1b:a9:62:71:1c:18:1b:1b:f7:c0:8b:c2:
31:19:e0:cc:cf:f2:f8:f3:92:56:5d:23:48:2d:39:ac:bd:6e:
0f:f3:9a:01:42:90:4a:a7:59:14:24:b3:5a:92:15:f0:8b:c9:
5e:87:d9:1c:1d:6d:ed:ce:7e:a5:6d:d5:00:1b:79:27:8e:62:
ba:9d:e7:39:8c:31:3d:83:e7:fc:02:87:dd:e6:40:31:6b:13:
ac:38:9b:ac:a2:67:54:72:14:a1:d9:1c:5f:12:d7:4e:f1:ca:
58:09:5a:2e:e7:99:45:30:01:97:49:0b:c6:6d:6a:30:3e:9f:
2f:4a:31:06:cc:25:cf:58:f5:c2:53:f2:65:b2:e9:6e:03:fa:
61:b6:c1:8f:80:a2:94:f6:92:37:2c:fb:48:63:2d:fd:37:0a:
ce:fc:bc:8a:a9:dd:5e:eb:79:9b:e6:28:25:0e:ff:94:57:dd:
ab:ae:7b:34
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Oct 20 23:36:37 2025 by rpki-client