Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa
File: 1c135327-ca35-4503-a212-cddd775338fc.roa (raw, json)
Hash identifier: uqSVq27y7SiK2m75tnuWzDl2gRZoatInpSM+fISUzQQ=
Subject key identifier: B2:CE:8A:18:D5:44:E5:64:7F:25:31:B1:01:E4:99:6C:F8:EB:3F:4A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 200E33EDF64F5A0514197491B64B80D524B76A67
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa
Signing time: Sun 26 Oct 2025 01:00:37 +0000
ROA not before: Sun 26 Oct 2025 01:00:37 +0000
ROA not after: Sun 30 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 57.201.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:0e:33:ed:f6:4f:5a:05:14:19:74:91:b6:4b:80:d5:24:b7:6a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 26 01:00:37 2025 GMT
Not After : Nov 30 23:59:59 2025 GMT
Subject: serialNumber=d2cd08ebdabc949895b96f7c4919749e83ea4fb678d07b5f585ee8f169768c53, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1e:26:57:de:09:a5:32:ee:9c:59:77:fc:09:
5d:fc:93:09:3d:37:47:c0:7b:af:22:4e:46:c5:4f:
f1:31:a2:0a:62:76:e2:f7:c2:fc:26:50:c3:9a:c5:
55:6c:ab:59:c0:6d:4f:a0:84:7e:91:9d:b5:bd:4d:
7b:42:1b:cb:50:a4:31:8a:3a:2b:51:48:68:bb:67:
99:67:c0:0a:56:38:0e:13:cb:b8:fe:b4:88:ce:40:
a5:50:af:06:9a:83:ca:70:e6:d5:27:b6:a0:61:60:
19:02:19:b1:78:95:7a:d5:00:6e:ff:e2:d9:4e:c8:
b2:b8:2c:ef:5f:bc:4a:24:16:ca:dd:7f:f9:00:b3:
2a:a0:ae:2d:50:6b:31:8a:24:d2:c8:17:bc:18:ce:
9a:a8:42:0d:5a:58:1a:45:1b:45:1e:12:03:7f:a3:
79:07:1f:db:78:e1:65:85:e6:0c:f1:7e:04:e7:eb:
2b:6d:6c:f2:b7:32:00:b7:b2:95:b0:79:90:f7:1e:
89:e9:6d:29:42:b0:cc:56:dd:f6:f3:96:77:a4:53:
c3:16:c1:62:d8:a1:1b:7e:88:e2:7e:c7:0f:56:6e:
ea:05:31:89:f9:7d:3d:78:cd:20:5e:47:8e:5c:62:
be:30:35:dd:64:81:34:bc:ef:51:c2:05:ec:0f:53:
23:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CE:8A:18:D5:44:E5:64:7F:25:31:B1:01:E4:99:6C:F8:EB:3F:4A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.201.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c0:3c:05:98:17:0b:6c:d5:72:5e:b2:23:fe:03:5b:db:9e:8f:
e2:87:9b:ff:df:1e:da:16:30:12:7b:42:28:d7:c7:aa:71:06:
ab:e8:82:61:6b:80:a7:a7:d4:f7:28:c3:9e:aa:5b:0e:78:09:
42:b5:de:e2:f7:56:e8:85:29:31:02:36:11:96:8b:23:cf:a2:
52:de:52:07:34:b1:75:d8:49:0a:bf:41:f5:8f:d0:a3:0b:fa:
45:64:2d:7f:d8:66:00:cf:4b:97:eb:50:91:93:d0:f7:dd:05:
e8:c0:89:f5:44:d5:80:df:8d:84:f0:ab:b8:c4:a5:99:17:98:
6a:19:02:2c:0a:39:c6:84:e3:83:9d:88:a9:25:c7:f2:d7:2d:
f4:d6:51:8a:9d:c3:f1:20:0e:87:24:97:bf:61:e3:5b:52:7d:
43:5b:fe:e8:71:ec:3b:d8:de:f4:b8:ff:67:9b:b9:fd:89:70:
a8:1d:14:56:85:b9:3a:f8:31:b5:17:a8:04:f7:8e:50:de:ac:
23:6d:1e:d2:21:a5:8d:12:be:43:98:3d:62:1a:5a:3d:df:5f:
61:f9:b5:09:8e:f2:8a:bb:f3:af:5a:00:63:4f:84:f4:a5:96:
c4:e6:f7:ee:52:a1:af:f9:5e:fb:6a:8b:79:ea:5a:28:43:82:
c6:9a:32:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 16:03:05 2025 by rpki-client