Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa
File: 8998c883-9e67-4bcf-a61e-660dce0482d2.roa (raw, json)
Hash identifier: ySLro9tfeDmageFCZCGWB0eo6mLyWsfMSOM3bCLLapU=
Subject key identifier: FB:26:82:4D:15:F8:FB:7B:F3:3D:22:D4:89:45:26:72:22:23:BD:40
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2DC260E6E91CB36FC356C6CE98B6853D36AE6FB6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa
Signing time: Sat 18 Oct 2025 04:01:47 +0000
ROA not before: Sat 18 Oct 2025 04:01:47 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f61:e040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:c2:60:e6:e9:1c:b3:6f:c3:56:c6:ce:98:b6:85:3d:36:ae:6f:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 04:01:47 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=7f4dedd39027b12e9644144fd5eb6c384a60cb86e8bf280df36f4c9f33096375, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:be:02:bb:2e:27:57:92:ab:64:b9:b2:74:
97:c1:fc:3b:2d:b1:42:c1:ac:52:36:5e:b2:30:6a:
3b:c5:15:7e:c5:92:2a:f3:18:9c:d4:09:0e:cc:e7:
e0:3e:bd:45:f1:b4:67:a8:30:a1:0b:31:01:0a:0d:
ef:88:2a:db:a9:3e:e3:e3:57:2c:b9:62:74:30:03:
94:e1:44:55:00:8d:9d:91:4e:e5:f5:76:f8:f6:38:
08:22:29:3c:11:36:f2:43:c7:98:b1:a5:77:c9:98:
dd:51:bc:8b:5e:93:04:01:a4:4e:ac:31:8d:70:e1:
32:60:81:00:b6:3c:ce:eb:98:c2:70:cb:f0:63:97:
0f:bd:cd:41:4c:b6:51:ff:22:34:ea:f5:b0:1e:6a:
1f:6f:bf:63:41:d4:63:f5:d6:47:f6:13:3f:3e:4c:
09:f2:b0:f4:20:56:de:7b:52:d1:a9:7d:8e:f8:c4:
85:4b:f4:20:97:cb:84:8b:f1:cf:b5:f4:e9:cd:00:
03:62:2c:85:82:63:de:89:da:0e:f9:25:74:aa:a6:
f6:f3:38:0c:91:28:f5:95:13:1d:bc:1e:37:9b:41:
96:6d:2c:20:af:8c:2f:e3:58:5d:06:46:54:08:89:
ae:9c:89:21:04:9a:eb:78:ce:ff:bd:cd:14:ac:39:
bd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:26:82:4D:15:F8:FB:7B:F3:3D:22:D4:89:45:26:72:22:23:BD:40
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f61:e040::/48
Signature Algorithm: sha256WithRSAEncryption
c7:79:49:2f:bb:be:e0:27:f7:87:52:02:a5:1c:68:8c:46:22:
73:12:23:89:80:0c:41:b4:81:66:9f:c7:ce:2c:8e:c1:dc:62:
76:40:0c:c9:fd:03:ea:02:75:6f:9d:48:fe:64:37:0c:bb:fb:
b8:f0:ef:57:ff:aa:a1:ab:c8:20:aa:1e:99:03:9c:26:a6:e2:
08:10:54:5d:41:dc:ac:0a:07:98:0c:a4:4c:16:d8:ba:f3:a7:
e6:cd:ad:64:9b:60:03:45:98:75:62:3c:e2:3b:24:68:ff:46:
da:55:1e:7e:8f:ae:27:f0:fa:dc:df:86:15:ac:5e:90:ee:44:
86:bc:b6:6c:09:6f:d9:75:df:fc:19:6c:bd:38:3c:16:26:24:
4e:0b:bc:83:5e:58:f6:45:71:98:79:2d:43:7e:7d:f0:bb:b9:
2f:60:0e:fa:a3:bf:d7:37:3c:e9:51:ea:90:ca:a9:af:6e:46:
17:a2:3d:b7:3d:df:6a:ee:57:d0:23:37:4a:de:1e:f0:af:a4:
8c:b5:57:0a:d8:f0:76:09:9e:3e:75:30:58:3d:9a:0c:f5:93:
10:ab:74:c1:3a:5f:be:66:e6:e9:b0:cb:e6:24:16:69:54:aa:
bb:4d:33:ad:24:b5:b9:47:9d:9c:10:61:ec:18:f5:15:47:da:
7c:c2:e2:3d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:10:55 2025 by rpki-client