Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa
File: cffa990e-6fc2-4b61-89ad-172287c16758.roa (raw, json)
Hash identifier: EM0suMNgv0lpZRSCPf3eWs0BrzgDqr/TeAzbRFJOGa8=
Subject key identifier: 93:C6:2F:C0:84:ED:07:D4:6B:16:3E:1C:35:45:48:7F:D2:F5:99:8C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 04A649C38777C1271662A6E83FFA91B581A96412
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa
Signing time: Fri 26 Sep 2025 00:42:10 +0000
ROA not before: Fri 26 Sep 2025 00:42:10 +0000
ROA not after: Fri 31 Oct 2025 23:59:59 +0000
asID: 16509
IP address blocks: 77.122.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:a6:49:c3:87:77:c1:27:16:62:a6:e8:3f:fa:91:b5:81:a9:64:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 26 00:42:10 2025 GMT
Not After : Oct 31 23:59:59 2025 GMT
Subject: serialNumber=d39fd121ebd86c20e6e7d857ec51c71c9d3a5fad55c9ca010cba9fdfae5a1275, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:35:4b:00:33:06:63:a9:5b:5c:90:dd:81:
06:cb:49:50:43:ab:4c:0f:e7:f0:e6:33:91:10:af:
23:e0:24:1f:1b:95:11:4e:d5:d2:b1:95:73:0d:87:
ba:02:ec:ef:f2:54:50:dd:67:2e:2c:6d:a6:ab:e9:
68:c2:5f:4d:58:b3:1d:9c:48:38:eb:86:44:db:ce:
97:a0:21:72:68:8f:61:fc:ed:39:ad:94:8e:b5:dd:
ab:52:a8:d6:8e:a9:d0:54:4e:c2:10:cf:5d:48:50:
f8:79:c2:b4:e8:2f:e2:80:71:56:f8:9d:04:01:a4:
a0:d4:2d:1b:a9:44:9a:74:0e:e7:f3:e0:71:5d:99:
87:95:b0:3f:1a:56:8c:b8:5b:b6:0b:d1:ee:99:21:
cd:03:50:f4:61:a3:57:ec:8d:35:8b:aa:81:5c:45:
91:d4:40:cc:c2:de:27:7a:cf:62:41:18:b3:79:e8:
ee:4a:fb:eb:e7:ec:67:bc:dd:75:06:b1:56:46:a8:
d0:af:71:d2:6e:e5:74:84:41:6e:55:f7:0d:2a:7f:
36:a0:00:d6:a5:8e:05:57:4b:23:bb:34:79:20:5b:
fe:98:1c:15:ee:4a:c1:92:fe:88:90:bd:ea:f4:52:
c8:1f:73:b9:38:f7:0e:2e:85:68:b6:6f:ec:a3:c6:
35:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C6:2F:C0:84:ED:07:D4:6B:16:3E:1C:35:45:48:7F:D2:F5:99:8C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.122.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:52:8e:a2:c5:67:88:02:cd:31:47:5e:a1:7d:8e:14:1f:dc:
83:9f:37:4a:33:a7:79:12:c1:e0:9c:a3:83:b5:a3:2f:4f:a7:
04:de:94:e8:a7:af:2e:65:59:30:1c:6b:d9:91:50:94:7c:f0:
6c:1f:b3:38:d2:ba:ac:b0:73:9b:03:8f:93:15:31:ff:0f:71:
c6:2c:a4:1f:06:ee:9b:1b:44:2e:b1:9b:0e:2d:3d:d2:fa:f5:
a9:73:c4:f3:f0:67:bb:61:b8:43:f7:ef:e9:af:6a:5a:ac:04:
4a:71:c3:cf:ef:fc:3e:2a:25:ab:22:a1:1e:e4:41:d2:1d:88:
f2:40:48:66:6b:b5:1d:21:89:a8:68:06:ed:d9:51:44:1e:d3:
3c:ef:64:22:a1:be:59:1c:13:6a:55:af:c9:87:5b:f6:03:c6:
f0:54:60:3a:b8:1d:7f:29:7b:a0:61:36:88:ba:ce:f5:be:84:
72:b5:9a:cd:7f:6e:1d:b0:ba:ad:6a:7d:b8:b8:86:d3:62:c2:
0f:17:d4:5d:3f:91:4e:cf:a3:01:c8:cf:34:9c:ed:c3:d1:28:
c6:83:62:59:bf:24:ad:e7:64:fb:e6:4e:d3:60:b0:29:8a:0c:
b3:db:9b:da:2c:10:2f:e6:05:f3:fe:1e:fd:47:38:13:df:70:
1e:32:5a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:13:27 2025 by rpki-client