Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa
File: ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa (raw, json)
Hash identifier: 1JxlMZyaZZB86IY34xHlMDXuOAbMjunjWzhEsIj3GtY=
Subject key identifier: 41:97:45:46:92:B6:68:4F:1A:2D:70:AB:70:B3:67:E3:7D:52:B5:BE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6A15F110E1C5DD4A469A22B72090DCB2D83FDCE0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa
Signing time: Tue 11 Nov 2025 01:10:51 +0000
ROA not before: Tue 11 Nov 2025 01:10:51 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 107.21.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:15:f1:10:e1:c5:dd:4a:46:9a:22:b7:20:90:dc:b2:d8:3f:dc:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 01:10:51 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=16fae18f2b4fb505c6cd8c44075f7ed9729f57c0674bd445c97fd9eab065309f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:33:69:f4:46:c2:c3:be:20:6a:5b:3a:ad:1d:
15:99:81:fa:ca:30:ca:d5:ef:44:93:43:93:46:7e:
ed:cb:af:d2:0a:12:b3:5b:24:cb:79:b8:67:04:62:
04:d5:6d:3a:e2:3e:19:64:98:b5:73:ea:72:72:cc:
52:29:e6:6d:e0:e6:59:6c:13:98:7e:7c:0e:d7:a0:
24:dd:81:7a:25:18:68:7d:61:ab:54:07:bd:f5:54:
f0:b0:44:2a:81:f8:ff:63:c6:ab:a9:50:dd:ed:2a:
d9:df:be:e0:dd:5c:1c:f8:c2:ea:2c:69:d5:35:02:
3b:5a:50:47:8c:3a:0f:b8:98:a5:04:e9:ae:b5:e0:
f3:af:2d:21:87:71:6a:15:26:66:b5:1f:35:ed:09:
85:6f:47:d6:ac:9d:c8:0a:e5:d9:3a:08:c3:ba:d5:
9b:d1:ec:86:ee:3a:26:e0:0a:26:55:d7:6b:14:9b:
5b:41:c2:eb:e3:35:d7:c9:bc:e1:ea:25:5a:11:64:
c9:98:a8:e8:71:64:8b:ed:49:79:7a:b3:48:db:2b:
bb:f0:7f:67:d9:c9:69:66:f0:f8:21:24:7b:aa:81:
50:dc:84:b6:e4:ad:0b:af:35:db:e8:b4:70:08:c9:
b0:5b:a8:8f:ed:c6:be:32:b5:bd:89:88:96:58:d7:
c8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:97:45:46:92:B6:68:4F:1A:2D:70:AB:70:B3:67:E3:7D:52:B5:BE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.21.224.0/19
Signature Algorithm: sha256WithRSAEncryption
24:50:4d:64:d1:0c:2c:12:45:2c:95:23:95:40:19:41:2d:5c:
f7:3b:04:2e:a0:c7:62:e1:32:64:d2:21:77:6b:8c:8c:ff:18:
c8:f7:d8:fa:58:98:62:44:e2:49:8f:26:b0:93:67:4d:c2:9b:
43:e1:66:eb:0e:ab:b1:ee:c7:f4:b5:06:94:c2:22:2f:db:32:
86:41:a3:7f:17:73:d0:ed:44:e7:fa:d4:bf:1c:f6:7e:1a:0e:
95:04:9d:f5:2f:45:99:e6:fe:50:ad:c5:4c:40:f3:81:17:0f:
e6:dc:ab:a4:3e:d3:31:19:0b:b2:84:9b:4f:be:b9:c2:b2:c2:
27:5b:09:bb:3a:45:52:40:4a:6d:2c:ba:dd:73:cd:05:04:64:
0a:c3:71:c4:d7:57:18:95:0e:f3:22:36:14:9f:cc:02:38:dc:
3f:b3:f3:4e:9e:59:51:a2:96:34:a3:d8:40:a8:14:b9:22:05:
8c:e7:93:87:12:63:f9:0c:07:92:79:00:3c:71:19:e1:f2:51:
50:8b:07:83:ab:6f:fd:33:9a:71:16:4a:f2:0b:fe:fb:fc:37:
71:2d:df:99:e3:22:1b:0f:67:a1:39:27:db:7d:99:0a:89:47:
66:81:24:43:1b:b7:b5:61:18:fa:d0:9a:42:3c:cb:9d:e3:d9:
b3:cb:6c:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 10:40:06 2025 by rpki-client