Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58be878-74a8-4e7a-b5ae-92e8986f5567.roa
File: a58be878-74a8-4e7a-b5ae-92e8986f5567.roa (raw, json)
Hash identifier: ZsKy3SrqE5xlziu1K75sTr4qmsqKRC2t9+e6OTT9qbM=
Subject key identifier: D1:2B:9C:5B:D1:BA:57:9B:E6:C8:50:69:8F:F1:26:95:CF:F0:9C:37
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2F505C7EFB6D84404D53A8CA9659EDC4513E1F27
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58be878-74a8-4e7a-b5ae-92e8986f5567.roa
Signing time: Wed 01 Oct 2025 00:39:53 +0000
ROA not before: Wed 01 Oct 2025 00:39:53 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.54.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:50:5c:7e:fb:6d:84:40:4d:53:a8:ca:96:59:ed:c4:51:3e:1f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:39:53 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=6c2d0425662c30c69e63ba997339f2b38da01e7f7c5f63ccb273ae939d41ba80, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:83:91:f0:e6:32:3a:a5:e3:70:d0:e0:e8:75:
52:43:e5:4f:86:81:05:6c:79:6b:d0:d1:78:9c:18:
21:84:66:6c:1f:06:04:55:f9:ca:cb:82:c2:69:42:
26:2c:c0:8f:a5:8f:60:c7:c8:32:ea:af:fc:2d:27:
c6:6f:a9:64:8a:48:28:0c:ed:59:dc:f2:bc:3b:0e:
f4:61:d2:07:1b:52:11:a2:40:25:a0:2b:01:d6:89:
1e:00:42:d3:6f:f0:a3:e1:c9:18:56:79:f9:23:53:
3b:7b:0e:48:ba:7f:d9:f4:52:be:7b:f0:05:53:17:
3b:c3:7c:36:fe:9b:9a:1e:29:c6:d9:7d:75:1b:5a:
3e:dc:b3:61:65:6d:89:76:59:17:83:1f:a3:e8:80:
51:de:09:cb:90:86:84:77:7d:c6:4e:98:0a:a3:73:
50:ce:ce:d4:1f:2e:54:d5:94:47:de:d7:29:b6:8c:
9f:fd:3a:c3:95:67:c4:1f:5f:4a:e2:ef:fd:a4:84:
c7:28:17:f9:94:75:20:8b:b3:95:d0:c7:72:f8:59:
bd:71:94:1e:e5:ee:ac:ac:48:da:0b:a8:32:cf:aa:
14:5f:c4:6c:bc:cc:58:90:c8:31:30:a8:9e:41:cb:
20:74:e7:98:62:13:bb:3a:b5:0c:31:61:fe:37:0a:
d2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2B:9C:5B:D1:BA:57:9B:E6:C8:50:69:8F:F1:26:95:CF:F0:9C:37
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58be878-74a8-4e7a-b5ae-92e8986f5567.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.54.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c3:fa:f4:45:8d:8a:16:2c:89:fc:2d:db:f7:c6:57:26:bd:ee:
aa:a8:ca:8c:d2:79:64:c3:4b:c8:d7:1c:46:8d:a5:ac:e0:70:
6f:da:ad:24:c7:9f:1a:2c:4b:8a:0c:1c:64:61:ba:ed:1a:e7:
f4:d4:74:1a:98:52:90:89:e2:a3:b1:b9:81:b2:9f:d1:9f:4a:
45:c2:20:47:89:2d:95:bf:f6:72:df:a0:31:18:ed:57:ef:07:
8b:92:c0:85:5f:3a:0c:ec:7f:db:a6:13:92:6e:60:da:d7:7a:
49:03:1a:5d:7d:59:ae:3f:1a:40:29:1a:a1:9d:f7:24:1b:e7:
b8:14:66:e1:b1:cf:d0:2b:1d:9f:60:d9:28:7a:79:21:68:87:
63:ac:45:8f:33:7b:0b:4f:72:8d:93:b1:02:99:bf:81:9f:b5:
82:eb:36:20:a2:b2:29:2f:74:10:72:a6:f4:b6:c9:58:ab:53:
96:34:0e:a2:b0:00:9d:88:2c:a1:7a:ec:32:dd:9d:e6:58:bb:
fc:67:bd:0b:71:3a:08:b7:91:09:cc:23:7e:51:8d:52:21:9a:
c1:af:4b:93:99:53:fa:7f:52:e7:e5:50:47:3b:86:f2:e6:19:
d0:a1:1b:64:e5:55:55:25:68:a6:70:3d:6d:da:af:5a:29:2c:
58:2c:01:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 15 05:59:59 2025 by rpki-client