Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa
File: ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa (raw, json)
Hash identifier: NG+ucJpSwTusmKNVCada7AnqcAwtghsvGEWurqXkoI8=
Subject key identifier: 97:31:42:79:75:AA:A2:8F:37:C3:A7:7A:21:9A:E4:A7:05:E7:3C:E0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 70C024C38922118A635D6CC9D4E5DF40DCC98BA2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa
Signing time: Mon 29 Sep 2025 15:11:42 +0000
ROA not before: Mon 29 Sep 2025 15:11:42 +0000
ROA not after: Mon 03 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 98.75.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:c0:24:c3:89:22:11:8a:63:5d:6c:c9:d4:e5:df:40:dc:c9:8b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 29 15:11:42 2025 GMT
Not After : Nov 3 23:59:59 2025 GMT
Subject: serialNumber=111057c4044ede8b732d22ec38de56bce44f74a0bbaa271b199d236b49f9dc36, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0f:e4:92:9e:d4:f6:f0:65:55:cd:9b:c3:cb:
37:58:d9:cc:df:a7:04:bb:87:1c:6d:2c:5c:39:7e:
a2:48:71:30:de:13:c4:cf:b4:ad:62:d5:b1:95:29:
dc:33:1b:cb:5c:2e:ba:3a:84:08:5f:76:94:be:c2:
4b:55:cd:c6:ea:b8:23:db:4c:fb:7d:a3:88:81:29:
bf:2a:36:87:ef:c1:65:25:b9:a4:12:c9:07:ef:24:
5e:7e:27:1f:8a:29:96:e5:0a:d5:70:a7:a2:ae:b7:
fd:ea:e2:62:15:2a:ff:3f:1b:11:d8:7c:15:12:62:
47:ab:96:b9:17:a1:c7:d9:84:45:b6:30:db:06:52:
f1:5b:e5:d0:03:7c:23:0f:f7:64:41:83:f6:eb:a2:
84:61:8f:49:76:47:27:fc:56:31:b9:b3:bb:41:99:
14:70:48:62:f9:d1:27:9b:81:1b:ee:9a:28:8f:e0:
b9:e8:39:9b:1d:28:ca:fe:79:00:fd:8e:aa:6b:17:
0a:f9:d6:6d:78:00:ba:b4:c1:5c:fa:f8:c1:f6:95:
8b:fb:6a:2d:dc:4e:0a:04:64:7a:fa:2b:e1:8a:19:
da:f5:b6:c8:90:1e:8f:96:f3:ce:f0:ed:d3:f8:2e:
66:6c:08:eb:46:0b:19:df:01:fa:f0:42:f7:13:b4:
59:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:31:42:79:75:AA:A2:8F:37:C3:A7:7A:21:9A:E4:A7:05:E7:3C:E0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
98.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
54:04:d3:a5:fa:dc:62:85:28:0f:a0:db:2a:8c:c5:64:9b:7d:
18:ca:71:f9:04:01:ff:80:7c:df:98:c1:96:eb:9a:94:23:81:
c6:d4:7d:f9:e6:cd:88:9a:96:82:23:16:0b:05:1c:68:c4:ea:
28:10:3c:ee:a0:cb:03:07:33:49:66:73:51:58:0c:07:62:82:
47:f0:19:d9:54:78:bd:d7:a5:05:c6:46:37:55:c6:7b:eb:38:
c5:a7:3a:92:39:4b:67:75:a0:f9:4e:95:df:25:c9:aa:b5:af:
64:ac:86:e6:f5:64:22:8e:95:91:24:8e:8c:1b:50:16:9c:63:
f1:82:5f:7a:e6:12:02:88:43:db:19:8b:a1:51:a1:f8:6b:db:
3a:03:ee:13:d1:e9:13:8e:28:01:d3:9d:f4:7e:ee:dd:fa:a5:
68:83:3b:51:24:9e:5a:75:f4:ed:52:4f:e1:13:fa:29:e0:3e:
2a:cb:4b:77:6d:cd:ed:c9:45:28:f9:bf:13:05:28:39:97:82:
bd:18:b6:40:64:df:54:a7:d9:1e:5f:bd:03:e3:c8:58:51:ab:
6c:84:84:0a:7a:e9:57:8b:4c:95:59:ef:1e:8e:7b:f1:e4:44:
c3:25:70:4b:56:13:ed:21:12:28:6a:64:a8:f4:2d:42:9e:14:
4c:87:ac:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:04:45 2025 by rpki-client