Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa
File: ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa (raw, json)
Hash identifier: JgW1P2eLQndpDsIbXXDleDeCRioKgtihw52PwKXrhpc=
Subject key identifier: 51:8B:BA:6B:CD:BC:33:88:3E:7C:15:0A:43:05:EB:CD:74:53:45:A4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 38258287924737B12900DB2B2DD461A5DF94B978
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa
Signing time: Tue 07 Oct 2025 00:42:06 +0000
ROA not before: Tue 07 Oct 2025 00:42:06 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff4:7400::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:25:82:87:92:47:37:b1:29:00:db:2b:2d:d4:61:a5:df:94:b9:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:42:06 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=96af2f6b2547aeff71b59bd39092d7f031eb479bd8d6a30ba7ff5d67e2d23f70, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a1:b7:2c:96:fa:10:27:43:ef:1a:be:8a:2d:
85:a7:11:08:23:7d:14:a7:0a:3c:fc:aa:90:08:3f:
39:6c:49:2b:e1:f8:51:d5:cb:07:47:ea:65:9d:b6:
09:c8:77:e4:26:2f:bc:aa:14:bc:c6:b3:ba:f9:f6:
c3:aa:53:ab:27:70:8e:68:72:45:c4:fe:62:9c:84:
70:dd:37:3c:d6:73:29:b2:a2:72:66:ee:4f:d4:c9:
10:45:f9:d2:13:21:0c:a0:01:44:b7:05:ea:ab:d3:
e5:03:4d:23:5d:bb:74:55:e0:05:35:7d:82:9d:4c:
62:cc:1f:ff:b5:c7:0f:39:77:29:5a:99:1e:4c:c8:
77:43:6d:6e:63:70:80:5b:56:26:26:7d:4c:44:13:
3b:d9:52:b6:e0:b9:e7:35:be:87:f1:23:85:ae:ce:
7c:45:dc:a2:74:bf:66:34:b6:cc:a8:65:6c:4f:73:
87:6d:1a:88:b3:02:1b:ff:d1:10:8d:56:23:2c:c1:
a5:e2:e0:43:41:13:03:57:7f:4e:e2:90:ac:77:4f:
9b:e5:59:82:03:34:e2:1c:2d:f8:b5:eb:47:e9:72:
d3:5e:0c:84:93:ef:25:5a:06:16:91:83:0e:c0:fd:
5e:b4:44:6f:9b:fb:10:23:db:89:5a:72:96:e6:29:
37:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:8B:BA:6B:CD:BC:33:88:3E:7C:15:0A:43:05:EB:CD:74:53:45:A4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff4:7400::/40
Signature Algorithm: sha256WithRSAEncryption
5e:f7:da:0f:a2:ef:31:88:74:7b:d8:29:48:7c:92:2f:e7:9e:
36:62:35:07:20:70:31:82:5d:19:f0:fa:cf:1e:ef:29:cb:fa:
a8:c2:26:e7:07:d7:f5:68:68:0f:8e:b9:c4:90:e5:56:e5:e2:
db:32:86:c5:d6:d6:a7:3f:80:3a:90:78:fd:90:5c:70:44:06:
27:1f:97:e2:93:e0:e9:cc:c2:8e:8f:77:fd:63:04:aa:08:a1:
00:d0:6b:1b:ae:d4:6e:05:24:5e:74:4f:6b:67:9d:26:ed:ad:
14:c3:05:b7:71:16:02:2d:3e:df:e5:af:5e:43:e0:8b:91:40:
5c:4d:2e:c9:42:ca:3b:55:55:5f:7b:05:5b:1e:6a:81:44:7e:
51:e9:75:6f:25:95:ea:9b:cd:23:4e:f3:c8:0d:31:98:3a:94:
1b:53:cf:06:fd:be:15:d0:84:d5:4b:aa:fe:ca:03:e8:2b:ee:
46:12:03:a3:a7:14:82:ce:69:83:d8:81:52:eb:e9:47:59:dc:
94:a1:f6:84:85:58:bd:85:fc:38:5f:8b:e8:d1:a0:60:26:54:
1e:39:25:92:ee:59:af:9d:4d:9c:8d:8e:83:9a:41:d1:fd:24:
19:54:29:36:f8:06:cc:b4:3f:cf:55:e6:20:46:96:2a:0b:e5:
23:2b:c2:c5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Oct 20 23:36:39 2025 by rpki-client