Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a953e340-b236-481d-b4d2-c7f50301c88b.roa
File: a953e340-b236-481d-b4d2-c7f50301c88b.roa (raw, json)
Hash identifier: pfcTkBkUbDWha2iA9DXGGlWXtN2j3mgLxsmcmDolFAQ=
Subject key identifier: 98:DC:0F:FE:34:53:7B:6A:7C:10:E8:66:63:89:6D:D8:35:7B:2F:60
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1FF71096A9A5D705AB9DC6D3E8FA921E0BF0675B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a953e340-b236-481d-b4d2-c7f50301c88b.roa
Signing time: Fri 17 Oct 2025 21:41:01 +0000
ROA not before: Fri 17 Oct 2025 21:41:01 +0000
ROA not after: Fri 21 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 16.56.32.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:f7:10:96:a9:a5:d7:05:ab:9d:c6:d3:e8:fa:92:1e:0b:f0:67:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 17 21:41:01 2025 GMT
Not After : Nov 21 23:59:59 2025 GMT
Subject: serialNumber=b6a8b69967c9806429b427fa0949ec57afcba095900b5f79044b7ebaddcc5db5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ab:ba:e5:88:a9:39:b8:fc:58:e7:34:53:7e:
44:d0:86:b7:37:59:2f:68:a4:ea:47:99:3f:aa:e2:
85:5f:eb:1b:5b:19:76:5f:a6:b8:1e:8c:7a:21:9d:
2d:ef:46:43:8c:33:06:b0:71:07:ae:49:2f:72:fd:
9e:02:8b:8b:76:36:48:1e:6f:e1:42:1f:e4:ab:72:
42:3b:61:98:75:b0:39:29:48:ff:f8:c6:be:40:49:
ed:69:17:bf:44:e8:88:af:bc:a3:d1:88:fb:64:7d:
a6:df:35:91:69:6c:42:78:b4:f5:02:6f:98:bc:46:
be:66:c0:4c:f7:f8:95:c1:e1:c1:9d:45:2f:2c:26:
58:01:73:25:4e:0b:45:2f:22:93:70:6f:0b:72:1d:
a4:01:9b:b6:78:15:df:3b:6a:11:a4:9a:c2:dd:ce:
78:c8:3a:43:f8:d3:fe:c9:44:ce:0b:1f:96:0e:82:
04:b3:09:47:85:5e:5b:52:36:b2:55:f9:cc:8c:e6:
72:5d:3c:7f:11:dc:67:44:49:66:b1:30:ec:77:de:
67:a2:02:19:6e:16:aa:6d:c8:f4:a3:df:71:63:a7:
db:e9:ac:b3:ab:9c:f4:0a:2a:fb:a6:93:6b:f2:9b:
d6:74:a8:7c:a0:df:03:b4:94:65:c3:50:61:c1:18:
85:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:DC:0F:FE:34:53:7B:6A:7C:10:E8:66:63:89:6D:D8:35:7B:2F:60
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a953e340-b236-481d-b4d2-c7f50301c88b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.56.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b8:e9:2e:74:9d:a0:cd:95:90:ca:62:2f:a8:e2:6b:7a:05:80:
21:74:bf:0f:84:5e:cb:f2:e4:d7:b9:c6:45:f6:7a:18:31:c9:
11:19:97:f4:06:b9:18:5c:52:16:e2:06:d2:74:9b:fb:94:46:
5d:be:95:2f:c0:b9:26:8b:24:6b:13:86:b0:af:f8:5b:21:8a:
8a:fb:15:20:c8:66:71:c4:9a:f5:26:58:e8:53:8d:a9:fe:e7:
b6:4d:77:84:d3:c8:fd:e0:3f:69:b7:21:62:68:14:12:38:ff:
c7:b9:62:96:ea:89:42:71:73:4e:39:0a:fe:52:20:35:5a:a9:
35:3d:b1:8b:d8:89:e4:56:ef:c2:63:72:51:2a:d7:34:ed:ad:
ca:6d:c7:e3:91:4c:47:b8:44:62:9b:b0:4d:26:0d:6d:ff:70:
c5:41:64:86:f5:74:b8:67:4d:f5:61:d5:3c:c7:b9:9f:6b:54:
76:0d:8b:ee:aa:03:05:72:98:4d:a2:ff:01:86:e8:6a:26:03:
f1:ec:b8:a7:91:af:2e:5d:87:b9:8a:6f:d4:a5:02:22:3c:8b:
63:25:f3:82:16:af:c7:37:12:eb:54:bb:7e:b7:87:f3:25:c2:
75:3c:cb:e9:25:ed:83:cf:d0:47:89:63:0d:78:5e:f0:fd:84:
2b:b4:2f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:22:39 2025 by rpki-client