Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a764f24-7058-4161-b89e-768a905c8ad3.roa
File: 8a764f24-7058-4161-b89e-768a905c8ad3.roa (raw, json)
Hash identifier: SwSV9yrHueyrjFYqxjA5Ly5VnQcTR0dAlzlR2ucfcs8=
Subject key identifier: 65:F8:6F:EA:9F:C5:86:9F:E9:6F:C6:91:46:5F:CB:B8:61:1D:FC:7B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2C4DC42E2498A5EAE86F25AB19F60E0E9B13A381
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a764f24-7058-4161-b89e-768a905c8ad3.roa
Signing time: Wed 12 Nov 2025 00:20:06 +0000
ROA not before: Wed 12 Nov 2025 00:20:06 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f1f:4000::/37 maxlen: 37
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:4d:c4:2e:24:98:a5:ea:e8:6f:25:ab:19:f6:0e:0e:9b:13:a3:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 00:20:06 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=146e9b5417b47dd823e25485ce80c4d217ea1d2c437ac425f555fe7f8fff929a, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:b1:6e:cc:1d:4d:d3:23:7c:32:5d:40:58:
01:fa:64:8f:de:2c:68:00:b0:d5:5d:b0:fd:29:ee:
85:43:3e:ac:b5:23:d1:d7:77:21:66:82:da:91:6b:
55:20:03:02:33:57:cc:e5:bb:74:06:e9:d8:c8:0c:
b8:d0:c8:c5:32:8d:18:da:b2:1e:25:40:b3:8b:33:
13:7e:94:58:cf:00:6b:eb:3e:1a:89:fe:8e:57:06:
74:1f:5b:d6:bc:52:ce:ce:e3:1c:19:9a:86:11:c6:
01:1c:f8:99:99:ac:af:db:57:01:62:c7:5a:2a:67:
8f:16:88:73:c4:d0:de:9d:c0:47:a9:94:9d:7d:a8:
e8:1e:29:d1:b2:f6:3e:a3:0b:20:4b:02:4f:cc:6f:
22:45:7b:f4:5b:b6:b8:a4:68:25:02:96:aa:b5:36:
8a:81:aa:8d:9e:a3:6c:f4:23:42:0f:9e:79:96:91:
a9:3e:85:c4:83:e1:f7:07:01:4b:a1:13:ce:de:af:
3d:74:7e:43:13:5d:3e:9e:22:5b:af:7d:a4:0f:e7:
99:d1:79:33:f5:f6:74:a4:3a:96:91:1e:5a:c9:85:
7d:08:0b:11:81:90:89:eb:8c:52:86:3b:50:c0:8a:
a3:cc:42:f3:50:f9:68:d3:c3:9b:01:d4:18:ab:31:
69:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F8:6F:EA:9F:C5:86:9F:E9:6F:C6:91:46:5F:CB:B8:61:1D:FC:7B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a764f24-7058-4161-b89e-768a905c8ad3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f1f:4000::/37
Signature Algorithm: sha256WithRSAEncryption
42:81:61:96:ca:d6:bc:e2:c9:33:e5:d7:3e:8f:1e:a2:32:67:
e8:a6:eb:cb:c3:b9:c9:ba:f3:d3:4c:8b:58:72:bb:73:55:76:
e5:4e:37:fd:33:23:25:ec:7c:6d:b5:6c:f0:59:c8:93:9d:d6:
85:ff:e3:f3:35:34:dd:6a:fe:ce:d4:4f:23:1c:56:f3:84:db:
65:3d:23:ff:f2:8e:7c:5f:f3:f4:c8:b3:df:a0:66:24:95:3c:
93:f7:c4:42:c3:b7:db:e3:8b:f1:05:8c:0a:6e:6d:dc:c5:a0:
76:25:aa:95:88:4f:70:e5:6a:c5:69:cb:26:d6:45:ad:2d:98:
c4:14:8a:15:ef:e8:77:bc:a1:a9:25:64:7a:b0:90:55:f9:1d:
e0:c8:9a:18:0b:8f:e1:91:a4:3e:a9:fe:e1:ea:2c:bd:82:c3:
57:8c:f1:c9:35:76:7c:79:9f:13:9c:e5:e4:4e:3a:69:38:93:
01:20:51:00:26:ba:88:35:65:39:13:7d:3e:15:d9:ff:3a:78:
bd:66:2d:ad:f8:aa:d5:9a:b7:49:0c:8b:ad:1e:d9:cb:39:f1:
51:67:15:e9:57:b4:dc:b1:1d:f6:6a:4d:fa:08:80:b1:29:86:
c1:4a:10:3a:7a:7c:6a:66:87:6d:88:89:c0:df:0e:d8:bd:c4:
4f:b0:13:50
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Nov 18 07:02:57 2025 by rpki-client