Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa
File: 811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa (raw, json)
Hash identifier: trEd8pXL+9iAJstjpqiBaTFvmFUa6SIYbwoPYv43mhQ=
Subject key identifier: E1:01:F8:5D:4D:EF:D6:47:7D:F5:E2:A1:39:27:00:8A:18:4A:44:FD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2E6D229A63919A1D53DF25C7E915980E39079B4E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa
Signing time: Tue 30 Sep 2025 00:23:03 +0000
ROA not before: Tue 30 Sep 2025 00:23:03 +0000
ROA not after: Tue 04 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.92.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:6d:22:9a:63:91:9a:1d:53:df:25:c7:e9:15:98:0e:39:07:9b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 30 00:23:03 2025 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: serialNumber=4face095e9e211b14c4ae0fc5c55830fee2f7bec60d99d9a04c90e082797b2a0, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1c:c6:c2:cb:cb:bc:d1:57:48:fa:3c:75:37:
c9:18:78:fa:6d:64:6e:fd:92:9c:f8:7b:cc:8a:82:
8c:46:aa:8b:da:b7:a6:ac:0a:d9:56:4a:a0:37:37:
cb:dd:03:ea:73:8e:26:43:53:7a:7d:61:9c:23:89:
a8:01:a6:10:eb:23:4e:ca:a0:5f:a0:85:e8:cd:d8:
02:1d:e6:85:7c:8c:42:0e:dc:b5:4b:17:b5:9d:51:
7f:e8:d2:af:d6:b1:5f:e7:92:a3:fd:ea:f4:04:ec:
b1:3e:79:e9:6f:b8:52:1e:02:1c:34:3c:fc:da:a5:
b7:17:e1:73:94:61:9e:c0:2e:03:e8:87:93:83:e2:
1f:94:ae:a6:a0:3e:2e:a7:e6:43:f9:5e:a9:51:fd:
09:ee:2a:3a:54:6a:2c:10:99:8a:15:59:1c:79:5a:
01:84:48:90:7a:f3:f8:20:cb:cd:1a:d8:83:a9:17:
31:cc:cd:5f:25:96:a5:83:29:f7:88:d9:59:3b:ff:
8c:15:de:0c:f5:ab:09:fb:01:d3:4a:c6:d4:be:02:
f8:72:7e:dc:f4:04:e2:b9:72:02:c9:05:f6:b9:6d:
b7:f7:6e:53:b9:3c:4a:1f:bd:29:89:73:fe:e4:46:
cd:11:f3:89:4c:a1:4c:07:01:29:ad:8a:b8:db:93:
43:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:01:F8:5D:4D:EF:D6:47:7D:F5:E2:A1:39:27:00:8A:18:4A:44:FD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.92.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6b:26:bb:7a:f4:f1:12:12:4e:5d:24:a0:2c:3f:e4:20:e8:12:
47:b1:0e:05:52:55:f7:1d:4e:61:32:52:95:08:69:70:55:0a:
f4:54:a7:3f:24:5a:e5:3d:f7:02:ab:38:f1:e9:5e:ed:a8:ca:
0e:2f:9b:71:15:51:dc:7a:50:b3:c0:7d:40:f4:e3:4c:17:20:
68:45:dd:da:71:90:71:f4:a3:0d:38:c2:2d:66:35:0e:21:a5:
ec:02:25:ed:a2:b4:23:79:4a:2a:15:c9:84:eb:93:f7:5d:40:
a0:8b:d1:a4:95:84:70:b2:01:7e:80:ea:2d:92:f9:5e:c5:6a:
12:d0:f8:36:e2:b8:a6:26:00:77:82:e1:6c:9f:2f:88:c1:48:
d6:c9:7a:52:89:dc:aa:5e:0c:92:1c:b1:d2:ea:d6:b9:a5:17:
a6:40:da:e8:2e:f5:b1:f8:6d:b7:f9:a7:3d:bf:b5:20:77:68:
c6:f2:4d:bd:d3:dc:7e:d8:2c:6c:44:3b:c9:9e:43:90:33:2d:
91:c6:b5:49:bf:7a:34:d5:29:04:e6:cf:eb:75:ce:03:9e:84:
9b:94:09:ec:84:5e:74:0b:b1:6c:aa:3c:e0:b6:02:fb:29:ab:
bc:63:7a:d4:41:a1:2f:67:67:e8:94:40:9b:13:8f:38:6b:82:
df:04:19:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:03:05 2025 by rpki-client