Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f718dea-880d-40c3-a253-e556b2dee1c6.roa
File: 6f718dea-880d-40c3-a253-e556b2dee1c6.roa (raw, json)
Hash identifier: DecWe3xwpXu5uHETxVrWtY4DJmu9BR1060r3hPrjOc8=
Subject key identifier: A4:FE:47:CA:5A:9C:A5:D3:71:AD:89:47:F0:70:B7:D7:96:D9:FA:AC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 076C2285AA61978163710A12376892EA9D169B7D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f718dea-880d-40c3-a253-e556b2dee1c6.roa
Signing time: Tue 28 Oct 2025 00:51:31 +0000
ROA not before: Tue 28 Oct 2025 00:51:31 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.243.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:6c:22:85:aa:61:97:81:63:71:0a:12:37:68:92:ea:9d:16:9b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 00:51:31 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=4707a8fc4ba3a15cef7849bd83a0a163c7aac5e4d8b72adbb9fdeffeacaf45d0, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5e:ae:71:66:9a:89:d8:4b:cd:94:e3:17:86:
de:ea:94:8d:41:58:88:8d:e0:89:5e:4a:bd:d0:e3:
8e:ff:d9:fe:3f:39:f5:97:e9:12:44:26:8d:db:a3:
e4:ed:ef:b4:7f:89:df:91:bc:1e:2f:35:92:64:23:
00:2d:51:a6:7f:28:c1:81:e2:84:e8:69:eb:e8:a2:
bf:c2:9c:5c:8d:7a:3c:86:74:2e:71:0c:6b:d1:36:
f5:59:24:ba:e4:d2:e6:78:fb:c8:70:3e:aa:55:52:
27:93:ca:78:58:d8:a2:d9:4f:a9:4e:98:2f:3c:b0:
ce:d4:83:29:17:ce:11:e0:62:d7:05:94:54:4d:a8:
7d:fd:2b:84:1c:0c:19:dc:66:21:28:66:b5:b8:5a:
58:56:bf:b6:52:ef:3b:c2:72:f1:f7:a3:cf:36:dd:
51:8c:c7:ab:68:b7:78:7b:5a:7d:f4:64:c5:60:00:
00:c1:2d:49:fe:fa:78:d7:69:3e:10:e2:38:f2:36:
43:8f:fa:64:4b:64:88:5a:e4:ad:18:50:28:19:04:
94:04:45:3b:ec:1e:eb:f5:9c:57:c0:d4:08:34:cc:
33:5f:0f:fe:cf:63:c6:9c:9b:34:a1:fe:99:b0:57:
20:71:5e:c1:68:a7:19:b1:2c:74:f9:b1:48:f0:48:
9d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:FE:47:CA:5A:9C:A5:D3:71:AD:89:47:F0:70:B7:D7:96:D9:FA:AC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f718dea-880d-40c3-a253-e556b2dee1c6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.243.0.0/16
Signature Algorithm: sha256WithRSAEncryption
70:8b:c0:09:4f:17:15:e7:41:30:b8:0f:1c:f4:a8:3f:71:a9:
7a:d2:42:4d:6d:59:91:44:e2:6a:42:8a:6b:24:ad:10:ed:bf:
ab:31:7b:05:b9:57:72:d5:b1:b4:b0:11:a9:71:37:14:f9:13:
bf:33:5b:b6:09:f7:e4:94:31:ea:70:df:ca:43:d6:60:f6:4f:
12:23:98:43:0f:1c:e7:1b:e6:9f:c2:18:0f:eb:ce:6f:9a:fd:
f0:d9:93:4c:9a:1a:36:9f:e3:4f:62:f9:f9:27:21:28:f1:8c:
5a:39:02:3d:75:d6:4f:18:99:4d:cc:f1:b7:10:8c:f7:5a:c7:
2b:59:ff:e0:79:54:b1:b3:7e:f4:ce:1b:f3:84:36:24:53:9e:
e9:f2:2a:15:a7:20:34:2c:f8:70:0a:25:e4:e7:79:80:87:f5:
85:1c:a3:fd:12:22:78:d8:42:39:7b:0b:c4:42:68:fe:b4:ee:
75:4b:f8:2d:5f:28:29:9a:ea:ad:15:70:c4:e9:4a:af:ac:67:
f5:37:94:1c:93:b3:b9:b5:23:66:0f:82:59:5a:55:95:64:b2:
47:6e:67:a7:bd:08:ef:fd:c8:78:0a:00:41:c4:2c:32:66:4b:
ee:36:c6:9f:d7:4e:ec:0c:e7:82:26:8b:89:51:14:92:21:a7:
40:b9:f6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 01:31:37 2025 by rpki-client