Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565a7abe-8024-4d3c-9d79-823329f8cdf6.roa
File: 565a7abe-8024-4d3c-9d79-823329f8cdf6.roa (raw, json)
Hash identifier: TpZwK+zd2cly5i38B3lVYMtDGAhbLUQWjxS4KpBx+Qw=
Subject key identifier: 65:78:72:6B:13:6E:89:ED:E9:1C:D9:9D:44:89:52:EB:32:FA:C6:21
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5270D3BE750DBE58A24B48F5CD840B3DCE6F3CB4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565a7abe-8024-4d3c-9d79-823329f8cdf6.roa
Signing time: Sat 27 Sep 2025 00:02:26 +0000
ROA not before: Sat 27 Sep 2025 00:02:26 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.146.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:70:d3:be:75:0d:be:58:a2:4b:48:f5:cd:84:0b:3d:ce:6f:3c:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:02:26 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=9d7423b4b81eea8c73333cb3540da58732ef53e3e9ccf42ff89c3d8ad5b31307, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:30:9a:39:e9:ea:ca:7a:36:2e:08:b9:6a:35:
ab:74:90:36:65:31:b4:55:38:ff:92:5b:56:8e:dc:
cc:e9:46:6b:4b:f3:59:e6:31:a5:ce:b3:62:2f:fe:
bf:44:5c:3a:87:49:f7:d5:f6:5d:69:65:7b:5e:9c:
0f:a7:22:1b:e3:61:68:bc:54:9b:94:2e:a2:a7:22:
91:f4:40:f7:73:a1:54:1f:16:23:72:e6:07:ae:02:
2e:c6:ce:5d:39:b9:55:26:64:3f:9c:30:8c:11:26:
ab:71:0c:c5:fe:ad:f0:d4:9a:6f:7a:9a:a5:38:26:
ca:51:05:19:2c:da:87:49:c4:ce:a5:75:7c:0c:23:
99:83:11:1c:1a:90:8d:d6:1d:a9:7f:0c:10:36:aa:
12:f6:60:11:62:11:91:92:ed:5a:03:66:aa:d8:6c:
4c:8b:c9:c6:09:9c:1d:d8:8d:b4:08:c0:48:18:6c:
92:69:66:91:82:b4:97:3a:1e:6d:a3:41:b5:3a:60:
d1:fc:8d:d5:f7:0e:36:6c:9f:08:6a:53:9d:31:dc:
f7:5d:1e:1e:9a:95:d0:ad:60:13:d7:8a:29:08:96:
6b:92:b9:f8:36:05:d4:5b:1b:1c:a1:72:fa:a5:25:
ba:33:9a:05:4c:a7:57:1f:37:c2:df:f8:e7:e2:69:
7d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:78:72:6B:13:6E:89:ED:E9:1C:D9:9D:44:89:52:EB:32:FA:C6:21
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565a7abe-8024-4d3c-9d79-823329f8cdf6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.146.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3d:22:18:f4:8f:6b:20:bd:af:b3:33:23:fc:25:a6:ff:da:cf:
61:59:ff:9e:bd:f2:9b:64:1b:24:c1:52:fb:4b:df:87:5d:41:
32:35:ad:64:11:16:74:f0:f4:20:7e:a1:80:32:e3:25:dc:c2:
ac:19:99:57:20:f4:cb:09:52:2c:96:87:1b:04:f7:48:e1:24:
1f:93:5b:74:ae:0f:33:e9:0f:34:8b:cb:bd:b6:72:0d:3d:71:
c3:13:1a:ae:83:c7:67:43:92:ca:d4:15:c2:5d:e3:79:e4:b5:
71:f4:2e:ab:0e:50:52:c7:17:47:65:27:b9:2f:57:1e:d4:7f:
8d:9b:bf:d6:10:1a:26:fc:04:d0:a3:c7:0d:c2:2a:16:80:20:
50:e2:a1:f5:39:6d:c9:30:56:77:d0:19:32:43:02:a3:f3:69:
72:55:f4:50:41:cf:8f:06:6a:08:91:43:03:f0:14:f8:5a:7d:
b4:39:58:c3:fb:b9:4d:10:9f:ca:28:4c:0e:8d:c3:ca:dd:d0:
a2:f1:e1:6a:e0:28:d0:3e:58:84:d7:2a:25:1a:0f:7c:2b:e9:
57:58:80:61:b3:31:33:79:5a:82:da:83:b7:d4:e4:32:18:1b:
d3:9c:b3:1a:ea:33:b4:30:6b:cc:ea:45:92:3a:41:d4:05:5b:
21:bf:77:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 16:32:36 2025 by rpki-client