Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f05e9af-40c1-4b64-8acd-465c0b672d25.roa
File: 8f05e9af-40c1-4b64-8acd-465c0b672d25.roa (raw, json)
Hash identifier: m6IJTvdyxSDErEy+W1ZOL1z16nPP4Th6qVLrMSjTIBw=
Subject key identifier: 3F:BD:00:03:34:37:A1:2A:55:BF:F5:A8:05:41:11:39:BF:19:A7:34
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 54499C7AF15EE28185D747A733DB46430F6615ED
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f05e9af-40c1-4b64-8acd-465c0b672d25.roa
Signing time: Sat 04 Oct 2025 00:52:29 +0000
ROA not before: Sat 04 Oct 2025 00:52:29 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff3:e000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:49:9c:7a:f1:5e:e2:81:85:d7:47:a7:33:db:46:43:0f:66:15:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:52:29 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=fe4ff34bfdb3461eb8dc5d8b08adc05f767ac4528025a0a8a47719fd9bd8c957, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3a:23:9c:7e:a8:b4:41:a8:64:ea:21:77:1f:
ba:61:fc:e2:a5:34:ee:55:da:e7:8c:76:e9:dc:7f:
38:12:38:1b:ab:27:c7:6b:eb:6c:f2:2c:0b:ee:3e:
31:93:01:37:0f:ae:93:8b:99:2a:63:d3:f0:0d:49:
e9:8a:c5:8d:0f:e5:ff:08:71:ee:0e:d0:7f:76:f2:
0a:5d:a5:e8:63:a7:48:5b:4b:09:84:4a:dd:d4:c3:
93:8d:65:9e:b5:89:f3:ce:28:d4:84:d9:1a:f0:aa:
8f:a2:ad:36:b8:a7:49:f3:05:58:8c:fb:03:27:d5:
cf:cd:b8:ed:4b:7b:ba:74:2f:27:4f:05:a5:af:71:
61:e6:df:ae:ee:87:98:d6:57:28:9b:57:9b:ed:26:
6d:de:cf:b7:60:cc:d9:93:c1:1e:99:b4:49:b5:d3:
21:b5:a8:6e:48:21:cc:78:23:a5:fc:b2:b4:7d:6f:
2d:51:19:09:bb:f8:3c:bf:c9:33:d8:e8:cb:b1:6d:
a7:c3:b9:f0:00:11:70:28:73:dc:fa:0c:cd:84:07:
08:8b:62:bb:f2:40:87:8c:41:c2:92:fd:7b:27:6e:
e5:d7:19:3e:7a:5d:5b:05:29:3e:81:65:1e:c6:92:
f2:3e:e9:a9:f4:f0:67:73:2e:f8:b0:1e:86:63:a7:
f1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BD:00:03:34:37:A1:2A:55:BF:F5:A8:05:41:11:39:BF:19:A7:34
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f05e9af-40c1-4b64-8acd-465c0b672d25.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff3:e000::/40
Signature Algorithm: sha256WithRSAEncryption
1f:22:fa:1c:6b:85:72:ab:77:2a:fc:d7:a2:cc:eb:03:29:c9:
4a:8b:d0:37:b7:4c:14:9d:41:ac:e6:bc:cc:d5:d0:49:7c:9b:
04:4d:a0:95:ea:da:a9:83:e6:f7:34:d3:6c:d3:2a:b5:f7:14:
b4:17:88:1b:8a:13:0e:14:56:f0:65:e2:ad:da:9e:83:db:f5:
32:00:0f:79:d9:1f:f8:99:86:b3:3d:93:11:3e:f0:ed:35:31:
05:7d:63:06:50:2c:86:aa:0e:ab:80:98:1b:5b:dc:10:ec:38:
27:5f:6f:f6:13:b0:f9:ca:16:9d:46:3d:3a:ed:75:5e:24:0f:
bd:a7:a8:97:de:47:5f:e6:f0:7e:f6:7d:e7:45:b0:06:2b:fb:
b9:1d:88:85:35:aa:9a:06:d6:bb:2f:0f:66:ca:ef:fa:60:52:
19:14:2e:c2:ba:34:bd:db:38:ae:a9:c8:b6:5e:5b:69:84:d3:
f8:21:f4:c8:53:66:3f:a5:7b:90:8e:9d:2f:8c:6c:e0:62:e7:
42:14:ef:66:b5:b5:fa:2b:ac:94:3b:a3:71:f9:33:33:a6:89:
e4:fb:11:cc:e1:49:a5:e3:ed:11:ef:ba:31:57:28:c8:1e:9f:
e2:b9:ae:b4:4c:47:87:d8:80:52:10:00:01:b7:32:81:30:1d:
b1:a1:c3:a2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Oct 20 23:22:38 2025 by rpki-client