Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa
File: 402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa (raw, json)
Hash identifier: vfOmyUcfD1McsxG/I5rBGQQSCACZG3nRzMgNPpiv+Qw=
Subject key identifier: 33:40:9D:ED:EA:DB:1C:A5:83:DA:B5:B0:D3:58:72:C9:1E:C8:A5:9E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6C5EA098410E40603F7F2F7AB531D11848B80FC6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa
Signing time: Wed 12 Nov 2025 00:31:07 +0000
ROA not before: Wed 12 Nov 2025 00:31:07 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff2:7400::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:5e:a0:98:41:0e:40:60:3f:7f:2f:7a:b5:31:d1:18:48:b8:0f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 00:31:07 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=cc5b30bc1ae5cefb30024f6b1f2a26635146246bd661c0867ded27afeb86793f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:b2:42:2f:00:e7:a4:63:76:0f:db:ee:47:
bc:78:b5:44:88:60:9d:7d:05:65:0a:66:10:47:ea:
ec:95:9e:f1:41:85:07:11:08:e0:01:3d:53:44:f5:
8e:db:62:d1:1f:c7:1c:fd:5e:41:56:5c:d9:0f:41:
da:94:fd:0c:05:c1:9d:3f:32:a0:1a:4b:93:8a:b0:
ad:ba:87:67:80:45:1d:3f:1d:5f:23:b1:d4:f3:44:
10:96:3a:03:0f:0d:29:d9:8f:4b:f0:1c:75:c5:e1:
6c:f8:4d:82:b9:da:49:41:1e:49:9d:ea:06:22:79:
a6:1a:ac:64:7e:05:55:e5:d7:5e:0b:6f:05:50:95:
8a:61:32:d6:da:a5:a5:e2:85:27:6f:a3:cb:c6:5c:
64:a1:b8:a1:95:5f:76:16:36:3d:09:84:00:f0:b0:
11:b1:c0:54:f5:70:2e:c6:d7:9b:7e:34:a0:53:4b:
76:f8:38:0e:1a:f9:75:00:f1:55:e3:76:88:6a:88:
71:48:b2:d4:16:3a:31:4a:b2:80:bf:60:af:10:4c:
46:dc:09:59:3d:dd:12:a7:90:12:b2:3b:69:d8:38:
e7:1b:4a:dd:97:05:35:b3:fe:ca:93:10:0c:bc:15:
81:72:78:33:7e:87:89:fa:9b:be:7e:df:36:e6:e3:
f2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:40:9D:ED:EA:DB:1C:A5:83:DA:B5:B0:D3:58:72:C9:1E:C8:A5:9E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff2:7400::/40
Signature Algorithm: sha256WithRSAEncryption
78:73:f8:ed:f0:ad:a1:13:2d:53:c8:3a:a1:01:65:e6:d4:31:
0a:ee:ad:e8:81:b4:76:91:f1:d4:e0:d0:5f:72:c3:20:ee:6d:
06:df:4d:51:8c:b3:c4:f7:82:13:c1:6c:e9:28:d8:e4:c8:e2:
40:7a:8f:09:31:19:bc:2f:ea:33:2a:65:a7:57:de:7a:4d:09:
f5:ca:dd:5c:3e:82:eb:89:09:da:94:3c:38:f7:34:4f:1c:0a:
f3:8e:1a:d7:c1:8c:0c:0d:f3:86:69:26:1f:13:e8:80:34:97:
a4:71:ac:43:7f:ee:9d:50:5d:a6:5e:e0:d6:a7:e7:0c:53:42:
6c:ce:61:1e:c4:32:40:23:30:9b:86:56:14:af:a7:77:04:a3:
bb:c4:8d:58:b0:d6:07:d7:e7:a1:56:1d:de:34:50:41:2e:f1:
ec:31:fe:06:1c:bf:e5:46:61:0f:b3:02:78:51:73:00:2b:39:
2c:71:e2:52:c9:02:28:45:cd:a6:6e:fd:f4:c3:0d:3a:93:a2:
c1:94:2c:4e:aa:42:cb:8f:c6:a2:dd:5f:b3:71:5f:ab:09:b0:
a9:bc:6c:35:fc:b7:80:7f:47:43:07:8a:f8:e6:f5:5a:be:e3:
43:14:16:ba:e3:7c:12:17:90:e4:51:83:f4:fe:1d:dc:31:40:
81:5f:2b:1c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:53:15 2025 by rpki-client