Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa
File: 5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa (raw, json)
Hash identifier: T7bqWxcISSG8Ydxx29ZBvOQbbuOJ3kVre3eBv9/NINk=
Subject key identifier: 96:6F:01:D3:4C:81:E5:62:71:B7:71:1E:C5:04:30:E9:0F:55:31:69
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1E10B06E6D43788397E47170D4B3E67F42EA87BB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa
Signing time: Wed 12 Nov 2025 02:20:42 +0000
ROA not before: Wed 12 Nov 2025 02:20:42 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f11:c00::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:10:b0:6e:6d:43:78:83:97:e4:71:70:d4:b3:e6:7f:42:ea:87:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 02:20:42 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=f0f223278a8a86ef0e4ef33f9b299c702c8b88ad0a156a76fa3cdc699c64ed39, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:eb:f1:47:bc:9d:32:e8:7d:d1:35:08:1e:18:
fa:29:65:bb:dd:b3:98:41:b4:22:16:34:b6:54:8a:
16:5a:1c:4c:60:57:de:1e:07:de:fe:8b:00:54:07:
85:cd:a9:1f:ff:85:23:1f:67:9f:a6:8b:53:85:06:
74:82:47:2a:cd:bf:70:6c:a9:41:87:e0:78:63:ff:
70:28:a3:a5:d5:fa:70:2d:dd:fe:ba:62:b7:fe:f8:
f8:9e:dd:77:02:df:a2:f9:9f:c6:4d:1f:48:ff:71:
dd:8f:56:04:3f:95:80:7f:1d:84:69:15:e8:fc:79:
a6:ce:94:d0:ef:f5:52:93:01:96:c8:77:b9:bc:6a:
61:b3:17:8e:fa:ad:f5:b0:dc:2a:46:7b:81:e3:0f:
7d:5a:c8:55:e8:11:87:2d:87:04:67:03:c8:41:40:
89:19:18:88:96:05:98:fa:7a:fd:8b:20:25:82:37:
3b:aa:76:5e:d2:5e:fd:d7:30:0e:f6:ae:90:2f:5a:
7d:d6:3f:92:51:9e:22:e0:e6:24:4f:fc:8d:01:c4:
fa:0c:1f:04:6a:44:0f:57:0e:1c:a7:01:98:bc:1a:
84:4a:03:bc:22:ce:f2:05:2d:09:15:c9:e3:ba:43:
6d:d0:f0:a8:6d:44:af:b3:4a:6a:1a:3b:25:61:5f:
04:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6F:01:D3:4C:81:E5:62:71:B7:71:1E:C5:04:30:E9:0F:55:31:69
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f11:c00::/38
Signature Algorithm: sha256WithRSAEncryption
a1:71:dd:b7:47:3b:6a:00:22:35:bf:ec:c9:07:a2:51:e0:08:
b5:0e:6f:c5:33:83:ba:78:fe:7f:f8:77:01:25:a0:4e:d1:47:
6d:d6:31:ca:74:cc:8e:23:d8:2e:d1:a1:db:95:c1:af:9e:2a:
92:cb:b8:19:8b:cb:17:a0:60:d5:c6:38:58:fa:2e:52:b2:4d:
b9:2a:f7:de:58:a3:54:b0:bd:2b:63:8c:d8:f5:e4:07:cb:32:
f1:57:95:ed:73:b9:15:4e:12:a4:c9:12:c8:5c:28:75:34:4a:
9f:6b:00:60:92:72:55:5b:21:e0:84:2a:1a:79:f5:d4:be:d1:
0f:ef:da:21:66:4b:18:ed:93:3a:1d:f2:f2:dd:d5:0d:66:37:
22:0a:22:b0:54:5e:50:5f:7e:80:1a:03:d9:c8:e0:8d:ed:f3:
1a:7d:54:b6:65:8e:e5:bf:98:e4:97:d2:eb:91:67:2f:da:98:
b3:a1:70:38:e7:f6:22:59:9a:b7:6d:12:b6:e3:eb:41:81:e0:
f3:0f:07:a4:08:ab:56:c4:2a:f2:6f:ae:a3:f4:4e:eb:07:64:
ab:f3:79:3f:77:a5:1a:a2:a2:f9:9a:be:30:cf:04:fd:d3:d2:
dd:0e:46:b4:67:59:b8:f5:da:50:22:52:e6:c8:3d:93:b5:24:
c8:0b:d0:12
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:16 2025 by rpki-client