Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa
File: 76e74dd0-5733-4c2f-b500-2d75cab973be.roa (raw, json)
Hash identifier: qFm0D1FgdpVdMsUBXt0MNPd35wqdWp48q6yBH4h8jnE=
Subject key identifier: 9C:74:2B:CD:03:A4:D3:7B:24:93:C7:FB:44:2E:01:2E:82:5A:67:88
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 647E402994BB0BCEB9E817F41E24214B9ECA92A5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa
Signing time: Fri 03 Oct 2025 00:40:13 +0000
ROA not before: Fri 03 Oct 2025 00:40:13 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.44.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:7e:40:29:94:bb:0b:ce:b9:e8:17:f4:1e:24:21:4b:9e:ca:92:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:40:13 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=7267037468eb20412d26587c2759a8b25135e41fe654db74069f58b26917e7d2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8f:9b:73:61:56:d4:8e:ec:b6:fb:71:7d:a4:
9f:31:c8:5b:ed:f2:bc:95:15:09:06:3e:2c:9e:5b:
39:9d:88:d1:07:bd:0f:2a:45:73:0f:c5:fb:f2:f3:
4f:6a:20:6c:fb:bf:28:60:a1:a8:3c:9e:50:8d:06:
ed:89:0a:04:16:0e:15:7a:bf:ae:2f:51:4d:a3:25:
be:70:d3:f3:d4:7e:83:ba:40:94:0d:81:c9:aa:d4:
33:11:5c:0d:47:8e:7b:ab:36:3a:43:0a:c0:9e:96:
88:a8:08:7d:77:ae:45:fa:1f:86:c9:2f:38:b3:75:
99:aa:33:5b:e2:58:35:d7:07:b3:7a:96:d5:c9:55:
b7:ea:06:bf:ee:b7:79:58:5e:68:64:7f:db:d2:0d:
b7:b0:01:d8:9c:23:1c:b5:68:1a:db:6d:a6:ed:de:
5b:30:f4:ac:be:95:ea:56:be:6e:e3:7e:36:7f:d4:
10:79:75:53:e3:dc:c5:45:cc:ad:2e:b4:cd:9d:22:
75:fc:1f:66:75:78:cd:42:ee:b5:ac:c6:1d:c1:5f:
c0:71:69:1f:f8:fb:41:c4:b6:da:c8:35:1c:36:89:
f4:66:6b:35:fb:6a:c1:f7:6d:4d:d1:3a:ba:02:48:
ce:cc:fe:ab:ee:b2:de:7c:db:aa:af:0c:09:59:5b:
64:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:74:2B:CD:03:A4:D3:7B:24:93:C7:FB:44:2E:01:2E:82:5A:67:88
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.44.0.0/16
Signature Algorithm: sha256WithRSAEncryption
42:0c:9f:cc:19:7a:0d:ce:40:54:b6:ff:e0:08:7b:04:44:b9:
08:1d:31:a2:00:52:e6:39:3d:b3:36:87:64:99:fd:87:ce:ab:
fa:d4:31:6a:e3:51:2b:4d:66:f6:4f:9a:fd:23:14:cf:62:01:
89:bb:39:34:0a:ec:b7:ba:6b:68:34:c0:30:6c:37:7b:9e:db:
d9:a2:8a:40:29:d5:36:ab:2b:17:07:ff:f6:27:a1:2f:bb:3d:
01:17:f1:a1:30:e7:e7:6f:53:c9:e4:a1:d7:9a:68:0f:6c:91:
04:6d:fc:96:a8:cf:cb:8f:63:8e:6a:be:e3:97:f0:ed:5a:39:
ce:72:47:bf:eb:6d:58:21:83:7c:e2:48:fc:df:5e:59:b1:7d:
85:e2:f5:b4:8d:32:72:da:c7:bc:2d:41:65:2d:25:5a:c5:63:
20:49:d5:39:63:48:22:b1:3c:33:f3:5c:93:c6:6c:e6:0c:3e:
55:ba:32:09:6f:e0:23:ca:09:da:52:b0:ae:4f:9e:4c:62:d1:
8a:ce:d8:ca:6e:ee:03:1f:41:eb:d9:38:34:ab:58:bc:0c:d8:
62:18:60:50:3f:95:25:2d:88:62:80:99:ae:8e:0b:d6:fb:44:
59:30:f7:ba:3d:1f:09:36:4c:4b:98:7e:ea:a1:0d:ba:c4:2e:
4e:f9:14:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 15 05:24:32 2025 by rpki-client