Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa
File: 86b0210e-c29a-4d8e-9093-155ac5d225de.roa (raw, json)
Hash identifier: nLLD3tDXAcsJY7QyvmrMaujPd1vLImQr1E0K6DzT/aM=
Subject key identifier: 08:4A:AF:D9:AF:BC:B9:0E:56:CE:3F:9C:78:21:6A:3A:D7:D2:2B:C4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2A67DF2B3C1641D294C141BD017AF9F27E389B0E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa
Signing time: Tue 07 Oct 2025 00:51:45 +0000
ROA not before: Tue 07 Oct 2025 00:51:45 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.103.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:67:df:2b:3c:16:41:d2:94:c1:41:bd:01:7a:f9:f2:7e:38:9b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:51:45 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=9f0deda763c585f3d9082a1a32f3c105692eed3f6ed2f53648df1352c74ff566, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8d:c4:39:25:2c:75:56:89:fc:b5:5e:81:7d:
0a:f9:bc:a4:ac:a1:9b:fb:8f:6c:6a:d0:af:a3:c5:
74:97:f2:c7:7e:11:0f:b8:c4:9c:b2:e4:fb:88:8d:
18:84:42:51:c2:3e:d0:7c:4a:7a:70:cf:f0:c3:c2:
85:46:87:36:50:5b:bc:0a:db:01:04:77:71:d2:3f:
e6:e7:36:95:88:eb:15:60:03:f7:1c:83:e4:8c:04:
af:dd:c7:3b:72:a9:e1:b7:99:bf:ad:b8:da:e3:f3:
0d:1c:9b:c0:34:41:7a:63:a9:47:ea:69:0f:05:a3:
b6:82:7a:f7:be:b9:4c:6e:14:c8:e8:97:40:8e:3d:
13:78:51:a3:53:34:ab:1a:8c:e0:38:ae:84:ca:bc:
6b:af:06:43:e3:85:7e:5f:a8:09:00:3c:04:17:52:
c0:e2:6a:2e:6d:b6:74:ac:9c:50:44:99:52:05:54:
2d:a1:ab:09:01:a8:49:c4:c7:52:23:82:1e:a0:53:
93:a8:c7:d5:65:98:74:a4:94:19:54:9b:f3:4a:04:
39:9b:66:44:de:89:8a:28:b2:e0:cb:c6:d3:fe:0a:
05:10:b0:fa:9d:79:7a:15:c8:df:59:83:18:56:cb:
a3:33:0d:33:19:4e:1a:4e:25:b9:d4:44:30:06:a3:
e2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:4A:AF:D9:AF:BC:B9:0E:56:CE:3F:9C:78:21:6A:3A:D7:D2:2B:C4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ce:70:c0:66:dc:9a:f4:42:95:9d:a2:09:47:51:91:17:8b:6a:
fe:75:b0:54:eb:0d:05:d0:ea:fa:e5:36:da:4a:ee:44:0d:d4:
14:bc:53:90:b8:d3:0f:0a:b0:69:f9:8a:a3:55:d8:04:af:92:
b0:54:17:9c:b1:f0:3f:6c:46:bc:b5:e7:e3:f8:cb:94:3e:58:
6d:87:70:af:9e:bd:0b:a3:e3:e7:47:d1:54:82:08:5e:5d:99:
a0:60:f2:2c:a5:a6:17:e8:7e:ee:b2:3a:95:f4:59:62:8d:e3:
a6:bc:49:fc:35:01:d9:76:4c:6d:20:24:99:5a:20:9f:95:20:
3d:fb:41:87:a1:02:f3:b0:8a:4a:f9:fb:3a:09:86:14:59:6d:
fe:e8:22:33:78:4c:8c:ab:50:06:7a:ea:6f:1e:7c:b5:26:9b:
83:af:7e:df:f6:cb:f4:e2:da:6f:e8:7a:5d:04:0a:4e:5c:ed:
52:e3:a9:71:5a:3d:14:45:e4:6a:01:89:27:82:5f:3c:d9:2d:
f2:22:65:46:68:31:9a:ba:e6:78:7e:fe:f9:9f:c4:36:4f:3b:
2d:7a:b1:44:8e:29:74:09:19:37:7c:7c:38:e6:85:36:5e:56:
38:df:74:89:d9:2f:de:8f:c7:63:7e:99:2b:b2:2e:1d:8d:1a:
9e:03:fc:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:06:44 2025 by rpki-client