Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa
File: 4d9499c0-c507-4e26-9055-7e0de6b69d27.roa (raw, json)
Hash identifier: k262zWd1YD9k+4xnpgjFVbTsFWh++SSNGKXBF2Tziao=
Subject key identifier: 6E:2A:41:76:55:FE:FA:D2:F6:C1:88:48:77:37:6E:6F:D3:13:52:F9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6B24F8F19CC2BAF23C320C3DC3952A3CF6453418
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa
Signing time: Tue 21 Oct 2025 00:00:08 +0000
ROA not before: Tue 21 Oct 2025 00:00:08 +0000
ROA not after: Tue 25 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 64.252.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:24:f8:f1:9c:c2:ba:f2:3c:32:0c:3d:c3:95:2a:3c:f6:45:34:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 21 00:00:08 2025 GMT
Not After : Nov 25 23:59:59 2025 GMT
Subject: serialNumber=452493a9a17debb18ec1e12000eb92949a35579b5e44b17b4d1a39fa93018470, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2c:9a:b0:62:2f:9f:e7:28:9a:f1:f1:95:1e:
00:80:af:ec:88:ba:92:ae:e3:c4:77:7d:83:9b:bd:
d2:6b:90:e5:5d:b5:d7:38:bb:6e:95:a0:81:95:d4:
1e:e2:91:4d:64:d8:76:2c:d4:aa:3f:bc:42:bf:d8:
c0:8a:68:7c:e0:be:29:ba:23:04:45:df:a8:4d:03:
4c:77:be:8f:09:d6:97:ef:8a:d7:24:11:03:eb:43:
36:6f:33:ea:d0:c4:b2:f8:bf:ad:ba:c9:59:ee:56:
f5:5f:f0:12:09:c0:f9:e8:9d:6b:4f:2f:6d:6d:97:
1b:e1:67:a4:22:96:05:24:8f:e1:03:53:30:38:74:
54:bf:e9:2f:9d:3c:98:ec:5a:00:0e:1c:8e:d4:d4:
ab:c2:72:15:f2:99:1a:2a:8c:4e:c3:5f:98:ae:3a:
4c:93:0b:22:0a:49:e2:57:85:07:67:f5:a5:4c:76:
74:0c:5f:9c:c1:15:39:2a:01:8f:3c:d3:ff:a4:2d:
8e:80:a3:30:ea:d7:df:2c:81:63:ac:98:da:42:44:
35:db:43:58:17:3d:7b:47:78:1e:48:42:eb:d5:bd:
4e:58:05:ed:ae:52:d0:da:7c:03:b7:3a:00:96:64:
a9:d1:a2:7a:b0:80:3d:d0:e2:14:d5:56:cc:eb:b2:
fd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2A:41:76:55:FE:FA:D2:F6:C1:88:48:77:37:6E:6F:D3:13:52:F9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.252.102.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2d:cc:a2:f5:e8:42:ee:cc:b7:e4:b3:de:70:56:af:63:85:
94:14:4e:cf:b9:71:a1:fc:e9:86:1f:c2:ca:12:99:f6:3b:8d:
19:eb:1b:c8:9d:ac:58:5d:3c:fb:1e:93:51:a1:71:df:48:1e:
eb:f4:30:47:35:92:ed:40:bc:21:e7:7e:a2:a2:83:24:e0:27:
b4:61:51:c7:fb:18:67:2a:a4:be:4e:2a:d8:1f:1b:50:44:15:
f6:c8:74:5a:d8:52:f3:28:13:04:e4:bc:f8:ed:13:18:28:24:
19:a8:79:31:90:3a:e3:fd:e8:a5:78:46:15:87:39:c2:ac:81:
a0:bc:2b:af:d6:ea:4a:eb:44:a9:77:00:f0:6d:69:a4:e0:65:
f8:2c:0b:e0:25:bf:64:0e:dc:8e:c9:0a:63:11:a7:fc:cf:e9:
25:16:e4:cd:5b:85:26:fe:4f:f2:8a:e2:96:07:22:89:c9:b8:
7b:fc:9f:aa:e1:03:65:6e:84:03:f9:d8:4b:a6:09:43:a3:58:
cc:b1:dd:26:05:0d:97:ba:53:04:2a:9c:86:2c:68:48:10:50:
3a:78:43:f7:4a:cf:97:7d:a8:59:75:63:1a:ab:81:90:c7:45:
d1:1c:ea:ba:d7:51:f3:a7:7f:43:e0:d3:e9:a1:af:02:a6:43:
38:40:8f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 16:16:08 2025 by rpki-client