Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa
File: c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa (raw, json)
Hash identifier: Zh/yCvN5/g4OsnpK1yWwiJavAHkjTYv0JEOzkhYAHNE=
Subject key identifier: 5E:2C:AE:7D:25:CF:F8:87:FC:13:43:E1:4C:94:31:EB:88:1C:E8:8F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4C5A06852595A1131F46FB21AB412ECF2C10E038
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa
Signing time: Wed 01 Oct 2025 00:01:23 +0000
ROA not before: Wed 01 Oct 2025 00:01:23 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 162.213.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:5a:06:85:25:95:a1:13:1f:46:fb:21:ab:41:2e:cf:2c:10:e0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:01:23 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=be9617b2f3768c3cffc3afcb64b72d2fc69e89f7af176594f17c5e0932b3c4fa, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:29:af:83:3d:8f:22:23:89:c3:bb:23:df:7d:
07:00:7e:01:a1:9c:95:bc:fd:52:0e:27:c0:67:7f:
f0:9b:86:4b:db:2e:1d:21:18:35:a0:ee:ad:f8:86:
67:88:3a:66:d0:8c:42:cb:8d:c3:ae:46:eb:56:75:
7a:35:a4:74:46:5e:93:9b:4e:26:1c:ea:89:97:44:
b3:9c:69:27:87:7b:0d:9f:ac:6e:0c:12:b3:ee:5c:
a4:b5:3a:18:4b:23:d1:7c:d1:6c:b3:fb:05:f9:c8:
d1:ad:d9:32:04:0b:64:69:04:05:ff:e6:d5:4e:89:
9a:96:47:d9:ad:3d:3d:5e:32:4e:82:67:69:e7:42:
ab:53:6a:b3:c6:19:1c:31:d2:f6:f4:0d:ff:22:31:
5e:4b:b6:e9:34:97:1f:38:37:8d:12:50:ec:fa:bc:
76:57:8c:1a:8d:23:6c:3e:7f:f3:b2:e9:f6:53:57:
09:50:86:e3:bd:09:53:af:ea:09:61:9e:36:ee:92:
ef:01:d1:5d:e4:86:8e:3f:4b:34:c9:18:44:73:8c:
bf:5e:c3:a7:8a:72:df:c9:9d:68:a8:37:5e:18:f4:
f6:b4:fe:f3:b8:a0:7d:a2:23:40:9d:5a:ef:67:d7:
19:31:ca:a9:80:ac:29:17:96:9f:37:1f:1c:72:cf:
d3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2C:AE:7D:25:CF:F8:87:FC:13:43:E1:4C:94:31:EB:88:1C:E8:8F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
162.213.233.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:f6:f5:4e:b1:0b:b9:b6:37:2c:a7:f5:27:45:59:df:36:01:
4a:8d:2c:17:5a:61:1b:ca:28:8e:04:71:4e:85:ec:9a:e1:0b:
a1:da:fc:c0:69:9c:87:b0:ff:2c:87:29:77:af:47:7f:84:b5:
13:d9:9a:fd:57:d7:2c:ee:6f:ca:f9:16:7d:ee:0f:f4:80:d7:
22:75:6d:6a:fb:57:a6:05:b2:82:e5:36:00:a6:e1:d3:be:1e:
81:57:fc:0d:f4:f8:85:d5:19:fc:4b:8a:fd:b6:74:fd:47:67:
2b:8a:15:82:a1:e4:80:80:57:d1:11:38:6b:3b:f0:e2:8b:b1:
36:60:3c:aa:75:41:8d:7b:9c:f2:7e:b0:a4:8c:82:c1:ff:d0:
76:cb:41:de:4e:d7:ad:0a:18:ed:04:0f:ac:37:74:20:57:36:
df:b2:fe:ff:c9:f3:3b:29:be:de:8a:7c:fb:04:33:5b:f5:a5:
45:3e:56:57:54:80:17:ce:29:a7:c2:d0:65:7d:f2:48:7f:df:
bc:2e:36:4b:8c:e0:fa:7a:b0:4b:0b:60:e6:41:23:4d:e1:94:
f4:17:5a:ea:28:8a:4a:27:88:4c:49:ae:bf:d2:e0:22:47:7c:
5b:94:af:b9:78:29:9e:5a:05:7e:de:29:55:ac:2f:59:15:a7:
36:b5:b3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:19:15 2025 by rpki-client