Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa
File: 6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa (raw, json)
Hash identifier: m8fpVTecrEReOfHHPKiLioXHsPxxHRRuUxtxveykjfU=
Subject key identifier: D5:80:CC:E1:62:26:9F:7E:5A:72:CB:89:7E:D0:1A:C3:7A:50:79:9E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1F5D680ADC478B0195DF3FF38B82D0A3FEEC7229
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa
Signing time: Wed 12 Nov 2025 01:11:35 +0000
ROA not before: Wed 12 Nov 2025 01:11:35 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 23.23.64.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:5d:68:0a:dc:47:8b:01:95:df:3f:f3:8b:82:d0:a3:fe:ec:72:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 01:11:35 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=a94b7ea8ae7be04b601ff69eafc98d765924a64fb75068e63351610938c8b3b1, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c5:5a:b9:f9:49:1a:da:36:87:d9:f6:15:5d:
79:a2:df:3c:45:38:42:dc:9a:de:44:d2:fa:6d:78:
ac:ee:20:80:78:f4:92:fb:c0:49:1b:ce:66:3d:5c:
80:7d:14:66:2f:23:ff:ec:3f:ef:e5:c0:ce:19:e9:
56:5d:1d:8b:cb:d0:6b:8f:a0:07:6d:a1:0b:f5:87:
5c:43:7c:77:99:a1:ba:42:a0:5e:e1:a0:55:ea:14:
34:58:94:ee:c7:64:6c:fc:68:92:bb:27:ea:75:3c:
8c:50:c0:9c:41:14:c1:2d:90:95:f6:96:a0:16:69:
5c:ba:2b:fe:f5:45:18:0b:38:a0:a2:50:93:f6:1e:
56:e8:32:2e:5e:a7:be:12:82:91:97:d8:a3:66:77:
1d:dd:e9:d9:fb:b5:27:4f:fb:86:59:47:28:82:d1:
65:ce:6a:81:ce:e1:63:7a:e4:c9:b5:5f:98:9b:4d:
ec:26:f0:e6:0f:1e:ed:1d:d4:48:11:d4:92:25:e6:
9b:c0:b3:44:34:14:9b:d2:32:23:66:aa:b5:83:10:
70:8f:4f:4b:eb:30:ad:c7:65:f4:83:8c:92:68:2e:
1b:b5:ef:29:4a:f2:32:81:20:5e:39:21:63:aa:37:
91:5c:f9:ea:3e:4b:88:e6:c1:10:f8:cd:49:f4:b3:
de:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:80:CC:E1:62:26:9F:7E:5A:72:CB:89:7E:D0:1A:C3:7A:50:79:9E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.23.64.0/21
Signature Algorithm: sha256WithRSAEncryption
01:69:16:07:02:9c:eb:b6:53:98:0e:42:70:b6:86:3d:6e:66:
14:11:a1:4c:e0:74:8d:91:cb:12:aa:82:75:92:d3:82:6c:5b:
54:30:91:19:4f:9f:d5:08:86:ba:fa:b9:2d:72:24:3b:f4:02:
01:98:8d:e9:11:4a:2b:58:40:14:f7:33:c5:cd:7b:3d:bc:33:
2b:4a:e2:9d:52:2b:97:b0:c4:40:e3:e8:66:8d:1d:0f:3d:35:
49:76:1a:da:5d:3b:2e:d7:20:f8:5a:b3:60:8a:61:49:5e:b1:
4e:0b:ba:7c:89:35:af:1d:81:75:77:62:2e:7a:53:70:a5:23:
4d:e6:8f:10:4c:a5:3f:6a:20:ce:67:4b:58:5a:96:60:e0:b1:
87:23:c3:0b:88:1e:8c:ec:eb:39:e7:59:70:a6:7e:9d:67:b5:
14:59:ca:9d:a3:b3:6e:8a:d4:8c:95:b5:ad:4e:a3:24:7c:a5:
dd:ac:ac:b8:1d:97:5c:6a:c5:fa:5c:2f:71:f0:2d:1c:a9:06:
d6:31:02:ff:76:f3:c6:bc:8e:71:9a:cc:8b:02:25:9e:21:b4:
22:80:00:8e:e6:27:ac:08:27:89:45:de:13:b5:70:ca:0f:50:
81:a5:f7:1d:f1:8a:28:9f:cc:08:12:e6:c9:03:22:e3:c3:77:
74:87:04:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:50:54 2025 by rpki-client