Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd9f3588-1807-4d0e-a046-92081925c4c7.roa
File: bd9f3588-1807-4d0e-a046-92081925c4c7.roa (raw, json)
Hash identifier: 7uV1EshFeDbKL16qDkmgQjy9lsv5N4yql8+LR4fpTqY=
Subject key identifier: 77:01:D1:33:E8:96:81:E1:4F:2C:38:C1:1E:FC:5D:FE:81:C3:91:6E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 17FF0C9C0299BD8BDF1C4AD155DF887639BB40BC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd9f3588-1807-4d0e-a046-92081925c4c7.roa
Signing time: Sat 18 Oct 2025 00:40:03 +0000
ROA not before: Sat 18 Oct 2025 00:40:03 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.39.168.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:ff:0c:9c:02:99:bd:8b:df:1c:4a:d1:55:df:88:76:39:bb:40:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 00:40:03 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=302d498b80cb4fb5ef954cce6970d58cff1ad8bb68bb23e6aae5de925d18ddfc, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:90:64:5d:65:cd:f5:8f:01:70:5a:c5:ed:2f:
fc:33:42:cf:f2:46:83:14:3a:36:bd:0d:f5:1d:98:
be:98:4b:66:a9:75:66:5b:74:ae:2c:1d:b2:79:0f:
34:12:9a:e1:65:50:23:f6:cd:aa:0e:50:cb:ec:33:
60:69:b8:21:7a:05:09:9b:c5:24:1b:47:7b:fd:f8:
24:5a:82:1f:5b:29:c8:3e:02:44:d2:36:31:10:60:
bd:6e:1e:68:be:cf:50:da:1d:06:55:d8:90:2e:c5:
05:29:a5:ab:58:c5:3a:58:39:bc:7f:62:a5:db:40:
50:d7:8c:a4:91:db:5b:d7:72:36:56:7a:5c:19:80:
4c:bc:16:ba:1a:4d:bd:75:05:ce:32:9e:d5:d9:54:
49:7c:48:cb:aa:1a:f0:b3:17:94:48:36:dd:be:04:
44:b5:d9:0d:49:71:80:5b:32:ab:52:13:37:de:76:
0f:2d:f0:cc:9c:57:c2:0c:cc:91:be:3a:67:4f:8c:
70:67:64:fa:94:04:44:9a:c7:c2:7d:b9:61:1f:a5:
4f:9e:3a:f9:b3:31:cd:13:eb:53:cd:6f:ab:6a:eb:
6d:da:23:75:c5:a1:59:d0:2c:93:61:13:a9:b7:d1:
20:1b:24:88:be:39:15:4c:9f:91:ca:78:f4:d1:09:
9c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:01:D1:33:E8:96:81:E1:4F:2C:38:C1:1E:FC:5D:FE:81:C3:91:6E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd9f3588-1807-4d0e-a046-92081925c4c7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.39.168.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:fa:c7:b2:e3:85:3e:ff:58:1f:83:ed:40:4e:b4:6a:2c:fc:
31:5b:e6:1a:cb:99:4a:f1:b2:cf:46:e0:d3:2e:5e:85:74:8d:
ce:1d:68:55:69:48:9e:ce:04:60:68:1f:93:5f:d4:86:ce:9f:
54:44:66:d0:fd:fc:2f:e3:a0:5d:ca:0c:5b:d0:3a:7f:9f:8a:
c2:13:20:04:38:7f:76:48:05:9a:cb:fe:8b:01:92:4e:57:53:
6f:49:40:ff:33:8c:07:bd:55:34:d7:81:a7:6e:9f:28:35:a8:
34:9b:b2:2c:84:93:40:76:ab:cb:af:d0:dd:3c:10:3f:aa:ba:
37:1b:74:f7:4a:66:47:ea:2c:59:9e:b5:24:94:8a:27:5e:58:
af:11:db:3d:d0:21:7d:99:a6:c8:45:96:1f:7b:ab:eb:b0:0d:
c2:f7:8f:90:62:79:74:58:dd:7d:fa:80:1e:17:c5:1c:4e:3c:
18:a4:fa:82:30:45:fb:e7:36:68:d8:e2:0b:65:da:5f:34:85:
a3:83:d1:f0:27:3b:04:03:9f:16:f9:9b:21:44:3e:88:21:9b:
03:78:66:0c:d8:cc:f8:24:77:70:0e:75:f7:89:b4:58:70:4c:
5f:b9:3f:18:fd:d3:04:27:e3:cc:ac:74:4e:76:31:be:c9:8d:
a5:21:48:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:37:37 2025 by rpki-client