Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e77afe0-ddc1-4f2b-9478-c081cd335706.roa
File: 5e77afe0-ddc1-4f2b-9478-c081cd335706.roa (raw, json)
Hash identifier: qQGd4JglgQtjkHzqHV0JKBHBNncYZG2FUdA0zYtdH2A=
Subject key identifier: 3A:08:28:58:D4:53:27:20:32:F7:99:21:3A:D1:34:AF:EB:5F:80:22
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 63B07B555CAFB94A41A817A7ECA73E758B5B9EDD
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e77afe0-ddc1-4f2b-9478-c081cd335706.roa
Signing time: Wed 12 Nov 2025 02:21:42 +0000
ROA not before: Wed 12 Nov 2025 02:21:42 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fff:60a0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:b0:7b:55:5c:af:b9:4a:41:a8:17:a7:ec:a7:3e:75:8b:5b:9e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 02:21:42 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=91616d710eb5c2cd3538e4a935b0e4791afcc54d467ae81bb98031ecf60e5525, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:15:8a:f6:81:6e:f9:c0:ed:24:39:a6:c7:08:
58:02:6c:08:97:05:2d:d9:47:e5:4e:08:1a:e1:10:
ba:68:8a:e7:8c:f8:a7:cd:fb:69:59:84:11:ab:fc:
65:00:2a:07:dd:4a:e1:5e:fd:7a:e2:68:18:30:15:
8f:3f:57:80:ba:fa:f8:ed:28:8b:0a:f3:aa:3b:a7:
de:7c:71:d2:9c:68:ea:94:ac:f9:76:3f:04:50:b7:
dc:47:35:99:5d:65:8a:5e:63:3c:1b:9d:b0:d8:a1:
78:6b:f5:34:26:da:e4:23:0c:3f:43:b3:be:94:03:
a6:dc:dc:d1:69:58:40:52:ac:38:fc:c1:b5:ad:d9:
0f:50:fa:72:78:74:a5:1e:c1:eb:10:ce:5a:66:ca:
e0:a1:76:3d:1b:98:f3:b3:c6:26:69:63:d6:df:71:
a9:c0:9f:a2:fa:64:c0:81:5f:1f:11:f0:7a:9e:93:
fa:9b:a4:a6:d3:4b:03:81:60:dc:da:51:6c:62:26:
50:a9:b5:61:bd:90:4e:37:b8:06:38:1c:09:d4:46:
6e:25:6c:2d:93:af:82:e1:cc:8f:d7:fb:b9:8a:06:
30:17:9e:80:ab:6c:a5:cb:58:0f:81:a5:34:58:0a:
06:f7:7f:4a:a7:2b:32:c4:1f:89:73:a9:a4:c8:50:
4a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:08:28:58:D4:53:27:20:32:F7:99:21:3A:D1:34:AF:EB:5F:80:22
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e77afe0-ddc1-4f2b-9478-c081cd335706.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fff:60a0::/48
Signature Algorithm: sha256WithRSAEncryption
82:62:ff:0f:dc:d5:95:d6:15:1b:03:1f:5f:23:f6:c6:e4:fb:
24:2c:1e:80:73:69:83:bb:ab:24:d9:9c:28:f5:f8:83:ff:3e:
52:2e:b0:d7:0d:52:45:c6:83:97:1f:18:c2:5b:55:a0:2b:d0:
c8:2c:d3:4c:00:6e:9d:8d:de:86:6f:ee:91:bb:48:43:c7:df:
78:91:41:44:24:bd:01:bb:73:19:47:9f:84:9e:25:2b:a9:4c:
4a:3e:7c:19:10:44:67:21:d6:6a:b7:0d:d3:61:93:1c:00:ab:
02:4e:08:21:79:3d:d5:55:27:19:1d:10:25:72:f1:9a:5e:64:
da:fc:b7:0e:59:25:1d:18:46:81:e3:f0:a5:5b:e2:db:b4:be:
86:de:4d:cd:fa:7e:3e:17:42:09:47:52:3c:fd:f8:52:6e:46:
01:55:4c:39:d1:af:cc:a1:1a:66:4e:8d:be:be:6a:cd:2d:b0:
24:b5:97:1a:33:8c:41:79:d0:74:8a:7e:c7:1e:88:40:65:e3:
8d:e8:6a:a5:98:e1:45:8d:9f:57:e2:d5:dc:d0:76:eb:63:57:
6e:84:9b:d5:e1:45:eb:53:01:25:1a:fe:2d:76:1b:1e:e8:e6:
d9:33:86:52:9d:ac:08:3c:6d:71:7c:f4:94:5d:55:7a:a8:e6:
34:9b:e7:79
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:53:11 2025 by rpki-client