Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e39acb10-dc05-4631-8e59-5d2e1d30517e.roa
File: e39acb10-dc05-4631-8e59-5d2e1d30517e.roa (raw, json)
Hash identifier: UD9I71WpTvfkMSMuLsoCUkOZIIJKSLCnmNsyt1RCspM=
Subject key identifier: D7:50:C6:D5:FA:A9:FD:A7:4C:66:DE:21:7A:B9:AC:99:88:86:15:B4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1A032E5F55E3C9E8997B7CE37A54CB89C91238CA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e39acb10-dc05-4631-8e59-5d2e1d30517e.roa
Signing time: Fri 03 Oct 2025 00:42:13 +0000
ROA not before: Fri 03 Oct 2025 00:42:13 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 69.38.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:03:2e:5f:55:e3:c9:e8:99:7b:7c:e3:7a:54:cb:89:c9:12:38:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:42:13 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=ac49f2bca41eb39550bffa118a55368af4bac41c0625dcb8d9307e8f5935c1d7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:78:10:33:d7:d6:b9:ad:90:6b:82:eb:71:85:
82:8a:5c:e7:68:36:93:a9:68:10:b3:39:c0:07:b3:
b3:a8:8b:5a:e4:7e:a3:35:dd:8b:91:b9:4d:3c:d1:
43:3b:07:1a:35:fb:85:1d:b8:28:fb:2e:e6:40:fd:
87:47:c4:1d:d1:cb:31:d1:ee:76:c9:14:3a:80:ef:
5e:7a:9c:02:f8:c0:d0:16:1e:dc:7e:e0:39:f0:76:
6a:0d:7c:fe:a0:56:a7:21:fe:33:64:72:40:88:2b:
27:d9:ca:0c:09:f3:1e:42:40:00:2c:84:de:76:77:
66:dd:b7:cc:30:d1:64:84:57:c1:c6:9a:97:53:88:
c3:b1:2b:e2:af:8f:f0:77:23:37:50:3b:60:e9:35:
e3:62:09:ce:fb:ec:ef:f5:6c:4e:6d:80:9a:eb:2b:
95:3b:49:43:e7:75:38:fe:49:2e:69:90:15:40:69:
64:08:62:16:bb:3f:d0:65:f7:03:2a:8b:3a:90:9a:
ff:3f:42:55:0d:4e:d5:88:b5:ce:27:89:4e:a0:ca:
62:bb:1a:8a:e3:fc:75:b8:c1:9a:c7:46:78:fb:c6:
7c:46:b3:4d:c8:f9:85:75:3e:87:12:91:25:fb:81:
a3:3c:a7:04:a9:10:37:30:d1:e2:73:94:a9:8e:70:
fe:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:50:C6:D5:FA:A9:FD:A7:4C:66:DE:21:7A:B9:AC:99:88:86:15:B4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e39acb10-dc05-4631-8e59-5d2e1d30517e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.38.0.0/17
Signature Algorithm: sha256WithRSAEncryption
ce:32:87:05:d9:44:0e:65:ba:b4:a9:ea:87:c2:04:44:f4:2c:
aa:20:4f:45:7f:8a:87:ff:0f:ad:c5:64:1b:39:2d:be:6f:02:
8b:6f:f0:1c:93:fd:f8:28:54:bd:d3:53:aa:59:9c:3a:34:19:
57:c7:d8:0a:50:25:8f:93:e1:04:85:9e:8f:e8:2a:1c:89:fc:
96:1d:0c:18:04:43:29:f0:1a:a5:0d:32:d9:73:35:cc:4c:a6:
24:f8:32:72:fd:4e:88:9f:1f:e1:24:77:17:7d:ca:a4:c4:9a:
de:f4:60:4f:e4:fb:01:b9:ce:86:5b:88:10:e9:90:67:fe:2b:
03:43:e1:ea:da:4f:e8:d7:ac:23:26:02:27:fd:e6:59:84:a1:
8c:c6:55:cb:d4:f2:e5:04:c1:fe:3c:78:c3:34:87:a4:b7:b0:
3b:7f:f0:70:a9:08:2f:dc:dd:22:e4:78:f7:3e:6a:ff:31:e3:
9c:22:2e:82:4e:ad:35:f2:bb:e9:3a:ef:ff:56:af:3b:c3:04:
31:1a:58:23:15:21:bd:0f:43:b8:3f:74:73:92:9e:6f:48:38:
5c:ba:6a:dc:36:5c:af:67:d2:d3:a1:fc:1f:45:94:0e:ac:fc:
d9:38:a5:1b:ab:df:dd:e7:14:da:41:94:c6:fe:9a:0a:26:8e:
2a:bf:b7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:45:30 2025 by rpki-client