Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea6e4023-74b4-4a9d-b0e6-45ca142b5fe1.roa
File: ea6e4023-74b4-4a9d-b0e6-45ca142b5fe1.roa (raw, json)
Hash identifier: HErmwwuVDsdxzcP2BkR1UKfl7IC+tbebHkbP160bK6c=
Subject key identifier: E5:C6:01:CC:7F:D5:86:8A:B3:33:C8:C8:4E:AE:78:0B:64:65:77:B9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 27B5FAF0169F2529D1A19155EA0AFBAFF606F971
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea6e4023-74b4-4a9d-b0e6-45ca142b5fe1.roa
Signing time: Tue 11 Nov 2025 02:21:36 +0000
ROA not before: Tue 11 Nov 2025 02:21:36 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fff:8100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:b5:fa:f0:16:9f:25:29:d1:a1:91:55:ea:0a:fb:af:f6:06:f9:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 02:21:36 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=d51844a920ddca864922b3e17e2d189e6f440cc780449235703ffcea33ccf004, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e8:d4:38:82:26:c4:21:bc:6e:e6:6b:53:83:
43:f0:79:57:2f:ea:fd:36:b3:c5:a9:1b:85:60:a7:
3a:15:98:ac:77:b0:82:fc:d8:38:38:2c:fb:8d:9c:
92:4f:8f:64:bb:f4:1d:a1:02:24:46:c5:cc:09:69:
78:b0:ec:66:2e:35:4e:8f:0e:71:90:e0:73:6f:7c:
9a:8c:8b:2f:ac:d3:8c:fb:1e:43:6c:b5:62:9e:40:
bf:6d:30:7c:6f:50:2e:6c:e2:16:e5:fe:4e:42:b8:
79:ea:65:52:2a:0e:98:e4:65:61:d2:e1:1f:bb:7e:
b3:e0:06:0d:aa:9e:0e:62:28:6b:65:c3:f5:e2:2e:
fe:80:68:df:72:f0:6c:0d:b3:99:c2:cc:05:25:c6:
42:03:1b:c9:98:21:19:29:76:80:7e:45:22:06:aa:
60:1d:45:78:96:e5:8a:6d:c4:53:18:08:f5:a1:2e:
3c:fd:ce:75:1e:4f:14:d7:d6:6d:a1:20:20:15:5f:
78:3d:3d:89:99:09:22:98:9d:fd:81:7a:12:3c:f1:
e5:66:d6:8a:bf:88:43:98:e4:8f:89:e5:33:7d:6a:
f4:8b:55:2a:49:db:5e:e8:18:d9:b0:e7:5a:ef:e3:
30:d7:a1:3b:47:08:9e:e4:da:16:b6:ea:b8:ac:19:
26:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C6:01:CC:7F:D5:86:8A:B3:33:C8:C8:4E:AE:78:0B:64:65:77:B9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea6e4023-74b4-4a9d-b0e6-45ca142b5fe1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fff:8100::/48
Signature Algorithm: sha256WithRSAEncryption
bb:04:00:d5:89:60:4b:80:d6:5f:d9:00:02:54:3c:20:9c:e5:
54:5a:22:08:d1:fc:7d:b1:13:b3:34:21:8a:1b:29:b7:96:72:
d8:72:97:e1:83:c3:56:67:c9:3e:54:a4:ac:02:61:c9:4d:0c:
2d:d2:ec:a5:af:c2:31:47:32:32:1c:b5:71:14:96:8c:95:9c:
63:ea:00:48:ae:23:54:06:ca:8b:a5:7f:50:39:ed:f6:34:32:
10:33:3a:c1:4e:15:eb:9e:00:bd:14:e3:b1:00:4e:59:20:60:
83:17:c0:6c:0b:ce:ff:3f:47:3f:10:29:b4:10:cf:1e:31:61:
85:46:d4:13:22:82:c8:66:34:2b:56:f4:6d:06:b4:ea:43:8a:
ef:dc:ff:e5:10:2d:12:f9:3b:8c:05:01:f5:67:5e:39:76:41:
96:b7:43:2c:94:ef:69:e5:bd:2d:6b:b6:f6:72:3e:68:9a:fe:
c2:cd:a1:ae:01:30:9a:08:4e:72:2f:88:6a:62:f6:6c:14:ac:
0b:8a:37:6b:59:7c:09:68:00:9c:71:5d:de:9b:9e:52:a2:e2:
76:b6:01:f5:89:14:b4:e0:f6:de:88:4e:27:83:62:ab:01:f6:
84:9b:87:fc:be:64:13:55:04:0a:49:db:72:10:2c:9b:3d:a7:
76:8e:09:4d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Nov 18 09:37:34 2025 by rpki-client