Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97aba946-3a05-402f-9b1e-270f07bcd39f.roa
File: 97aba946-3a05-402f-9b1e-270f07bcd39f.roa (raw, json)
Hash identifier: elHk+QL9Vb94cRJdhI2/t2aSOxBMZEFU73hud+GzcAs=
Subject key identifier: 6D:A5:A1:6D:E6:0E:42:A5:C7:65:0C:D6:94:1D:AC:08:6F:75:31:25
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 25BBF75DDE8DD2960FA546CDA79E374FA50D9C9F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97aba946-3a05-402f-9b1e-270f07bcd39f.roa
Signing time: Sun 16 Nov 2025 00:10:39 +0000
ROA not before: Sun 16 Nov 2025 00:10:39 +0000
ROA not after: Sun 21 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 35.18.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:bb:f7:5d:de:8d:d2:96:0f:a5:46:cd:a7:9e:37:4f:a5:0d:9c:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 16 00:10:39 2025 GMT
Not After : Dec 21 23:59:59 2025 GMT
Subject: serialNumber=cee91c29c4c69390456a2b06b198d11e96317f26f3b5f8fa8cd5ab78b9187d6d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9b:d8:ed:12:aa:11:ca:bc:a1:8c:64:17:62:
c3:a5:91:2a:33:fc:84:27:4f:ce:9c:ce:89:77:f8:
1f:5d:19:8c:b0:73:28:97:92:f8:38:70:05:25:38:
b8:ee:b9:0b:94:8e:05:1e:cb:15:75:bd:01:85:0a:
92:00:09:6b:42:76:cd:74:2c:e7:54:2a:85:7f:ce:
47:2c:07:64:bf:38:ac:8e:64:01:83:16:52:60:5e:
ef:24:c4:33:94:15:ec:f4:9b:fa:ce:35:ed:c7:8b:
6f:61:13:f7:5e:37:9a:37:c6:f3:3f:3c:6e:75:f4:
e2:31:29:7e:f5:da:4f:b1:aa:d9:c2:d3:d6:59:59:
f8:92:01:87:ca:cd:f9:44:66:d5:aa:fb:17:60:48:
25:49:ff:6e:28:6f:c3:d5:ff:a5:70:88:50:ff:8f:
57:a8:56:32:c0:97:da:e1:14:25:0b:a1:cb:5c:a3:
f2:4d:15:7e:53:0f:35:06:15:3a:27:b5:7f:56:18:
39:94:69:33:8a:6e:53:0b:fe:2c:99:38:fa:f7:9b:
d1:8f:e1:99:2e:94:45:61:23:44:dd:2b:9e:f0:d2:
e3:6c:b9:fc:44:e0:23:7d:4b:47:79:42:6b:1c:66:
8e:25:4a:01:ef:42:19:f1:cc:1a:a1:24:2a:2a:ab:
1a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A5:A1:6D:E6:0E:42:A5:C7:65:0C:D6:94:1D:AC:08:6F:75:31:25
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97aba946-3a05-402f-9b1e-270f07bcd39f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.18.0.0/15
Signature Algorithm: sha256WithRSAEncryption
2e:82:af:65:e5:8e:36:76:96:82:ca:0f:b1:38:70:c5:25:f4:
d3:a9:c7:95:76:f6:01:a2:a7:2f:b2:42:c1:c2:78:16:6c:24:
e1:cb:b2:74:5e:db:04:71:84:e1:d6:f7:b3:a2:29:f5:cc:9c:
a0:c7:80:ac:40:c5:51:08:70:4d:4d:c6:12:03:ba:e3:2a:2f:
11:d7:04:e1:27:25:84:e2:23:dc:11:0a:3a:62:83:fa:10:b9:
57:2c:04:8a:b0:5a:f2:f6:5f:68:34:e3:b9:1b:1b:b6:42:e3:
16:61:2a:6d:e8:b4:a0:6a:ea:db:5c:21:38:49:15:c6:c9:5a:
2e:b5:bd:a8:3a:e1:7d:20:63:80:a0:2d:f9:15:58:70:4c:69:
18:60:b5:24:35:c5:a0:cf:45:6e:01:1c:90:ef:bb:3a:23:7a:
39:76:b1:28:e4:91:0a:35:5d:9a:4c:5b:08:22:17:b4:26:bd:
e6:8c:d2:c2:c1:b4:51:c0:d9:95:b7:22:69:97:5d:f3:fe:a8:
14:bc:ee:66:de:9c:cf:07:bc:e7:35:0f:b8:ed:7d:06:7a:12:
7f:02:76:e4:04:df:3d:21:63:e3:31:7e:39:90:8b:75:0c:ca:
44:32:d6:2d:06:b4:9a:7b:d8:5f:d0:a6:9c:17:3b:b1:68:97:
68:66:58:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:17 2025 by rpki-client