Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa
File: 36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa (raw, json)
Hash identifier: XeLE0IS/5NEhHYn00aRNichG6qFfzpC1kPZx93bxVtQ=
Subject key identifier: 58:30:30:A0:2D:43:4B:2F:7C:B4:31:19:F3:9F:7D:64:CF:45:9B:43
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 427D826F91772F4D8F0BADE50B85007D548D193F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa
Signing time: Sat 01 Nov 2025 00:50:56 +0000
ROA not before: Sat 01 Nov 2025 00:50:56 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.15.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:7d:82:6f:91:77:2f:4d:8f:0b:ad:e5:0b:85:00:7d:54:8d:19:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:50:56 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=37c88f032ca74443076c79747525abfabea57e155d2b3cd13b30614b47578a1c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0c:b5:c3:ce:a4:cd:e1:78:77:9c:ec:5d:23:
e9:10:5e:fc:fc:da:20:22:82:ae:9f:23:c5:90:31:
06:e5:f0:c1:ba:09:6c:3d:d7:db:34:14:87:77:f0:
35:f7:a3:91:14:7a:59:0d:3e:43:7a:d1:99:e8:93:
32:19:11:27:20:0f:b7:6b:d5:cc:bb:28:04:be:1b:
c1:bb:9b:ef:ba:0f:ed:5b:20:ae:34:07:60:c2:10:
6e:f1:c0:a2:15:6a:dd:c0:83:aa:ac:b9:7b:b4:46:
8c:9e:58:80:5c:17:13:6c:fb:85:72:e1:eb:a5:48:
4d:31:54:2e:03:4d:0d:10:a6:be:14:40:96:53:da:
97:d6:10:84:2d:1c:32:8a:fc:61:e4:57:91:15:c1:
31:86:b6:b3:d2:64:0a:87:41:61:e2:19:ca:55:1b:
c2:e2:fa:5c:2a:46:a6:f1:bb:0f:91:6d:28:d2:4f:
8c:e1:4a:7c:a1:99:3b:c5:93:73:3d:20:3b:dd:b9:
01:47:f2:28:84:0c:59:99:03:e0:06:8d:e7:9f:99:
85:77:55:ef:d5:5d:03:46:6b:b0:d8:c5:1e:1c:10:
3e:c8:ee:48:8c:d5:ef:ae:d6:18:ad:e4:15:25:32:
c8:be:3e:aa:bd:64:dd:54:02:01:25:0a:36:72:60:
c9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:30:30:A0:2D:43:4B:2F:7C:B4:31:19:F3:9F:7D:64:CF:45:9B:43
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.15.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:4c:81:33:eb:55:da:33:20:23:54:d1:e5:6d:19:48:2d:e1:
15:bd:7d:ef:57:c1:a5:fc:07:ca:d8:cc:93:a2:5c:c9:b1:db:
df:7b:87:82:18:d9:42:76:82:4d:03:c9:47:2b:4f:ca:a1:ba:
3b:fc:25:82:0c:ba:97:3d:6b:96:ff:99:3e:99:22:90:31:d4:
a8:6e:62:bc:76:ea:ba:53:26:f3:5f:0f:7c:2d:fd:28:92:8c:
e4:6f:29:17:70:ca:f9:f3:b5:b2:79:31:a8:a5:a4:80:4e:2c:
43:c7:a6:51:41:07:2a:3e:d4:6f:ae:2f:2d:28:21:fe:b2:b4:
48:78:6d:a2:09:db:d5:ea:09:6d:df:9a:30:5e:db:0f:d8:2c:
05:95:90:db:ec:a9:10:b0:d5:4b:6a:6e:2e:5c:8e:4f:15:63:
20:db:4e:de:12:68:bd:23:c9:a7:76:3f:35:05:e2:82:e0:1c:
36:61:d8:fa:4e:be:ad:5d:a1:cf:af:b4:75:2a:b1:99:83:9e:
d3:0c:99:4b:b0:6e:0f:10:24:d5:70:90:c4:65:08:bd:85:1b:
cd:3a:7f:f0:ab:96:e7:a6:ec:00:e8:81:61:a3:1b:3b:7d:58:
57:a8:71:df:52:06:4a:bb:52:e1:77:f2:0a:84:6f:6e:e3:27:
39:82:e8:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 2 04:25:57 2025 by rpki-client