Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edf3c604-746a-46b8-b1b2-34f62c038c9c.roa
File: edf3c604-746a-46b8-b1b2-34f62c038c9c.roa (raw, json)
Hash identifier: AVJs52V7ddXoj7ZzfTeJ4mNmGWVDn6kyj7pJPMskbSw=
Subject key identifier: C1:EA:15:3E:6E:23:05:57:57:43:D1:B4:E6:95:8D:40:18:38:C9:8A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 637272B249BF180384910B9A733186BC4DFAA549
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edf3c604-746a-46b8-b1b2-34f62c038c9c.roa
Signing time: Sat 04 Oct 2025 00:38:59 +0000
ROA not before: Sat 04 Oct 2025 00:38:59 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 162.61.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:72:72:b2:49:bf:18:03:84:91:0b:9a:73:31:86:bc:4d:fa:a5:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:38:59 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=d32bedd0c049d348ab2eb7bb51af106f4b93e1d5e346298569316113f646cab4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e6:15:0b:ca:9e:cb:b5:20:17:96:12:46:75:
78:19:8f:5c:b8:2d:17:40:d7:b8:3f:17:61:b7:25:
82:7b:8d:5d:0a:7c:83:a1:f4:90:bf:f9:55:55:0c:
cd:66:41:7d:16:9a:9d:9d:c5:ea:e6:b9:8e:68:80:
4a:99:6f:fa:33:bb:48:a0:e4:4b:87:bd:4a:69:e3:
f4:ca:f0:8d:8b:98:db:60:06:9e:25:13:2c:8c:d7:
b5:c6:13:5d:f8:ce:2c:b6:f9:9e:73:44:82:57:e7:
4e:90:ca:d4:0e:5e:1e:0a:2d:fd:87:bd:b8:ad:1c:
31:b5:bd:d0:72:4d:f9:3a:88:96:ed:49:af:d9:33:
25:3c:c8:d8:01:2d:a4:b8:f0:06:a7:48:f7:ff:b2:
06:fe:d8:6d:de:3e:d8:75:96:4d:46:a5:ea:15:22:
29:eb:d6:92:68:a2:28:a0:33:19:40:08:1e:e4:9c:
a8:5c:0a:8a:e8:08:d9:98:cc:09:03:e8:53:27:72:
c2:b3:0a:fb:31:8c:73:cf:e0:65:9e:34:b8:14:d1:
ae:54:68:d8:e4:b7:b2:e4:4b:2e:ce:01:53:1a:07:
38:26:32:a4:fd:b8:d6:11:90:2b:5a:29:93:1a:d3:
85:94:b0:5c:71:27:85:4d:5c:69:7e:c4:1b:82:3f:
c6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:EA:15:3E:6E:23:05:57:57:43:D1:B4:E6:95:8D:40:18:38:C9:8A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edf3c604-746a-46b8-b1b2-34f62c038c9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
162.61.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:b3:d1:7c:df:e9:12:b0:f0:4c:f1:33:86:08:79:ee:c8:8b:
f0:f0:ae:73:1d:d2:b1:7a:45:55:f3:20:e0:f7:ef:eb:43:79:
e4:50:8f:b4:bf:e1:51:15:97:11:1f:ef:1b:3a:4c:30:00:cf:
f3:87:7e:08:40:8e:5b:7f:86:3b:fd:22:fa:da:fe:06:5e:d6:
7f:72:77:00:3b:c1:25:e7:46:3e:2c:71:7b:2d:fa:b5:56:74:
84:a2:70:36:b2:fd:1a:88:c3:8d:a7:12:7d:53:51:7d:e6:ec:
35:13:54:d2:5b:ee:30:60:51:9b:3e:df:f9:1d:c4:f4:c3:17:
7d:32:0f:d1:41:30:03:ca:c9:81:19:e1:b1:a5:27:d4:d4:15:
66:35:c3:19:7a:9d:a0:ab:4f:30:90:0c:15:5e:df:06:ae:85:
44:d0:a4:a1:d9:9f:05:b2:f1:6f:2f:8d:22:96:93:50:70:88:
83:c6:ea:ba:f2:eb:db:b8:fc:e7:f9:27:23:6e:95:86:83:b0:
61:63:ac:6b:cb:00:0b:1a:7e:46:ee:08:ce:20:6c:35:cd:86:
57:f6:a5:42:1d:6a:ba:82:01:35:d9:73:4a:a4:c3:6b:4f:3f:
7f:1b:77:83:50:e8:42:e2:92:1a:ca:f6:fa:9e:9d:5c:14:66:
69:5c:ab:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:43:14 2025 by rpki-client