Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/272b68bc-ad95-4c61-a057-e565a411a365.roa
File: 272b68bc-ad95-4c61-a057-e565a411a365.roa (raw, json)
Hash identifier: ZwV2IMA4MbvAdEhXN+GKWDlwVte0N4zVLdp73DBRO9s=
Subject key identifier: 7C:76:88:6E:F7:8F:49:15:94:23:CA:9D:58:EF:30:FD:13:98:C6:42
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7BF7FBFFC34287C2C0301C0CEBB8D1F3BAADCF06
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/272b68bc-ad95-4c61-a057-e565a411a365.roa
Signing time: Wed 24 Sep 2025 00:10:48 +0000
ROA not before: Wed 24 Sep 2025 00:10:48 +0000
ROA not after: Wed 29 Oct 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1ff3:8090::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:f7:fb:ff:c3:42:87:c2:c0:30:1c:0c:eb:b8:d1:f3:ba:ad:cf:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 24 00:10:48 2025 GMT
Not After : Oct 29 23:59:59 2025 GMT
Subject: serialNumber=99583420596e2e939285e3711e4ac4ff620f6c5a96fa2e0be019a77c224df084, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ee:85:2c:4f:46:c8:05:ae:32:fa:1e:d3:c0:
3f:0d:ff:76:bd:8d:0e:1a:f5:60:ba:29:ec:ba:f3:
8c:74:6c:4d:c5:24:da:75:14:1f:f2:57:60:15:03:
38:29:c3:4e:41:03:2d:75:43:ce:05:b3:40:f5:df:
03:42:56:ec:1d:d5:f2:18:f3:ce:0e:f3:1b:7a:26:
64:50:7b:07:d5:e1:71:0e:b1:ee:a2:4f:16:2f:d0:
09:50:52:58:90:d4:3b:c2:bb:d2:1d:93:13:04:7b:
91:89:82:6a:8d:39:d7:48:8e:37:47:6e:06:cd:8d:
88:67:4e:ca:eb:b6:0d:1a:ee:83:f0:30:3f:7b:85:
25:c8:d8:ce:e0:fc:46:a1:9d:29:2a:f1:db:6c:08:
af:aa:8e:56:3b:95:fc:eb:e3:aa:6b:8f:77:0d:78:
28:82:f7:9b:9d:e9:d3:9d:e2:b8:64:b7:d1:c8:f8:
2c:b9:88:d0:1c:02:da:8b:9a:09:c6:d0:ed:d2:5f:
9b:a8:f4:3a:c7:41:aa:bc:53:4f:77:60:ac:bd:b2:
b1:bc:26:85:75:ca:c0:4c:b3:a0:ce:47:8a:76:29:
fe:62:a4:52:cf:c6:0a:74:82:db:06:24:6e:a5:b0:
53:9a:68:3d:0c:8b:3c:11:37:d2:5e:da:a2:4c:20:
88:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:76:88:6E:F7:8F:49:15:94:23:CA:9D:58:EF:30:FD:13:98:C6:42
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/272b68bc-ad95-4c61-a057-e565a411a365.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff3:8090::/46
Signature Algorithm: sha256WithRSAEncryption
43:60:5b:d5:b4:08:90:6c:0e:0a:f8:32:b3:30:f1:16:1d:1b:
f4:ce:16:23:6c:07:fc:23:a0:eb:e0:79:01:ce:e9:27:cf:ba:
60:65:49:b3:c3:7c:02:10:9c:2f:12:10:af:92:68:60:5f:4e:
2d:45:95:e2:ec:e0:e2:49:4e:61:33:ed:a8:58:24:0d:a3:df:
e5:dd:93:ef:3a:58:40:74:bf:a8:31:79:74:80:06:cc:a4:e8:
dd:7d:30:38:9f:5d:c0:99:21:88:0f:01:22:30:5a:9c:6e:b3:
42:14:46:4a:ce:94:89:2e:56:21:90:1c:ea:5f:81:3f:6d:31:
03:e8:39:5e:a1:51:ef:ff:16:6b:b9:c3:90:f8:61:57:b2:6d:
fa:4b:0c:ea:c7:7c:31:19:81:0d:a1:9c:ba:5d:78:67:50:06:
a1:3a:cf:74:52:e1:fd:c6:0d:31:35:68:f5:da:9e:83:99:40:
74:23:87:89:d4:f2:f2:59:c9:07:58:08:bd:bf:79:9b:ee:58:
71:24:df:53:69:a5:70:bb:69:8d:03:8e:5b:01:00:80:bf:dd:
4e:54:c0:2b:ad:79:d3:ca:6a:b0:c2:80:c9:ef:03:7a:53:aa:
16:27:07:65:42:15:e7:63:af:2d:03:6c:4a:fd:9a:22:18:f9:
33:b5:25:d0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Oct 8 23:18:56 2025 by rpki-client