Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa
File: 6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa (raw, json)
Hash identifier: 2EBpEPdTD3AtI79aPDsMFy1Ka+fbZxWQZzW1SrJo/s8=
Subject key identifier: CE:65:A9:C4:F3:77:39:7F:54:D8:D8:6D:7D:C8:9F:3E:BC:B8:7C:47
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 41232A1E9F1117BB86A3DF3F0B5A5028FC0B83E3
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa
Signing time: Sat 25 Oct 2025 00:31:17 +0000
ROA not before: Sat 25 Oct 2025 00:31:17 +0000
ROA not after: Sat 29 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.75.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:23:2a:1e:9f:11:17:bb:86:a3:df:3f:0b:5a:50:28:fc:0b:83:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 25 00:31:17 2025 GMT
Not After : Nov 29 23:59:59 2025 GMT
Subject: serialNumber=39f6740383c44be9028e561e2b260794c08fea77a696657fe67e1edec35cc9d5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ec:a4:42:92:2a:b9:88:88:b9:bc:ea:96:a5:
26:c4:41:24:08:59:96:dd:53:03:64:d5:d8:4b:fc:
81:08:3a:c3:90:08:24:47:0e:e5:e3:f3:cf:4e:02:
9a:ef:e1:11:f8:f7:67:10:1a:83:92:6a:c4:51:a8:
de:39:11:8f:e6:a5:9c:6e:22:ae:de:4e:04:17:1a:
04:82:4c:4a:63:6f:32:f7:6d:5d:6e:99:11:9b:9c:
46:1b:e9:c4:13:ad:53:2b:34:1d:b7:e2:e7:97:78:
8c:2a:de:51:35:c2:71:68:75:cf:80:5a:db:78:6c:
f5:72:09:74:bd:15:28:01:e7:02:ff:07:5e:2a:b0:
b0:39:a3:8f:89:d8:0a:5a:ed:5e:3e:11:6a:01:61:
aa:81:41:5d:be:65:ec:51:d7:59:dc:84:9a:0d:90:
d5:e0:f9:2e:9a:5e:e9:8a:d8:03:ba:4a:1c:ea:41:
46:2e:b6:09:ff:2d:8e:3d:0f:6f:dd:87:86:ff:5e:
2a:0e:fe:92:12:3a:82:cc:3a:78:87:39:5c:83:4f:
ca:3a:7e:79:c6:8e:0f:db:56:7c:94:d0:33:0d:15:
3d:b8:a7:01:ab:56:6c:ed:de:8a:11:1e:7a:b0:f1:
c1:ab:33:6e:f9:42:e5:6c:df:c6:d0:a7:c0:4e:bf:
05:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:65:A9:C4:F3:77:39:7F:54:D8:D8:6D:7D:C8:9F:3E:BC:B8:7C:47
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
66:32:46:b9:44:c1:61:48:66:26:84:20:12:a2:0d:f7:b0:7f:
81:27:b1:3b:db:77:5e:a1:c2:37:82:31:87:0e:49:8b:e9:f4:
b8:77:be:05:ce:2f:ef:cf:29:c6:e7:10:fa:78:1a:ab:25:1f:
d7:e9:9a:c3:88:59:a3:1f:58:13:18:4e:44:b3:e7:bd:2d:11:
cb:5b:42:b2:9d:52:36:57:5d:a2:68:b8:3e:e2:5f:e8:1e:b4:
8f:6e:8e:79:0f:cf:63:95:5b:de:f6:65:17:7a:4d:32:f5:d9:
83:4c:1b:42:ea:29:87:bd:2e:2c:18:6f:0e:50:76:9c:2f:9f:
31:f7:45:90:ed:fa:0e:98:84:fb:5a:9b:4e:6f:96:ed:1f:b7:
79:b6:26:c0:b3:c9:26:87:9a:f4:8f:e9:c6:e5:c3:b4:4f:55:
fd:56:13:bd:48:9a:38:8b:95:07:11:e3:34:ca:a7:f1:44:a9:
1c:79:25:2a:ac:31:00:cf:e0:59:cd:42:51:6f:4c:ff:5e:bf:
18:12:7e:eb:d6:e9:d8:ea:9d:68:d3:85:b8:bb:25:1e:ea:c6:
43:08:ad:9c:01:0b:51:21:39:bc:1c:92:df:21:4d:ad:24:c7:
43:b0:08:61:e2:5d:39:6e:25:a4:30:65:f8:aa:13:52:a6:84:
71:2a:7d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 2 16:14:52 2025 by rpki-client