Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73e13f15-ce7d-4f08-a7b4-aa5b442bb214.roa
File: 73e13f15-ce7d-4f08-a7b4-aa5b442bb214.roa (raw, json)
Hash identifier: Lvp3ZriuNsG4IRcX9Lt9Eq2mqAeMehTnSUBSngn8/u0=
Subject key identifier: D3:7D:66:32:BD:58:4B:A7:B6:83:93:DB:68:7A:D4:64:F9:CA:4D:5C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 75D798657F6B3945FEB62518905FDCD331020703
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73e13f15-ce7d-4f08-a7b4-aa5b442bb214.roa
Signing time: Wed 01 Oct 2025 00:52:47 +0000
ROA not before: Wed 01 Oct 2025 00:52:47 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 76.223.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:d7:98:65:7f:6b:39:45:fe:b6:25:18:90:5f:dc:d3:31:02:07:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:52:47 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=52c8afb93c5ccef4614d4ffb3270778f5b3e417216582161367fbda5d1d2da25, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4d:74:b6:3a:9b:92:8c:64:4e:fe:1b:db:ea:
70:9c:a8:36:5f:ce:7a:de:57:ca:f0:28:75:7d:6a:
ee:fc:b1:e6:48:82:ff:cb:49:56:16:32:65:75:c6:
4f:f1:e7:f0:1e:cb:9f:d9:d8:2e:2f:9e:3e:74:d3:
61:ad:47:4d:a3:cc:0d:c7:e9:ae:d5:11:e0:2a:9c:
a2:49:3b:f9:06:bc:b4:fe:03:61:0b:53:8b:a3:dd:
1f:40:52:85:4d:03:c9:9b:6f:27:00:97:f8:50:c2:
d6:90:33:55:c4:78:f4:61:b0:17:23:17:23:d6:cc:
a1:ab:56:9e:25:14:17:b4:00:05:ca:c3:15:eb:8a:
b5:86:7a:2a:56:c7:34:87:f8:59:53:49:5f:a6:71:
f3:4a:24:de:4a:92:c2:5c:68:f5:f6:df:86:db:8c:
4f:95:96:0f:f2:be:0c:85:cc:26:3d:86:f9:96:4e:
ee:76:af:a0:00:8c:af:7c:02:87:0a:45:46:80:94:
60:23:1b:2f:cd:2b:93:6d:b8:fa:6c:6a:a9:7c:9c:
ab:0d:53:76:8c:64:db:d3:56:07:d2:0d:db:19:7f:
ec:9d:7c:0d:c1:93:ce:eb:a2:03:e5:40:1a:05:c7:
57:11:93:f7:13:e9:c1:7f:e5:75:fe:aa:19:ec:53:
22:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7D:66:32:BD:58:4B:A7:B6:83:93:DB:68:7A:D4:64:F9:CA:4D:5C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73e13f15-ce7d-4f08-a7b4-aa5b442bb214.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
76.223.166.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:27:59:31:bb:54:dd:3f:08:6a:e9:aa:3e:02:15:95:83:43:
34:f3:62:2d:f3:72:a7:5f:6c:be:5a:76:7e:fd:50:f7:39:a0:
72:04:74:e4:fb:13:48:24:bc:5e:bd:73:cc:b8:65:25:63:80:
06:67:99:6f:c2:7b:79:aa:d2:42:9e:85:26:27:d6:16:7e:b9:
7e:69:6e:83:7e:8d:13:21:48:8b:42:88:4e:5d:a2:03:32:8a:
1a:c0:1f:06:02:d8:be:e2:ed:36:1b:40:5b:a1:e4:41:fa:53:
a1:2e:9b:df:cc:6f:f9:ec:b3:5a:00:72:80:d1:a3:e9:2a:08:
65:76:bf:df:e9:68:a3:11:0a:75:ac:50:e8:ae:63:e7:ee:d2:
12:26:07:bf:27:58:c4:52:6e:65:98:56:6c:51:31:1b:99:da:
ee:f6:26:e2:ef:99:5b:56:8a:9e:93:68:10:04:3a:cf:97:c5:
b8:36:7b:5a:5e:11:21:33:64:81:7c:8a:0b:70:c3:76:d9:63:
6d:17:3e:d0:77:2c:25:bc:b9:22:05:25:c8:a0:0f:23:e4:31:
4e:00:ad:83:9b:92:cc:d1:9b:e9:3c:94:57:a5:59:c9:58:b0:
d2:4f:22:4b:a9:bc:94:23:bb:0f:c8:68:a0:b6:c3:6c:89:4c:
7c:37:bf:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 17 10:52:09 2025 by rpki-client