Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9016d464-470c-4275-ad72-fec6b76b99c4.roa
File: 9016d464-470c-4275-ad72-fec6b76b99c4.roa (raw, json)
Hash identifier: v0aSL/Ld22Nz9g1qvWqYpzPs8slXfxyQA3TtCLhzS4U=
Subject key identifier: 99:E0:EF:E6:BD:3A:48:D0:B1:60:24:A6:DB:4D:3B:56:68:37:5B:D2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0EFB785E76D5865051FBFC6A8886BF5C077E7078
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9016d464-470c-4275-ad72-fec6b76b99c4.roa
Signing time: Sun 19 Oct 2025 00:20:47 +0000
ROA not before: Sun 19 Oct 2025 00:20:47 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 143.227.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:fb:78:5e:76:d5:86:50:51:fb:fc:6a:88:86:bf:5c:07:7e:70:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 00:20:47 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=84c1169498ce0dae19980f8a13cfc3f189d4f61e5775011ef85794eda2225eee, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a1:59:3c:2a:a3:1c:1d:2d:40:4c:97:43:6b:
1a:0d:1e:40:45:4f:04:45:04:81:0a:57:77:57:ef:
17:33:99:be:46:34:45:fc:00:dc:a4:26:78:15:12:
5b:5c:80:7e:67:94:73:b0:03:5d:89:46:cc:8a:3b:
0d:01:e1:11:3e:b2:85:b8:6b:bd:67:1f:0c:dc:19:
1c:db:fb:0d:22:20:01:6a:91:26:32:b1:db:3d:aa:
de:f3:d3:84:92:2f:ed:ab:22:bb:db:99:72:cd:ba:
29:5a:06:2e:07:44:35:a0:a4:92:f3:9b:27:27:5a:
90:e3:0a:3f:90:76:c4:11:61:be:39:2a:b1:2a:06:
99:bf:7c:5a:7c:23:2e:21:f0:0d:9d:30:92:c0:24:
2c:4d:4f:5e:b5:d3:37:eb:32:35:b6:94:dc:9f:ce:
69:66:0b:34:e3:6a:70:bd:23:f9:7d:c3:f4:1e:9f:
1d:d1:b3:25:af:34:14:c6:03:1f:db:6c:e6:6a:aa:
d6:b3:a9:73:03:e6:6b:60:2a:e2:c3:e5:02:93:ca:
f7:6e:86:7a:5f:80:9c:2d:99:2f:8e:9f:65:8e:37:
03:b1:98:c4:cb:e2:29:ea:4a:43:26:fc:5b:eb:f1:
54:4c:fc:7e:24:f1:8c:de:49:49:6f:ab:88:f1:b0:
b9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E0:EF:E6:BD:3A:48:D0:B1:60:24:A6:DB:4D:3B:56:68:37:5B:D2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9016d464-470c-4275-ad72-fec6b76b99c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.227.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6d:e1:c4:88:35:bd:92:8f:0e:da:d9:74:ef:ab:b8:d7:aa:5f:
00:f9:e4:27:81:56:c4:59:27:86:30:11:9e:cd:d7:73:15:7b:
07:f9:cc:6c:de:63:99:a5:49:db:5d:74:37:48:65:51:ed:3f:
f3:9d:42:ad:b2:1e:9b:67:8f:0a:47:ff:ab:4d:0c:4d:36:5a:
66:87:63:36:3c:e2:c5:33:55:71:31:e1:1d:d4:eb:fc:53:96:
44:bf:ae:80:f9:a5:0a:b9:3f:11:94:e5:d0:00:ba:4c:ca:07:
1e:c5:3f:5a:4d:08:4a:ea:22:a8:a4:2e:5d:dd:d6:6a:85:fb:
2d:d5:f0:47:c0:c7:2d:25:26:35:d0:70:bb:49:5c:17:72:55:
b2:a7:0f:32:7b:f9:04:7c:4d:75:12:ac:b2:e3:81:cc:21:96:
f1:b2:53:85:32:70:59:5e:44:f5:d1:dd:e2:05:44:cb:bd:31:
78:18:45:f5:3f:8c:6d:1c:a1:18:a0:70:bf:f1:60:ed:42:c5:
5b:8c:eb:2c:4f:97:bf:f6:d6:84:1f:fd:a8:10:a2:28:17:d4:
dd:6e:e8:c1:26:48:3a:bc:7c:08:ca:8f:93:0f:2e:c9:7c:6a:
4d:85:76:8e:52:7a:12:a6:1d:95:39:99:6a:9d:10:ec:56:c1:
27:23:0d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:38:52 2025 by rpki-client