Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852fe0c-feed-4333-b2fa-93e1948b5904.roa
File: f852fe0c-feed-4333-b2fa-93e1948b5904.roa (raw, json)
Hash identifier: 3vB8EbZRFq6Bd2gFdh0c2EJLFI+POKwHXiUh1lAxN3U=
Subject key identifier: 70:07:2B:BC:BA:76:AE:68:29:F2:E9:CD:9E:17:21:35:B1:C2:C3:F0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 491CE51D054FE7C8CD551F60962066B56CF0489A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852fe0c-feed-4333-b2fa-93e1948b5904.roa
Signing time: Tue 11 Nov 2025 00:10:20 +0000
ROA not before: Tue 11 Nov 2025 00:10:20 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.196.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:1c:e5:1d:05:4f:e7:c8:cd:55:1f:60:96:20:66:b5:6c:f0:48:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 00:10:20 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=185518a4b6c0c793bfe3d0754cd8a0b3f1dbd96b135f75974825fe4046b7dd82, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2c:01:66:9e:a6:18:1b:78:09:31:a3:e4:9a:
ce:69:dc:1b:22:ac:76:22:bc:0c:67:a2:5d:a5:4b:
5c:a6:0b:a6:89:ef:a2:98:2e:20:ef:da:4c:aa:7a:
54:e1:cc:27:38:df:88:49:90:8c:e4:cc:d5:ae:57:
e3:0a:0d:ba:6a:a3:e3:03:7f:95:c3:a2:d1:2a:7e:
46:51:d6:e3:a9:9f:f5:c2:69:72:54:88:d1:35:85:
50:67:06:5e:9c:a0:bc:16:49:53:53:3a:39:50:75:
98:de:57:43:b5:87:f1:78:1b:05:f4:41:2d:a8:65:
ed:83:5f:d4:e5:76:af:92:34:d4:54:cb:f2:b9:09:
1f:79:a1:cb:28:47:ad:c8:62:cc:98:17:85:4e:78:
0e:41:d4:b1:9f:96:df:e6:c4:2e:56:79:da:84:7f:
7c:60:4f:1d:99:dc:e1:06:22:c0:13:29:9a:16:46:
97:a5:e4:87:37:ef:6d:18:9f:d7:bf:bf:10:37:90:
55:88:6c:1b:e8:38:58:15:23:46:38:c9:1e:ab:7c:
e1:69:41:b8:54:60:a1:ad:16:cf:f7:b2:28:55:20:
df:e1:36:fa:d9:b2:2f:f1:b0:12:83:9b:8b:13:a8:
2d:92:d9:30:66:30:54:9f:bb:b1:f5:60:f6:83:ea:
61:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:07:2B:BC:BA:76:AE:68:29:F2:E9:CD:9E:17:21:35:B1:C2:C3:F0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852fe0c-feed-4333-b2fa-93e1948b5904.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:f1:e2:8b:af:33:65:39:91:bb:fa:0e:78:59:a0:85:ba:ad:
bd:7f:73:c2:40:76:5a:58:f9:ac:e0:c1:b3:bf:78:c0:ef:3e:
29:9a:77:07:36:84:48:14:c6:85:68:24:49:b5:b4:a9:e9:d9:
dd:94:33:87:0a:45:1b:99:e9:27:69:58:78:3f:3a:e0:39:5e:
6a:57:f8:a0:5c:01:d0:68:05:9f:06:03:4c:09:34:78:5e:b2:
11:8a:05:4f:01:86:f8:c2:ae:b2:5a:db:1d:7f:1a:2a:c5:39:
af:05:a6:ea:f2:49:a6:7c:8c:81:3f:a9:92:05:43:34:53:50:
2b:0d:89:76:1d:28:bc:cb:ee:31:57:a7:c7:9f:50:7b:2c:ed:
de:f1:97:a7:59:e9:ed:5e:7a:3a:f7:e3:07:03:c6:2e:c7:d9:
ca:85:04:19:8b:bc:92:59:24:db:ed:e6:86:28:76:b8:da:04:
73:17:fb:90:07:05:e5:fc:6a:f6:2d:ca:36:71:05:66:70:25:
c3:e6:81:80:10:27:86:ab:40:ff:6b:45:22:8b:da:4b:de:7a:
71:a6:29:5b:31:39:c5:fb:ba:a6:21:6a:3f:42:47:db:f2:0b:
03:9a:c0:48:60:ac:25:bb:c2:db:5c:0b:f3:39:f2:7c:6c:8f:
52:69:f9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 10:39:40 2025 by rpki-client