Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa
File: 088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa (raw, json)
Hash identifier: Ts8he4mSZiLU1GKPPRsQdfh3A19S8xIQF9uZJoJ151c=
Subject key identifier: 48:3E:10:AD:BE:5F:A3:B3:68:8A:B2:37:10:33:1A:18:01:7B:4A:AA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 40330FD26C55D1FB1A27EBAD430F14D00FBE70F4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa
Signing time: Sun 26 Oct 2025 00:10:41 +0000
ROA not before: Sun 26 Oct 2025 00:10:41 +0000
ROA not after: Sun 30 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 64.252.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:33:0f:d2:6c:55:d1:fb:1a:27:eb:ad:43:0f:14:d0:0f:be:70:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 26 00:10:41 2025 GMT
Not After : Nov 30 23:59:59 2025 GMT
Subject: serialNumber=9d5f0c4515a7eca3db052f987c4f84052bfcde7e819f7bd3c8bf18159948b1c7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b9:16:5e:8f:1a:e4:8c:6e:38:8b:7f:dd:19:
92:2f:63:64:38:e4:10:50:23:53:59:e1:1c:03:a8:
7e:18:2f:2a:0c:8e:11:12:5c:1e:90:63:47:24:9d:
b2:fd:1c:04:83:ad:c4:43:60:14:28:60:14:8f:cb:
b0:36:c8:c6:5a:e3:9d:8b:10:97:f3:55:ce:86:2c:
98:9a:5d:4b:f3:11:8e:8c:47:d5:c6:11:f8:a5:29:
f3:30:1c:af:3b:2d:1f:60:ee:cf:e0:c4:08:28:9d:
7e:75:59:8a:d2:ca:4a:c2:33:36:09:3a:02:18:72:
03:fa:aa:4b:15:bf:8c:e1:13:0f:74:1e:d4:29:67:
ee:f5:88:4e:1b:32:a8:37:3c:9f:01:74:f8:01:fd:
15:55:26:d5:6b:2c:c9:70:15:d8:14:57:52:5f:3f:
a1:cf:e6:90:c7:5c:5a:a4:6a:71:8c:96:53:92:37:
97:1a:a1:8e:18:30:54:3b:0b:3a:9c:22:c6:34:71:
bf:f4:dd:fd:17:5e:d7:19:a8:fa:20:a9:46:60:bd:
b7:ea:91:44:94:00:4b:c4:d6:a9:f3:9c:d4:1a:90:
2d:79:2c:0f:a0:9c:40:0f:23:00:72:b2:18:23:12:
51:58:38:97:33:63:11:d5:f1:99:7b:05:38:44:a1:
74:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3E:10:AD:BE:5F:A3:B3:68:8A:B2:37:10:33:1A:18:01:7B:4A:AA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.252.81.0/24
Signature Algorithm: sha256WithRSAEncryption
71:33:e7:df:2d:b8:2f:59:7b:bc:20:60:c0:e9:2b:ca:0a:74:
0c:a9:f8:b1:e4:c9:ba:13:0c:c5:46:99:2f:bd:87:e9:61:1e:
46:de:2c:3c:26:9c:fc:5c:ce:19:68:ec:71:6b:ca:fa:54:8c:
95:3c:89:f7:b3:e4:6c:b8:bc:e8:f3:57:cd:e6:ae:fd:0c:12:
40:4e:5c:a9:48:51:8e:f7:8d:5e:aa:2e:7c:9c:b4:76:a7:5a:
e5:1c:fe:2d:0f:1e:b6:fb:c2:8f:17:57:33:dc:75:1a:ea:a5:
8f:05:97:f9:39:4c:62:02:00:52:a8:7f:e6:1f:5e:96:5a:1e:
8b:9d:e4:55:50:46:35:1d:55:8c:c7:0f:9f:03:38:b3:d5:9e:
eb:f5:7e:63:00:07:0d:1e:ed:01:ac:9e:02:13:19:72:e3:ec:
1a:8c:7e:7b:44:19:0d:a5:36:68:bc:0b:37:61:9f:89:a0:1d:
c7:b1:2c:0d:94:82:b3:93:e6:fc:aa:c8:31:c6:bc:1a:3a:78:
26:bd:18:13:3a:13:7e:05:10:f3:7f:57:7b:9d:dc:f2:cc:a3:
1e:9d:46:09:43:97:d2:a6:50:de:5f:fb:de:ab:ff:8d:ec:e2:
69:b4:8b:33:47:24:e9:cd:43:fa:83:b6:72:69:99:14:1d:ad:
c3:87:61:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:46:23 2025 by rpki-client