Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91826dee-b9ed-4897-b2c0-6034e2003b59.roa
File: 91826dee-b9ed-4897-b2c0-6034e2003b59.roa (raw, json)
Hash identifier: vcU6fi5XVlMIklsAWdjw7K9amnMtsy9O1vgzpHaokIw=
Subject key identifier: 78:AA:79:BD:F1:0D:5A:B9:A0:CA:5A:70:DD:25:4C:B0:85:DB:EB:D9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7E942021AEC99A30CC82921E6813A856F7578783
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91826dee-b9ed-4897-b2c0-6034e2003b59.roa
Signing time: Wed 01 Oct 2025 00:12:04 +0000
ROA not before: Wed 01 Oct 2025 00:12:04 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ffd:80cb::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:94:20:21:ae:c9:9a:30:cc:82:92:1e:68:13:a8:56:f7:57:87:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:12:04 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=e2fb26bd3613dc103d010404dc79f25008701555095918dbaeca13e576403501, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:30:2e:9b:0e:d5:8f:1b:c7:10:f8:5f:f6:0d:
5d:53:75:33:c4:ed:f7:7a:ec:58:d2:aa:57:54:39:
e4:24:d5:b1:94:01:90:18:fc:c9:74:ee:a2:c8:c2:
77:99:1c:59:0e:cd:41:aa:ed:e3:c7:69:51:7e:ca:
99:33:19:71:f7:ce:d4:f6:80:97:21:5d:50:e2:2a:
48:f2:32:38:fe:00:26:7e:fc:1e:80:28:91:2a:b1:
4d:2b:b9:56:7d:58:c0:fc:88:28:37:93:92:5c:52:
a7:13:3d:ba:53:2a:c1:f9:fb:d7:30:26:99:36:65:
ff:48:97:ac:d2:7a:3c:4d:a4:3c:70:1b:af:67:b5:
f8:a9:cf:39:7c:f4:e2:5f:9a:57:6a:90:5c:17:9a:
0a:0c:fe:76:8c:e4:45:10:a6:fb:1d:f1:26:50:c4:
5c:26:bb:6e:52:79:f1:b8:a6:52:16:b9:ba:8d:3b:
ad:60:70:d3:06:01:2b:22:3d:65:49:94:1f:8e:12:
f8:a7:11:30:d1:76:be:bb:75:c3:6b:8f:14:d3:9a:
db:dc:6b:1d:8d:9d:fb:2e:17:7f:8f:94:72:7c:96:
e2:6b:8e:a9:57:6d:20:4f:dc:9c:c8:10:bb:4a:26:
af:31:d3:f4:3e:7c:4a:a3:ea:48:48:9a:b1:aa:11:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:AA:79:BD:F1:0D:5A:B9:A0:CA:5A:70:DD:25:4C:B0:85:DB:EB:D9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91826dee-b9ed-4897-b2c0-6034e2003b59.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ffd:80cb::/48
Signature Algorithm: sha256WithRSAEncryption
d6:ec:4b:ff:ed:af:ad:ad:bf:84:4f:12:77:cf:b1:b3:45:a2:
91:c6:e6:99:8c:b9:c7:6d:bf:34:1f:69:6d:b8:72:ab:31:a1:
28:d8:0f:27:47:5c:f2:1e:59:a2:61:62:57:3c:f2:58:48:ae:
2d:39:21:0b:7f:2f:3b:33:89:4b:a4:fa:78:0b:fb:ea:ca:94:
54:c9:33:ba:ef:f8:d7:89:7b:5c:f1:37:d6:9b:66:f8:f1:76:
cc:c5:ce:a1:a8:c9:21:a1:53:2f:86:a5:e2:01:34:df:dd:ca:
cd:98:de:d2:5b:34:d3:3f:b9:e8:e7:95:f7:e7:ef:1f:16:e5:
98:24:af:6a:08:88:e3:4a:16:1c:0b:61:76:5a:99:d3:bd:06:
21:f6:ea:2b:b4:0e:3c:66:4a:7e:15:09:5b:ca:49:7b:ac:ed:
fe:50:07:b7:a1:26:9f:10:a4:f9:01:03:2c:5a:b2:4b:37:a6:
9c:f1:d1:5a:c9:f2:0a:c6:71:fe:ee:e1:bc:33:47:21:43:7c:
e8:dd:f5:f4:6e:26:3d:b6:95:9e:97:79:c2:fe:d5:5d:99:a0:
af:bb:28:f3:6b:aa:9b:d0:a0:af:cf:73:88:a6:7b:d8:38:e4:
d1:b8:4e:48:df:85:1c:49:d6:e5:cd:1d:ee:82:6b:37:51:ab:
7e:ce:b0:2d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Oct 14 06:13:29 2025 by rpki-client