Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa
File: 3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa (raw, json)
Hash identifier: 6ptWMp7n+Zc82kUwDwFYpqpjzAklEVO69Oi5Y+xONQE=
Subject key identifier: 7F:2A:E3:4A:9E:81:1D:19:5B:06:AF:B0:0F:EA:E2:BE:16:FF:17:6B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 488BF2AFD2478221E7E6A9D8A1B1C76CA6F284AA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa
Signing time: Tue 11 Nov 2025 00:21:18 +0000
ROA not before: Tue 11 Nov 2025 00:21:18 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.62.70.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:8b:f2:af:d2:47:82:21:e7:e6:a9:d8:a1:b1:c7:6c:a6:f2:84:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 00:21:18 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=b6e9cca7da2a253b4694b9a776b7b7f00608f354ca25e51a27682de35b2b286b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:da:31:c6:24:9f:98:e4:37:63:75:84:29:de:
0d:aa:44:cb:74:df:7e:14:3d:bd:57:6e:f1:02:aa:
5d:5d:32:fb:d1:1e:9b:87:76:34:54:50:04:4f:46:
c5:b8:33:f4:ca:10:ce:6f:41:58:ea:ad:80:71:2b:
53:c3:15:1a:08:5b:77:56:7f:1c:2a:f5:11:15:b7:
a9:e3:83:57:04:04:9a:21:f3:7d:6b:40:a9:13:ec:
f3:36:8e:89:f5:28:e8:74:3b:5e:d5:3e:7e:ff:22:
8e:46:2c:cb:bd:43:df:8e:54:2a:5d:ce:2e:1e:c3:
63:65:97:eb:4f:c2:71:cb:78:22:4f:b4:01:64:bc:
3d:41:63:dc:67:e2:56:4a:7d:cf:c9:28:5c:7f:ef:
01:e5:e1:ba:82:6b:d7:28:8f:d5:31:95:8e:d0:26:
79:27:56:c7:ec:5c:1e:f4:6e:28:a8:3c:97:9c:68:
ee:e9:06:1b:9c:b5:02:f1:d1:2a:45:9e:b7:87:0f:
ed:82:b7:6d:8e:be:8a:72:d0:25:7b:bd:4d:67:10:
18:41:78:23:5d:aa:1d:e7:8e:aa:ba:90:bc:ae:57:
15:e5:db:72:0b:75:09:9a:ba:5e:f9:bc:8c:8c:ec:
0a:80:93:42:d5:4d:e9:b8:ba:b1:1a:40:44:18:6d:
70:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2A:E3:4A:9E:81:1D:19:5B:06:AF:B0:0F:EA:E2:BE:16:FF:17:6B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.62.70.0/23
Signature Algorithm: sha256WithRSAEncryption
66:5d:21:20:82:08:40:c6:19:e0:82:c0:38:2e:c6:7c:68:54:
43:0a:98:25:1d:6a:2c:b8:7e:de:8b:b1:70:07:d2:39:02:f4:
27:00:39:e9:31:41:eb:a8:79:f3:2d:0c:7a:c7:bf:f1:45:ff:
ce:ea:1e:43:f6:48:87:df:44:37:0e:72:39:73:3c:29:07:af:
c8:b6:7e:ca:b7:26:d6:d1:58:ee:c0:4e:99:75:1d:5e:27:94:
16:57:58:1e:8a:43:b6:1d:17:50:17:cf:e2:f8:85:5f:bd:0f:
b0:a3:6d:08:08:f3:47:63:44:98:6a:1f:4e:c7:10:4a:67:98:
6a:fe:f8:06:55:7a:c7:c8:fe:52:10:9b:03:6e:7d:4b:2e:72:
54:ad:2a:89:3f:d9:4f:99:bd:8a:80:07:3a:eb:a2:36:17:82:
fd:7a:95:ee:28:a3:a1:a9:7d:3a:2c:6a:ec:51:20:9d:1e:2f:
b6:bd:50:fb:a3:82:c1:4a:5c:21:ac:81:10:19:2a:81:b7:24:
b4:61:96:c5:0a:56:fe:8d:4f:9c:75:aa:3d:4b:03:26:ee:71:
5f:b8:1c:18:e3:05:39:47:66:64:5f:f7:a8:ad:13:f6:34:4e:
86:01:1e:e1:86:71:c7:03:05:75:d8:7f:4a:db:e5:35:d8:50:
74:bb:db:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:29 2025 by rpki-client