Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa
File: 40022edc-7d4c-49da-b461-30d23c93029d.roa (raw, json)
Hash identifier: RgNuXlyEtOBxJnoGSDP+EJytGjPpkw+C6JdQ2QlxEeU=
Subject key identifier: 04:E3:13:BD:CF:6E:5C:80:41:98:A2:19:8E:92:55:E6:29:E2:15:F8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6E419237618AD2BDDCCCFFF0DF3EEF6986A4C030
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa
Signing time: Tue 28 Oct 2025 00:50:51 +0000
ROA not before: Tue 28 Oct 2025 00:50:51 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.79.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:41:92:37:61:8a:d2:bd:dc:cc:ff:f0:df:3e:ef:69:86:a4:c0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 00:50:51 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=8934e2bd9217fd4d2138c45d7ed3ade095523a47f87da52171d7d776ab998c78, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:38:ac:52:30:9b:64:ca:fb:d5:9e:82:fd:ea:
74:f9:ab:8a:31:d2:e9:e8:de:23:46:b0:c3:64:0f:
7a:ee:fa:11:28:a8:87:b4:09:b7:fe:9c:11:00:cf:
fe:5c:9d:77:ba:36:97:c5:bb:12:ab:00:41:a8:64:
82:35:f4:bf:5b:cd:95:fc:ab:52:84:a8:72:5d:3a:
9c:d2:dc:24:d2:54:b0:b2:6b:eb:e0:1f:e8:dd:2e:
81:5c:a1:6a:a5:93:1b:c1:0c:74:29:49:ce:0c:6d:
40:f5:61:a8:b1:cc:27:14:3c:34:b6:a5:f9:6a:4f:
43:6b:34:5e:43:03:84:b2:53:69:b5:36:02:1b:5a:
72:01:35:a1:7f:ec:a0:1b:b4:d0:4b:7f:c1:12:c3:
57:b2:5f:01:ec:15:9f:f3:89:80:7c:91:28:b7:61:
6a:14:6d:c1:d9:52:2a:8a:17:1f:0f:f7:d6:0d:11:
26:f4:30:4e:73:ec:e8:c6:e6:95:18:87:d4:bb:10:
78:1c:6f:e3:57:a7:f8:9e:54:b4:59:6c:c6:f0:40:
e1:f5:2c:fa:7f:74:f0:f5:17:65:e9:3b:62:a9:45:
a2:3e:f1:3e:ee:c5:b4:80:bf:ac:23:c2:4f:01:ae:
8a:7e:fc:61:58:1d:25:dc:98:80:e2:91:2b:ac:55:
f3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E3:13:BD:CF:6E:5C:80:41:98:A2:19:8E:92:55:E6:29:E2:15:F8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.79.0.0/16
Signature Algorithm: sha256WithRSAEncryption
95:ff:dc:ff:c1:7b:fb:d0:66:60:93:15:4e:46:7f:14:c4:c0:
0f:55:88:89:b0:03:a4:ab:4e:a9:ab:d9:cc:df:cb:03:eb:51:
39:77:25:ae:94:7e:6b:f1:c5:cc:ab:95:52:fe:b2:1c:4e:08:
69:8c:63:56:c3:ad:93:7a:0d:06:55:c8:d1:c7:53:7f:e5:f8:
8f:4a:ce:ca:fc:94:b1:1e:e7:01:32:0f:d9:19:17:55:0e:e3:
8b:6a:19:b9:28:4b:52:bf:e1:0b:15:89:b3:88:bb:a7:3f:96:
b1:da:f4:35:87:b3:8a:50:be:c9:cf:55:7f:a9:b8:0d:42:5c:
e9:48:59:db:7f:60:65:6d:b1:f9:0d:c5:0b:96:61:3f:00:d7:
d6:79:1b:42:ee:af:3b:97:87:21:fd:37:d1:c3:90:36:db:64:
e7:14:d3:27:06:85:c2:93:16:c3:9f:2b:86:2a:05:fa:4b:b5:
37:42:92:12:38:4f:98:91:bb:d5:80:f7:40:43:de:b7:27:3b:
e0:52:e8:8a:cc:e5:bf:46:da:5f:11:e0:60:f1:d0:1e:f2:94:
af:c6:aa:53:a4:94:d8:a2:c7:dd:12:08:cf:ce:12:48:13:8b:
a6:48:2c:0a:a6:a7:e6:8d:8d:83:6d:8b:9e:6d:82:71:d4:43:
89:f0:16:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 2 16:39:06 2025 by rpki-client