Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5de12f4-379b-4e73-b7ff-9282064fe09d.roa
File: a5de12f4-379b-4e73-b7ff-9282064fe09d.roa (raw, json)
Hash identifier: eTCpRR5WILa92f4bVGr4jQbAtzzBvbCwdb8HwbXqnWM=
Subject key identifier: 51:B8:68:8A:AA:11:93:45:B5:48:AE:5E:2C:C0:15:88:EA:5A:E3:25
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7F58D5FD85213C89DCFBDB0D4A3BC7C33005EA3F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5de12f4-379b-4e73-b7ff-9282064fe09d.roa
Signing time: Tue 30 Sep 2025 00:12:31 +0000
ROA not before: Tue 30 Sep 2025 00:12:31 +0000
ROA not after: Tue 04 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.73.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:58:d5:fd:85:21:3c:89:dc:fb:db:0d:4a:3b:c7:c3:30:05:ea:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 30 00:12:31 2025 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: serialNumber=10257ab0da53e08b4ec09544a312699c8bafdc682111c0bc9f480929b8429207, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:84:ca:0b:c8:27:c7:d1:e7:b0:a7:08:5a:de:
b0:2f:95:d1:f8:20:2a:f7:87:3a:cb:2c:17:97:36:
24:0b:7d:1c:ae:22:c9:55:0e:9c:5f:a1:5e:f2:22:
31:2f:59:30:a1:b4:d1:d9:6f:d6:b5:34:ee:b8:11:
67:27:d2:35:f6:b9:96:8e:ec:29:f6:6c:5e:ec:6f:
96:7d:f2:35:94:a0:2e:0a:f7:27:89:59:f0:d9:bf:
71:60:83:fe:50:0d:88:34:30:92:c7:74:ef:c8:f3:
db:6e:fb:a3:44:bc:32:7a:f8:80:e6:38:48:8f:93:
d4:63:0e:bb:0f:bd:bf:68:a1:64:2b:d5:a5:92:61:
3a:f1:af:54:89:ab:de:8e:da:cd:79:c3:7a:33:28:
fe:3d:ac:1e:55:5c:d2:c0:53:10:4f:19:f0:bf:37:
d2:17:0c:82:70:fe:60:00:34:b0:a2:86:7b:e9:8b:
87:bf:13:81:d4:cc:d0:3a:3e:90:9b:59:c6:8a:28:
d0:b4:50:60:d0:14:32:60:6c:65:53:d2:9e:31:7b:
97:cd:75:09:0a:f6:44:df:07:eb:70:e3:60:b4:d1:
63:36:68:f0:e6:9a:d1:3f:14:f6:78:6b:2e:04:36:
b5:64:f5:36:3b:26:71:42:55:83:fc:ad:51:f9:1d:
94:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B8:68:8A:AA:11:93:45:B5:48:AE:5E:2C:C0:15:88:EA:5A:E3:25
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5de12f4-379b-4e73-b7ff-9282064fe09d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:94:1b:99:b4:02:a6:ea:49:6b:b1:26:f8:79:dc:52:f4:a9:
f6:2d:34:d6:a5:d4:3c:c5:a4:4b:7c:c0:a2:0e:0c:2a:1b:bc:
89:42:e1:ec:b7:5b:7a:d6:85:3f:7a:d6:16:d6:4f:3a:51:49:
97:0e:67:ce:90:32:86:50:34:92:f7:d0:4c:22:c8:cd:3e:8a:
e2:f0:e0:93:c5:ae:08:05:8b:e1:62:e0:d0:69:b6:9f:0f:0b:
ee:87:a4:8f:e0:ef:40:04:9b:1f:7a:ca:0f:8f:41:be:29:37:
f8:31:5b:52:d7:0b:60:ae:be:10:90:ce:08:7f:9f:e5:3e:1c:
a2:66:09:38:33:0e:aa:b4:d4:e1:29:91:7a:34:73:02:b6:17:
db:b0:88:73:28:2d:cf:4d:35:9a:69:46:9e:47:91:94:22:65:
c4:76:c7:2a:8a:83:5f:0e:7e:ae:a6:60:68:40:25:10:0a:64:
19:64:9c:9f:2d:ff:8c:82:2e:4f:8f:70:92:f0:d9:88:7f:1d:
9c:31:62:b8:b9:66:e4:90:ec:67:23:79:54:17:a1:6b:cf:a7:
92:33:38:b1:ff:b0:e7:2a:0a:79:f0:c7:01:f6:17:2c:3f:b6:
a1:09:da:1a:b6:04:2b:fa:84:fb:ed:ea:3b:1e:96:8a:94:f5:
2a:9b:ac:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:36:17 2025 by rpki-client