Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa
File: c636934a-c7cc-4c0f-acb1-a74b2500994d.roa (raw, json)
Hash identifier: FbDCyNMTsKFwwvSo3UWXVDUzA89a/AZgODhz9eLICaE=
Subject key identifier: 4E:8A:E0:37:27:8E:BF:1F:EC:AC:D7:9E:18:3B:20:11:72:11:D3:CA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 37B5B5AB1F6D3A7FFB11177E6F116EA9B0DB3C38
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa
Signing time: Tue 11 Nov 2025 01:11:53 +0000
ROA not before: Tue 11 Nov 2025 01:11:53 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f38:3480::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:b5:b5:ab:1f:6d:3a:7f:fb:11:17:7e:6f:11:6e:a9:b0:db:3c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 01:11:53 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=726d8ad64490c2ea1117ca48bac607919a6b9612c40f1841f9fc874bb95f8b2a, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:ae:41:44:98:1c:5b:ad:20:a1:63:f0:41:
14:3f:23:35:15:cc:98:d1:30:14:ea:cd:15:b1:4e:
bb:60:d1:25:0a:07:ac:9c:56:31:e9:7f:49:c7:95:
07:fb:6b:f8:d8:73:33:b4:e9:1c:d1:70:9c:dd:eb:
58:19:73:c3:c2:fd:30:09:b6:97:36:12:7a:c6:d0:
f6:7a:e2:fe:35:83:65:c3:16:ac:f9:6a:ab:85:ce:
78:4f:71:ec:39:a9:0d:2e:e1:54:75:35:04:79:97:
03:91:38:ea:8d:40:9a:d6:9c:bc:0a:62:c4:8e:dc:
6f:28:31:39:5b:87:7c:c2:fa:fa:a0:ee:ea:10:bd:
92:f5:93:8a:79:93:52:a8:26:88:2b:47:1e:67:e9:
8f:53:1f:0a:cf:0d:3c:49:aa:05:04:79:77:c5:47:
67:73:fe:2f:91:8b:b5:54:01:35:50:e4:be:72:17:
86:2b:3c:50:a5:bd:93:d1:38:7c:d4:72:b5:e1:c2:
e9:26:4a:dc:7a:a2:16:17:7b:17:0f:ea:02:37:f3:
2d:b5:18:93:45:d8:fb:51:d4:6b:00:e8:bd:84:c1:
fd:aa:cc:ca:9b:3a:8d:67:4b:da:b9:d6:89:ab:fc:
d9:57:37:4f:86:7f:a6:d2:b5:9e:3f:6a:fd:93:eb:
1e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:8A:E0:37:27:8E:BF:1F:EC:AC:D7:9E:18:3B:20:11:72:11:D3:CA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f38:3480::/48
Signature Algorithm: sha256WithRSAEncryption
7c:cb:dd:ee:c1:52:4d:8f:46:a4:af:fc:ee:af:02:76:f9:b0:
e0:5e:b1:36:77:44:2e:59:a8:3f:7d:43:e1:db:b9:90:66:8c:
c3:31:6a:37:87:64:06:64:e4:5b:85:d5:69:22:d8:dc:74:20:
82:7a:ce:3b:3f:39:65:c1:2b:be:68:a7:3e:ed:33:cf:f1:6c:
f2:f4:de:16:0a:63:8e:d0:0f:c8:0d:d4:b9:4c:f9:a7:d9:e5:
74:6b:e0:f7:f5:fd:cb:42:cb:4c:ae:63:92:62:d6:3f:6a:05:
1b:57:e4:d3:13:49:7d:e7:1e:86:f7:cb:73:28:10:1a:8e:45:
d5:b3:08:08:2f:85:92:ca:d9:d4:94:7d:ab:2c:d3:d7:d1:71:
85:14:2e:c3:94:29:75:ba:74:ee:fd:21:f9:38:c3:f8:6a:56:
17:e0:77:77:05:a3:38:21:99:ee:cc:a3:5f:9a:4d:79:9b:f3:
70:6e:ec:61:9c:fd:d9:26:50:05:c2:1a:5f:8a:9d:ea:29:be:
96:21:12:85:27:1f:39:4b:ea:2b:b7:77:8a:cc:e8:dd:4d:ea:
34:d6:ce:f2:c8:72:ef:92:86:48:93:09:03:bc:71:e4:5b:84:
71:09:0b:b9:d8:d4:11:cf:f1:43:3c:d2:35:ef:8f:b9:ee:27:
56:69:b5:f1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Nov 18 10:39:20 2025 by rpki-client