Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa
File: 8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa (raw, json)
Hash identifier: 2BUWcCVQuIAskJioIyeXEibsG2C2RMo2TBew3tzwCdI=
Subject key identifier: 1A:A7:06:E0:D3:A1:4C:EF:9D:ED:89:07:B7:60:62:1F:7C:5F:BE:CC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 66C868000A7E4FB6CB808D3E26F91A2423A9ECD3
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa
Signing time: Sun 19 Oct 2025 01:00:07 +0000
ROA not before: Sun 19 Oct 2025 01:00:07 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.87.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:c8:68:00:0a:7e:4f:b6:cb:80:8d:3e:26:f9:1a:24:23:a9:ec:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 01:00:07 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=6dd25c5d1dc413a18b71cb4185e5107178e60d682837d29944a51c55462f695e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:30:26:53:82:d0:e3:ca:25:93:de:d5:af:ee:
96:be:48:d6:db:e5:cc:4c:85:1d:42:7d:0f:ba:91:
cf:29:60:24:ba:4a:11:14:ad:21:82:80:7d:1e:66:
9f:cf:b0:d4:64:bd:8d:1c:71:b5:4a:62:5f:81:f2:
11:d2:a1:af:70:1e:77:0d:8f:d8:82:e6:0e:ca:bf:
79:72:4b:74:40:58:00:f0:1b:4e:86:9c:dd:a6:a9:
7e:b5:b3:18:d1:97:fd:05:6c:da:11:d7:c7:7c:8c:
11:c2:8a:af:18:0d:79:b5:9d:67:a9:14:be:0c:76:
3f:de:71:ec:9d:e0:8a:36:11:1b:07:3c:99:6b:da:
98:c1:23:21:d9:07:ee:1a:77:2c:14:6e:b9:0c:31:
ea:21:5c:33:73:96:9a:c7:c5:2c:95:a0:b9:68:c4:
03:06:5a:78:2a:36:17:fe:31:5a:c6:14:09:49:99:
17:12:cc:d1:95:22:26:84:ad:48:4b:9d:2d:6f:30:
03:e0:5c:3f:45:ad:d9:6c:3d:03:45:8f:77:2c:2d:
fe:eb:13:97:d7:c9:1e:28:6f:c8:32:c4:d3:cb:7b:
8c:e0:3d:4a:b3:7f:f2:1a:11:6f:06:ed:39:d4:d7:
ff:cb:0b:dd:d7:57:cb:fb:d5:41:5e:d3:64:0b:30:
91:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A7:06:E0:D3:A1:4C:EF:9D:ED:89:07:B7:60:62:1F:7C:5F:BE:CC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.87.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ea:e1:e8:66:8c:bf:4d:25:c6:7a:be:69:7e:f0:35:4a:22:
fb:fc:2a:8c:d8:71:96:50:47:3b:b4:fb:f3:ff:60:ee:ed:84:
e2:a9:3a:37:85:89:14:51:ba:63:04:64:0e:a6:1e:a7:17:8f:
73:f7:e5:60:7b:cc:58:c7:7a:18:cf:25:4d:ad:71:a5:35:81:
c2:c0:b6:87:62:ea:8e:c5:4d:94:1a:a6:c5:87:71:cf:5f:d6:
e8:a5:1f:24:95:c5:a7:d6:e2:77:ca:7c:1e:68:40:91:11:81:
b0:db:17:e3:cc:c1:e7:30:02:f1:15:32:15:02:03:1c:cf:46:
fe:49:17:91:b4:8e:8d:14:a6:5b:dc:ef:07:2b:13:51:f2:86:
ac:0a:22:cb:21:44:b6:f8:23:1b:ee:d4:16:a4:70:05:56:79:
b9:21:a4:29:46:d0:2f:2f:09:8c:16:2e:74:2a:64:9a:60:13:
f9:4a:a6:dc:52:b9:e7:eb:ee:bb:a0:db:bf:3f:e8:82:5c:e0:
2b:d7:c6:fc:f4:2d:bf:da:38:c1:c5:c4:e3:e5:0d:8b:1e:99:
7b:18:52:10:32:22:fb:b1:a6:eb:93:e6:a2:6a:30:62:0f:3f:
78:67:d8:5f:58:c6:88:6f:f2:c7:b9:08:a0:96:f1:60:4d:20:
c0:cf:5b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:07:54 2025 by rpki-client