Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd93d939-7566-4f6e-8c33-44e81bf0514a.roa
File: cd93d939-7566-4f6e-8c33-44e81bf0514a.roa (raw, json)
Hash identifier: q5zM9YyGBjWhIL4OvBuVxKyhsRfWe0ynWrE3dHQ2/gM=
Subject key identifier: 97:FE:2B:CE:7F:D2:7F:30:53:8D:CF:52:E6:5E:0C:12:9F:B9:98:E5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0A560E3A532DD04BB4F049C0C4E5FD55511E777C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd93d939-7566-4f6e-8c33-44e81bf0514a.roa
Signing time: Wed 01 Oct 2025 00:12:00 +0000
ROA not before: Wed 01 Oct 2025 00:12:00 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.83.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:56:0e:3a:53:2d:d0:4b:b4:f0:49:c0:c4:e5:fd:55:51:1e:77:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:12:00 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=a73102b61ff030de89365a7da61c02d24d0e9e724859c2c634a7743b878950f3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a5:26:b8:1e:c6:ff:de:82:aa:a6:0a:e2:bf:
a7:70:63:b0:2b:9c:2e:dc:ad:db:f8:7b:44:41:cf:
6a:95:fa:02:00:cb:e1:bf:11:5a:2b:9e:70:db:cb:
68:2d:20:11:97:f9:08:df:67:f7:ad:25:03:b1:e0:
ea:7d:6e:90:9c:15:09:5f:74:77:1f:e3:a8:eb:dc:
0d:52:94:32:71:37:af:18:52:51:a2:24:e9:ab:be:
57:40:4e:31:52:d7:65:96:53:0b:bb:23:1c:66:a6:
87:21:14:91:4e:ad:bf:24:c8:f6:8e:b3:cc:40:86:
3c:54:27:2b:9f:f5:26:41:3f:f3:0f:18:83:af:f1:
b0:9f:cb:e1:fa:3a:b8:7e:1d:ed:9d:e3:a9:f5:c7:
b5:0c:3b:6f:31:c5:7a:06:bd:10:64:80:7f:b8:f9:
87:76:76:2e:87:cb:36:e7:12:70:c7:b4:a6:0b:b0:
ad:af:97:48:4c:6b:2c:77:b9:5a:b0:a8:1d:71:1f:
4c:49:d9:b8:34:ce:f3:93:50:c8:ea:8b:2f:0e:0b:
31:dc:90:85:d7:37:c0:99:e2:d3:fd:c5:9f:e9:e3:
2c:b2:21:72:c3:a7:cf:4d:b9:4e:f5:25:04:c1:b4:
b5:85:6f:2e:d4:f4:d9:52:89:e9:44:d1:43:a6:f2:
3f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FE:2B:CE:7F:D2:7F:30:53:8D:CF:52:E6:5E:0C:12:9F:B9:98:E5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd93d939-7566-4f6e-8c33-44e81bf0514a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.83.224.0/19
Signature Algorithm: sha256WithRSAEncryption
c6:8e:e0:30:5e:b1:e9:f0:66:ea:d7:38:17:97:5a:62:06:95:
2c:8a:90:17:dd:03:8d:cf:91:fb:7e:f1:97:56:f6:38:9c:66:
6a:4e:6f:49:f7:db:e6:8a:16:cc:b9:69:06:a2:40:cd:15:3d:
a9:1a:54:87:da:f1:db:18:33:2a:23:b4:90:cc:06:ca:ed:08:
ba:18:a4:e1:81:24:8a:6c:29:94:f7:ed:cf:b5:e0:40:15:2a:
8a:6e:fe:da:e9:ce:30:8a:e5:1e:05:8d:d3:be:4b:7d:02:98:
ee:68:12:26:df:21:22:38:44:24:3e:f6:58:54:cc:a1:eb:6e:
36:e6:f0:0d:85:c1:fa:d7:db:b9:56:b0:45:3c:0c:c8:fb:65:
46:56:39:1c:45:a9:d4:7e:d6:5c:f4:dd:22:79:2f:ea:be:b9:
c2:ec:50:0b:cf:43:07:fb:32:70:c3:9d:57:97:cb:bd:a3:88:
b9:46:a3:40:6b:70:d3:14:61:e1:de:ac:14:5d:d8:07:53:c4:
c5:5d:e2:d7:9e:9b:97:6c:7e:72:23:e9:73:91:5d:a6:47:19:
7a:8a:1f:f3:31:e9:00:50:fc:a1:fb:d2:73:cc:1d:f6:60:e1:
04:57:1c:5a:b3:80:23:38:46:b1:92:c1:92:af:d1:4c:b5:33:
98:64:74:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:06:02 2025 by rpki-client