Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa
File: 9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa (raw, json)
Hash identifier: E2SG46adKaqRdtL4u2O9x0xYnoz9cONkcN+DEtp2ff0=
Subject key identifier: 97:E0:25:2B:49:1A:D3:35:57:6D:DB:66:4A:4B:CD:E4:06:25:E8:06
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2883E1C19378354678BA4A9DD5C1C37A0FC1B079
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa
Signing time: Tue 11 Nov 2025 01:21:25 +0000
ROA not before: Tue 11 Nov 2025 01:21:25 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f38:4040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:83:e1:c1:93:78:35:46:78:ba:4a:9d:d5:c1:c3:7a:0f:c1:b0:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 01:21:25 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=a7783d2eb4a631009575169dfac99429ea335e32b8cf9830ec59aa23c35089b5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:3e:1f:23:00:57:57:34:e8:2c:c3:56:d2:
da:6a:38:6f:3b:f5:e8:9f:27:7d:0e:4f:1e:80:68:
1e:76:9c:ff:bd:e5:e9:e2:2e:3d:0b:34:fc:70:b2:
5d:ed:4b:8f:9a:df:6d:c6:b1:43:15:c4:f5:52:1b:
ae:b3:1f:f6:85:a8:9d:b2:ac:25:30:df:5b:af:be:
83:75:25:9d:29:c7:d1:0c:da:be:a3:30:81:5e:ac:
0c:36:50:be:ef:ea:08:cc:b5:f5:3e:f1:12:f4:a5:
7e:3e:21:b8:28:eb:c9:ab:ef:9e:43:c3:bd:6d:48:
45:6f:d9:2c:31:ae:6c:9c:52:24:35:53:62:23:a2:
37:18:53:9a:58:f3:17:f3:11:e8:e0:b2:ce:07:85:
58:f0:3a:08:f3:5d:7e:5c:c5:49:65:5c:a9:14:a1:
d3:70:64:15:cf:87:4b:26:c7:52:98:fe:66:c6:a2:
39:b7:ab:fc:0b:23:e1:c6:a1:bb:5a:18:03:37:85:
d7:71:06:04:fe:32:fa:4a:ef:65:a5:68:56:04:92:
97:a9:cb:1f:06:69:9f:47:9d:b9:9f:a6:4b:ec:f2:
14:c2:05:e5:b7:d5:1c:4c:f3:90:6a:03:38:16:1d:
e1:4d:96:1b:e9:66:6e:fd:d5:f5:21:6b:11:51:2e:
87:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E0:25:2B:49:1A:D3:35:57:6D:DB:66:4A:4B:CD:E4:06:25:E8:06
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f38:4040::/48
Signature Algorithm: sha256WithRSAEncryption
49:59:c3:9f:c6:04:48:3a:04:f9:bb:9f:c5:68:75:d1:93:5a:
4c:ef:b9:c6:dd:06:0d:6e:58:e1:a0:6d:10:4c:7a:25:62:d0:
a5:10:54:dd:ce:73:72:37:91:be:b3:cd:b8:50:5e:b3:48:06:
89:29:66:7a:ea:64:f6:97:a6:aa:fc:6f:4a:11:cf:70:29:b9:
78:a4:62:21:08:4b:3b:aa:74:dd:f0:61:33:dc:4c:d4:d5:96:
ac:15:05:74:ef:bc:92:6b:41:98:f4:4b:1c:1e:15:68:22:b8:
a1:2e:c3:30:e2:31:e9:91:2f:a6:60:cd:6a:9f:78:b2:4f:e0:
3e:02:66:6f:76:56:24:4d:47:f6:f2:c8:a4:96:a7:82:bd:3e:
61:8e:38:92:cc:c5:f5:28:58:2a:36:68:d0:19:62:f4:29:3d:
92:6d:88:51:71:81:5e:97:06:69:1a:e8:22:93:39:90:f9:93:
d0:c6:79:2e:1f:3c:42:05:a3:e6:07:2f:ec:77:2e:0e:a8:8a:
0f:94:e3:f4:7b:26:b1:e6:1f:e0:86:e0:bc:1b:25:56:db:6e:
ab:cd:26:48:ab:71:50:4e:24:57:c3:3a:fe:41:58:f0:7f:56:
2f:bc:cd:cb:89:0e:ab:46:1a:ac:b4:f0:3c:ff:ec:d9:8f:75:
75:a0:f3:b8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:53:09 2025 by rpki-client