Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f74638a-762e-43c7-bb3c-67b9ee019a0d.roa
File: 9f74638a-762e-43c7-bb3c-67b9ee019a0d.roa (raw, json)
Hash identifier: XhXowJdi0uNWBVHE/JEkWs60SAcvnHt4RZxyrgUARo0=
Subject key identifier: C4:A4:F0:B8:37:7F:83:C7:0D:4D:F2:C6:9F:31:89:85:5F:EB:73:CB
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7AEC0FFB83C3D4396F804C470634A5D720DEF1BA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f74638a-762e-43c7-bb3c-67b9ee019a0d.roa
Signing time: Wed 01 Oct 2025 00:52:51 +0000
ROA not before: Wed 01 Oct 2025 00:52:51 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 96.0.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:ec:0f:fb:83:c3:d4:39:6f:80:4c:47:06:34:a5:d7:20:de:f1:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:52:51 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=d9436d47e1f1038a8b3dc9bf6fb2d085c5e26002bf836548c1ae929b13e5b239, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:12:ae:6e:c5:f8:c4:e8:ca:ed:3a:ab:c8:26:
10:43:8e:2f:74:61:68:9f:cb:0e:6a:ca:24:e1:d8:
30:92:93:51:0b:83:fa:10:76:ff:86:09:92:c0:1c:
a7:cb:46:19:ad:a2:e9:32:05:ab:01:88:a8:b4:2d:
78:99:4b:b6:1e:19:61:3d:50:12:e1:f6:0d:5f:8e:
97:4d:04:f4:8a:c6:d5:d7:b5:68:3e:98:df:af:99:
44:06:12:11:75:9a:6d:56:db:a8:e7:a6:79:21:3d:
07:0b:80:40:68:39:04:93:33:75:9f:c5:f4:e7:b4:
56:ca:35:30:e4:97:23:f5:4f:5c:63:5f:89:3c:90:
c2:6d:d8:e4:e1:3f:fd:bf:a1:b3:2f:e3:96:36:cb:
82:30:5a:70:d5:bd:cf:68:69:6b:ca:5a:5f:d5:b2:
49:3b:83:5a:7a:82:e6:56:30:4d:14:b3:df:4e:b7:
c9:4f:a2:79:47:ff:b1:2f:ba:fe:5d:47:40:6a:ab:
91:23:b6:df:2a:c3:28:2f:bc:a1:c4:13:bf:0d:5f:
b5:6d:d7:61:c9:47:8c:89:6c:30:91:08:2c:e8:dd:
f9:6c:ee:a2:2d:75:92:e0:4d:d5:69:44:de:44:44:
95:5a:51:44:b2:0f:fb:11:a3:91:2e:ee:77:57:3b:
df:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A4:F0:B8:37:7F:83:C7:0D:4D:F2:C6:9F:31:89:85:5F:EB:73:CB
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f74638a-762e-43c7-bb3c-67b9ee019a0d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.0.48.0/21
Signature Algorithm: sha256WithRSAEncryption
55:a8:68:db:2e:e8:e9:ef:5e:33:39:90:6a:1c:83:6e:93:b8:
6b:1e:3f:d3:ed:7f:7c:e7:13:33:db:91:49:ba:2e:78:dc:d2:
9f:54:b0:b5:db:07:4f:26:43:a3:ba:76:17:a2:e8:35:14:24:
b8:cd:69:b5:a7:00:8f:c3:4b:f5:91:92:4a:4d:7c:d7:31:1c:
cb:d1:14:1c:79:cb:0e:2c:24:ca:ae:01:44:42:f3:0f:79:e4:
27:3a:4f:4d:5a:01:0f:72:ba:b9:ed:84:98:78:67:ee:d7:f7:
1d:a7:e7:2b:f7:a4:8f:b3:78:57:b4:c1:15:44:23:d7:bf:b5:
73:92:30:a1:b6:22:d5:d5:e4:6c:9f:cc:d5:98:95:6b:f6:f8:
8e:01:a6:47:b7:6a:15:c5:72:84:91:c7:df:4e:7a:66:83:2a:
af:a2:06:a9:43:d7:34:0d:e6:c4:6f:00:3a:bd:08:5b:2b:11:
b1:27:a9:ad:9f:16:a0:59:e9:6b:d2:1d:48:fd:23:f5:69:e1:
c1:b5:d6:2e:7f:41:f6:fa:43:42:d1:53:9c:67:54:72:d0:0f:
45:87:d7:3c:e0:dc:13:a0:a3:9c:fc:c8:e6:54:e7:fc:70:36:
dd:91:b6:2c:4f:80:d8:dd:01:59:d6:ec:8e:97:b0:9a:1d:7e:
7d:27:26:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:56:48 2025 by rpki-client