Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261541c-5236-438a-addf-e0379cb8428e.roa
File: e261541c-5236-438a-addf-e0379cb8428e.roa (raw, json)
Hash identifier: Cq4FNXlrhfPyEJrrZi7RWFmZZ4DsxGhZzfQ4PWHsBDI=
Subject key identifier: 75:9C:39:C1:2E:03:1C:90:23:1E:D2:02:F0:39:14:09:B2:5A:FD:BC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3BA823906833617E6D9523E49C5883DD0F9A91AA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261541c-5236-438a-addf-e0379cb8428e.roa
Signing time: Tue 07 Oct 2025 00:51:54 +0000
ROA not before: Tue 07 Oct 2025 00:51:54 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.162.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:a8:23:90:68:33:61:7e:6d:95:23:e4:9c:58:83:dd:0f:9a:91:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:51:54 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=e05151831e65bdbc5565f75520cb10741567133bbaa6b399b2582e038bcfb91f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:64:9b:01:08:06:86:01:52:07:86:87:63:15:
1a:a4:d7:a9:16:3a:c9:7d:1b:bb:16:f3:fc:32:39:
76:b5:c2:19:b0:06:3b:a8:eb:82:67:9a:0d:d8:53:
0d:7f:67:f2:6c:8b:6c:f9:9c:06:eb:e1:ff:f1:57:
ca:7f:51:d9:1a:55:bb:62:06:e1:c9:65:9b:d7:e6:
0b:d7:25:1f:db:2d:eb:6d:aa:c1:31:38:a8:76:db:
79:7a:75:80:10:49:1a:9a:be:f7:e1:ec:f0:40:16:
8a:74:db:92:f8:30:22:e8:f7:cd:52:34:0a:50:5b:
0d:3e:6b:9f:06:58:bb:36:f5:f6:cd:ae:4f:da:16:
b5:0d:bf:56:82:c6:73:f9:6e:95:ea:08:84:a9:11:
78:0b:e1:a0:1e:5d:1f:8f:cb:a4:d8:6e:bd:99:5f:
6a:d4:13:38:70:a6:d5:10:fa:6e:b0:ee:cd:81:1f:
e8:5f:43:c6:d1:42:8c:ac:18:a9:ac:2a:3a:6d:ea:
c2:ad:4b:fb:1c:d3:3a:ac:ab:00:80:87:4e:0f:0c:
16:a6:1a:7e:40:91:13:f4:59:3d:a0:92:c4:f4:13:
14:8a:3b:39:60:de:26:93:45:d3:3d:2d:e5:64:e9:
5e:5e:4d:72:39:79:86:2c:5e:a9:13:e8:fa:12:1f:
5c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9C:39:C1:2E:03:1C:90:23:1E:D2:02:F0:39:14:09:B2:5A:FD:BC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261541c-5236-438a-addf-e0379cb8428e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.162.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5c:02:5e:b3:3a:53:c7:65:0f:55:57:54:2e:85:ab:f8:a3:2c:
ea:b0:d3:d5:03:93:16:6b:1c:c3:43:35:fa:ec:9e:8b:0c:6b:
60:a0:a4:3e:2d:ee:c5:1e:d5:b8:51:64:99:37:e1:cf:c2:df:
8f:fb:f2:4f:a4:69:3b:aa:18:e3:71:21:b3:d5:dc:15:b0:9e:
34:fa:b9:b4:14:02:6e:b9:fa:b7:e3:dd:d5:fd:c8:d0:5b:78:
b1:b3:02:f1:0d:7d:57:c2:fe:dd:e3:34:50:5e:25:ee:3d:c7:
96:52:50:65:43:98:d8:f5:d4:43:ed:6e:30:6e:48:92:32:17:
b1:f4:a2:20:a9:6b:72:48:ee:c1:da:a1:eb:96:94:d9:59:49:
27:ab:a3:76:cc:b7:4f:1d:56:a8:47:9a:a7:8a:eb:7c:a5:d9:
ed:fd:a9:5a:b3:a3:6f:fa:38:e8:3b:1f:9c:c6:b1:de:1a:46:
a4:60:2a:bd:8d:41:b7:25:8e:5c:5e:e7:33:2e:4e:25:3d:2e:
6c:d0:88:27:25:63:e0:1c:51:e7:d0:b8:14:e6:b1:3b:34:8a:
91:b0:86:41:03:a0:d8:e2:b9:3a:ec:cd:34:71:29:f1:f6:a0:
57:b4:8d:27:d3:a9:bd:4a:43:0d:04:60:03:14:eb:da:af:46:
ac:19:51:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:03:15 2025 by rpki-client