Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa
File: b7f92332-54db-4d66-be7a-cf76fc42d00c.roa (raw, json)
Hash identifier: SjIt/LjIWR4K6jGHM2g5dIex6CmaHlaOMz9Y6//ynJs=
Subject key identifier: 76:E6:61:49:E2:C3:B5:C9:43:9A:90:7A:EA:D8:08:52:EE:DB:FB:37
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 19D6E62F2603D946078DCD1266629859AAA2BA6D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa
Signing time: Wed 01 Oct 2025 00:40:35 +0000
ROA not before: Wed 01 Oct 2025 00:40:35 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.241.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:d6:e6:2f:26:03:d9:46:07:8d:cd:12:66:62:98:59:aa:a2:ba:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:40:35 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=f568e155619c4e8478027b83f93bc5116fcda01036c04c946eaf25ddfdf9bd35, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:65:a0:c0:f1:f6:51:8e:62:96:5e:9c:d6:e9:
c1:e8:e7:be:92:05:05:06:da:82:cb:f6:c2:b2:62:
7b:3c:3e:17:f5:f5:71:4d:b6:4e:c9:78:1a:21:e2:
03:05:72:46:fb:e2:32:ab:f5:e6:80:83:9a:e2:77:
a0:ab:06:0e:fc:ab:57:b0:65:57:89:9b:d0:b9:54:
5f:57:04:6e:1e:4c:99:c1:13:e8:ec:70:bf:42:42:
4b:66:dc:2c:a2:7e:26:cc:cb:ae:32:dc:fa:39:9a:
2c:a9:7c:40:c1:76:94:cf:a1:30:55:e9:35:02:70:
43:e8:06:a6:e5:b8:22:88:03:3b:96:b5:06:97:dc:
2d:3b:5d:b2:71:b0:95:6b:b5:96:b6:df:af:78:04:
36:d4:5c:0f:6a:c6:3e:0f:5c:8c:2f:d2:91:73:99:
64:c0:37:a8:c2:8c:ff:8a:56:f0:5a:b2:e0:98:46:
77:28:65:ed:c9:4b:cc:20:1a:e7:44:fe:4f:96:2b:
20:c7:38:22:ee:b8:ec:3e:9c:35:45:71:7c:92:61:
56:39:0d:5a:b1:72:4c:08:17:4e:37:e1:01:e8:e9:
02:56:31:19:d5:aa:42:36:15:3e:b7:98:da:a6:2e:
24:57:25:b9:4d:ba:05:cd:9c:52:83:a8:e3:2a:1f:
f5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E6:61:49:E2:C3:B5:C9:43:9A:90:7A:EA:D8:08:52:EE:DB:FB:37
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.241.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3d:7a:4e:f4:f4:c7:00:45:11:11:91:cc:9d:9c:99:09:b2:bd:
80:fc:4d:6c:2c:06:b8:cf:cc:54:4c:32:fe:92:65:ef:86:9d:
d9:90:f7:60:6b:2b:95:ca:b9:52:88:36:3a:f2:cc:59:df:16:
61:86:94:e4:4a:cb:67:47:53:35:c8:56:53:58:df:b2:7c:6d:
87:6e:8f:42:46:4d:36:aa:63:33:e4:65:d6:4b:13:a2:2a:4c:
a9:56:c2:85:9a:62:43:56:a3:f9:3d:68:73:f2:43:83:15:13:
4f:fd:8a:bb:f6:ac:93:b2:31:3e:74:06:e9:c8:4f:46:7b:82:
16:57:92:36:53:ec:1b:5a:db:9a:4b:3c:a6:a2:3c:c5:43:7e:
a7:e0:60:a5:17:01:78:42:31:9a:e2:76:d2:61:c6:08:64:d3:
8c:11:16:f6:99:5e:ea:ba:b3:ee:f1:2a:ca:7d:d3:2d:91:38:
bb:3c:4f:cb:10:d0:38:73:a7:f2:17:26:47:f5:80:cb:b3:f7:
83:c4:0f:f7:1b:10:60:89:e6:89:ea:fe:1d:58:d5:f0:f4:0a:
0a:a0:dc:66:61:9b:f1:b9:d7:d5:d4:21:93:4f:ed:3c:23:9e:
e8:8c:1e:8f:58:e2:b0:46:8c:98:dc:23:b8:aa:d7:e0:39:8d:
26:67:eb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 15 20:11:52 2025 by rpki-client