Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84f379a5-7566-4771-9096-e4caa876ae50.roa
File: 84f379a5-7566-4771-9096-e4caa876ae50.roa (raw, json)
Hash identifier: asCSVDS0kPu4al2+DdiiDnob6eueo+HNp1FMJwS/6Go=
Subject key identifier: 03:F9:81:60:B3:9C:C6:98:13:CC:D7:D0:9D:9B:12:AD:01:50:B7:44
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 62F8F43BD787FC6476EC7DD9EFEFCBA355DD27BD
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84f379a5-7566-4771-9096-e4caa876ae50.roa
Signing time: Sat 18 Oct 2025 04:40:02 +0000
ROA not before: Sat 18 Oct 2025 04:40:02 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f00:7400::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:f8:f4:3b:d7:87:fc:64:76:ec:7d:d9:ef:ef:cb:a3:55:dd:27:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 04:40:02 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=699e2446c38406e7b425a3cfc2a673bdd36ce199a5f08848c589a1a491cb33dc, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:86:20:81:78:1c:14:dc:bc:f0:0c:77:c4:
62:8c:8c:eb:96:8c:98:3d:a3:96:18:b3:d1:e0:25:
4a:de:89:0a:09:af:78:36:f4:11:80:3c:ce:fb:01:
4b:b3:f8:10:62:68:8a:18:f5:8c:3f:6d:8c:e5:9b:
09:bd:40:95:7e:87:96:16:cb:c6:b6:7b:bb:0d:1c:
6c:12:0b:f5:8d:91:50:e1:35:db:60:31:83:a5:3e:
f3:49:45:29:94:f0:e3:ff:14:da:e1:ac:29:a6:4a:
84:b7:48:5d:a7:74:c4:75:b6:69:40:c2:b2:50:2a:
57:1d:c3:94:ad:89:a0:d2:98:5b:47:de:f0:7c:6c:
66:98:37:90:0e:ef:59:38:00:07:19:23:04:a8:de:
94:74:4e:87:40:ed:b5:5e:f0:14:0d:d3:f0:8f:e1:
98:96:c9:8a:cd:68:e2:63:b7:9c:d5:0d:a9:f1:4e:
8a:d3:a1:e9:ac:9f:13:f1:75:34:fb:35:ee:c1:a2:
34:34:2c:75:b2:1d:fe:14:4b:8e:fa:d6:35:37:45:
d9:a3:14:39:05:fe:28:a8:70:f1:2a:60:1a:fb:b9:
a0:f4:26:f0:bc:73:c0:1a:26:6b:27:3f:14:c4:9b:
c9:14:ba:64:cd:21:da:fc:3f:7e:a1:b3:5a:47:cf:
a4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F9:81:60:B3:9C:C6:98:13:CC:D7:D0:9D:9B:12:AD:01:50:B7:44
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84f379a5-7566-4771-9096-e4caa876ae50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f00:7400::/40
Signature Algorithm: sha256WithRSAEncryption
6c:b0:b9:ea:47:3f:f6:7a:be:ca:68:c3:28:a3:8c:40:28:40:
57:9a:e6:25:78:f3:72:ef:c9:3d:c9:31:93:8c:30:80:b7:ba:
cf:6a:e2:98:04:b1:10:e2:e3:8e:34:cb:a9:7e:7a:ea:93:6a:
24:b8:10:1b:d8:b4:ee:7b:a1:55:67:8a:e5:96:2a:f9:4f:b5:
af:51:2c:3f:e0:dd:38:0c:47:ef:26:57:93:ef:f4:5f:6f:e1:
cb:ca:d7:89:3b:3a:81:d7:f7:53:a0:81:fe:46:90:4b:b3:24:
ec:88:2b:17:1b:d8:a7:22:bf:2f:39:f1:b7:7b:f7:34:66:2f:
76:2a:b8:f3:83:43:ff:77:12:da:27:fa:0f:4f:1f:db:0e:0b:
36:3d:88:e3:ef:7a:b2:11:98:15:91:e5:22:5b:94:4a:07:ea:
06:95:fd:e8:8f:1a:95:4b:d9:d5:93:2f:ab:e8:20:cd:5b:8f:
e7:a6:3c:cb:de:39:76:62:f6:d3:8e:22:ec:15:40:86:42:46:
cb:d1:31:ed:a0:92:f2:4d:38:9a:dc:02:df:82:da:54:85:63:
30:77:8b:98:82:3d:09:60:cd:90:49:26:f3:9e:5b:9f:10:d2:
1b:4c:ba:f4:08:11:b7:c5:70:77:55:61:b8:0a:93:0b:d2:23:
46:5b:06:31
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:34:24 2025 by rpki-client