Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f15d26f-8f71-43a3-80b0-ce2c01880d7b.roa
File: 1f15d26f-8f71-43a3-80b0-ce2c01880d7b.roa (raw, json)
Hash identifier: 9WKgp18xwDtBIR176IPnTQBdaSPSqpzJOt3sIdHAjJk=
Subject key identifier: 58:7F:E6:4B:87:26:09:7F:2A:43:B3:95:C2:C7:D8:B1:DE:8F:C7:19
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 28B1C5D24A95E9A2FFBD50E4645F84EB747AD690
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f15d26f-8f71-43a3-80b0-ce2c01880d7b.roa
Signing time: Wed 12 Nov 2025 02:10:04 +0000
ROA not before: Wed 12 Nov 2025 02:10:04 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f00:7440::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:b1:c5:d2:4a:95:e9:a2:ff:bd:50:e4:64:5f:84:eb:74:7a:d6:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 02:10:04 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=40cc610bc1e438d5a88b4c5b8ea696fb5ffd4471ac3d74d89275e08f082445be, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3a:d3:a2:e6:b5:b2:05:cd:b9:e2:54:3f:f3:
27:20:49:3c:de:24:e3:7b:83:66:aa:d8:ad:fc:4c:
4e:2d:a1:1f:2d:0b:50:8c:e9:28:e7:a6:83:2f:54:
db:eb:d1:8c:49:cb:e4:61:5e:c1:ab:ef:ab:ad:cb:
21:c4:66:73:22:54:00:38:96:ec:43:16:8d:18:87:
8d:6b:0f:73:db:a4:6a:32:bb:7c:6d:ca:b3:5c:ca:
60:da:a4:8d:96:4f:5d:06:68:7e:1f:2e:66:ee:08:
17:5a:49:dd:5c:1e:91:e9:36:18:ec:80:74:92:22:
f4:27:f4:b5:7a:95:d2:09:76:3a:01:59:ba:08:cc:
99:a4:15:6a:8b:21:21:8b:64:96:c3:75:01:89:92:
a3:5a:72:83:4c:97:03:e7:cd:c8:0a:c0:2e:17:ff:
4a:7c:bc:28:43:3f:45:56:5f:e9:01:65:8d:47:ff:
7e:92:7a:4d:78:e8:f6:1b:93:f8:f9:e9:2d:2a:ab:
9d:2a:2a:20:a3:c0:23:a9:cd:d2:d5:49:01:5d:fb:
18:ec:16:01:e1:31:ac:78:ad:4b:4b:a2:a6:cc:9a:
47:88:25:8c:7d:13:d0:5d:63:cf:dc:36:4d:f2:be:
58:6f:e8:20:8a:51:9e:9e:d2:fe:b2:d7:ae:3b:4c:
1f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7F:E6:4B:87:26:09:7F:2A:43:B3:95:C2:C7:D8:B1:DE:8F:C7:19
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f15d26f-8f71-43a3-80b0-ce2c01880d7b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f00:7440::/48
Signature Algorithm: sha256WithRSAEncryption
7e:5c:f8:1e:bb:9b:11:46:93:08:b2:7c:2c:3e:b9:f6:10:e0:
95:49:15:9d:2c:25:d8:30:37:65:34:3d:5b:24:78:2f:d3:87:
ea:c7:07:90:67:09:41:67:98:c2:55:10:98:98:35:d4:3a:15:
27:84:f0:98:a6:7c:d6:76:5d:6e:d1:a4:7f:cb:d4:4f:b0:50:
1b:ca:45:7a:86:bf:46:a8:bd:9b:a1:31:f9:03:a0:8b:2a:6f:
ce:ef:7d:c2:1f:42:58:cc:0f:84:10:ba:25:54:f1:d4:f8:4a:
01:af:84:a8:46:e6:19:7a:2b:50:f7:0b:82:08:8e:06:72:3a:
52:07:e7:08:2a:b3:5a:bd:e2:5e:a5:18:5c:87:2f:c2:f7:0b:
6d:7a:4d:6c:b3:4d:b5:68:e2:5d:45:46:4f:05:d9:22:a3:50:
f1:f4:41:3d:42:3f:a4:46:b5:d7:55:c3:f5:ec:5b:6c:46:bf:
6a:e0:e3:d3:8e:da:cf:92:51:35:46:b8:d2:58:cb:10:5a:8f:
59:52:0f:0f:c6:1c:3e:db:fe:86:52:08:37:fd:15:c7:ce:5c:
4b:64:c0:85:6a:e3:6c:e7:62:d7:6a:bc:6f:0a:ea:1f:c8:22:
57:56:09:33:bd:51:35:e2:86:28:d5:bc:2e:61:5c:09:1e:94:
9c:5f:f5:b1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:41 2025 by rpki-client