Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa
File: e4274e13-b3eb-47ca-8f50-e130d402b187.roa (raw, json)
Hash identifier: UQdiXqUnO3KJvJUuo7ZMNZl0mLyYGoI2H4ohNIuBiDk=
Subject key identifier: 8B:46:03:E5:CD:5D:B1:89:9E:3B:D8:F5:75:2D:31:98:83:41:75:B6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5E6E02CA2AEE44A9D6ED5864BAC19CBD66E30CC3
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa
Signing time: Wed 01 Oct 2025 00:40:27 +0000
ROA not before: Wed 01 Oct 2025 00:40:27 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.167.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:6e:02:ca:2a:ee:44:a9:d6:ed:58:64:ba:c1:9c:bd:66:e3:0c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:40:27 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=9f7bb3828a5cf08c42738d838f87236697141b6769f9dc6590fd69e73967e979, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a6:e3:cd:e2:10:f4:42:04:60:05:73:ba:96:
42:33:46:23:28:56:83:c5:9c:02:aa:be:ac:b1:e2:
ca:57:04:2e:d0:49:d9:f7:57:12:65:a7:2b:92:10:
99:1c:2b:46:23:1b:eb:bd:55:1b:b2:6e:d6:fa:bc:
bf:21:9c:34:53:1b:70:7a:9c:9f:d8:8b:a9:d2:79:
14:8a:99:c0:b1:98:53:87:85:28:33:f6:83:d1:36:
c7:72:ca:b5:5e:93:d1:c7:be:fe:ab:1c:88:41:90:
28:98:bf:b0:a7:50:e3:07:57:8f:9c:4a:c6:28:e6:
91:b3:e0:e8:40:27:7d:1c:4b:84:ab:74:bf:d0:c6:
dc:1e:33:8e:b1:c2:33:58:32:92:12:31:4c:15:ef:
03:43:6f:bb:02:32:1a:b6:01:d1:f7:0b:7b:08:f6:
21:b0:dd:b8:a0:d5:b6:d4:78:6b:7d:77:76:81:ea:
7a:61:6d:50:fa:9e:a6:52:12:c7:f3:af:79:d3:be:
d3:f7:80:6b:56:e9:fd:f6:c0:6a:66:7f:e0:5a:77:
60:cd:31:34:d2:7e:09:fb:b0:30:11:5a:6e:14:92:
70:59:e3:8e:ce:31:2e:75:da:e3:7e:e9:4d:35:50:
ab:0b:93:85:61:d4:44:4b:78:14:1e:f0:c2:b1:df:
41:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:46:03:E5:CD:5D:B1:89:9E:3B:D8:F5:75:2D:31:98:83:41:75:B6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.167.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9d:5b:42:8b:e0:7c:3a:71:b5:7e:10:cf:64:0e:35:63:38:2c:
fb:f2:4a:95:30:aa:e9:bb:51:e3:d8:6f:4d:44:9f:95:27:ba:
3d:90:d0:48:f5:fd:c9:13:d1:46:0c:c0:d7:a2:8f:bb:3d:b3:
40:e8:a6:3b:18:ca:75:6d:ea:de:b8:fc:84:2c:c1:ca:37:f1:
3d:09:83:17:87:24:8c:be:b6:fe:90:69:b4:e1:c7:61:04:1d:
f7:0b:5e:5c:30:40:e8:e4:a4:b7:d2:3f:06:0b:ef:6f:fc:a5:
25:56:70:4d:16:e8:ca:41:f8:5b:72:de:64:c7:8f:fd:68:12:
6e:bd:67:6a:50:88:1a:32:64:1b:36:36:54:72:e7:1b:dc:26:
d2:58:f8:5e:3a:33:87:43:e0:04:c2:bb:40:3f:cc:cf:1c:fa:
32:05:3f:9a:fd:87:21:f5:af:23:cc:b4:d6:03:6f:e2:15:43:
ab:a7:c6:a4:7e:07:e0:bd:d9:19:af:65:97:6e:b3:97:51:ba:
9d:41:e4:61:95:08:19:1d:d7:d7:e8:52:65:6d:17:9f:92:63:
64:70:95:d0:25:5a:69:ea:42:5f:a3:44:13:48:14:b2:0d:c4:
22:6d:cb:88:66:f1:01:94:ed:37:8d:51:f4:c2:a9:cb:b0:49:
9e:4b:ba:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 16 07:51:02 2025 by rpki-client