Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0bd38cb3-a515-4ab0-a345-33cb83acf28d.roa
File: 0bd38cb3-a515-4ab0-a345-33cb83acf28d.roa (raw, json)
Hash identifier: FGhxRbi7+roDEAtxrqK1FtmUq3ytJnWs1scU3IsyC9Q=
Subject key identifier: B8:E1:57:A1:EA:FC:C4:B6:3C:EF:66:C6:C0:F8:D3:AE:6E:EE:AD:54
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 27E0B2007BD1539C2B54AAA73CF49EA0E37A159B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0bd38cb3-a515-4ab0-a345-33cb83acf28d.roa
Signing time: Wed 05 Nov 2025 00:20:10 +0000
ROA not before: Wed 05 Nov 2025 00:20:10 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 8987
IP address blocks: 56.136.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:e0:b2:00:7b:d1:53:9c:2b:54:aa:a7:3c:f4:9e:a0:e3:7a:15:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:20:10 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=338c7b4761a80834be989efc077b152b06601cca27f3a3aa195b0543f262a0c3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b4:0e:38:ba:c3:46:40:f0:8f:d7:c5:85:e7:
92:e1:77:e6:8a:76:45:56:19:d0:34:8a:61:93:4f:
cd:1b:59:24:c8:67:52:b7:8b:1b:63:93:e8:0a:e7:
fa:d2:39:60:cc:a3:d8:30:fd:c0:51:8f:95:a2:fe:
c8:82:71:b8:c7:12:9f:d8:1c:40:c6:78:91:02:1a:
0a:5b:66:8a:b6:3a:ee:43:8d:17:4a:ca:dc:4a:0e:
eb:87:aa:19:99:1d:e6:1d:a5:dc:dd:e9:3b:23:03:
c4:70:11:a3:28:90:f2:2d:93:5d:d7:c3:5e:a9:73:
bc:06:31:c5:26:e4:95:77:9b:e9:66:1b:91:3b:4d:
d7:73:ba:9f:50:14:56:95:31:ef:76:87:88:fa:75:
ed:11:cb:0d:44:e2:fc:83:cb:14:d7:5a:1a:ef:c1:
7c:a2:0d:8e:15:98:c6:b1:c7:f5:d7:f2:9d:37:8a:
a5:b7:80:69:07:9e:c9:3e:cb:9f:80:0b:5e:2e:e1:
3b:53:e2:bb:5e:1d:7e:52:84:c9:1e:af:93:ff:49:
45:ea:9f:bd:68:4b:09:f3:c3:48:75:d5:38:0a:e2:
c0:a2:a2:16:67:5a:e7:0f:f7:29:4d:ba:da:75:d1:
7a:ce:54:e5:3b:18:5e:4e:24:2a:1a:6a:b2:41:86:
b4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E1:57:A1:EA:FC:C4:B6:3C:EF:66:C6:C0:F8:D3:AE:6E:EE:AD:54
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0bd38cb3-a515-4ab0-a345-33cb83acf28d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.136.0.0/16
Signature Algorithm: sha256WithRSAEncryption
91:92:e2:49:b4:2d:b8:a9:61:30:77:b4:bb:07:f7:96:aa:62:
c3:90:79:6a:96:e0:60:5d:dd:c8:e5:66:24:f9:05:e6:b9:bb:
48:d3:48:87:87:ec:cf:73:fb:fd:07:8a:8b:a1:61:1a:66:5c:
e7:c2:9b:c0:24:99:b1:ee:1f:7f:ee:ef:38:0c:f5:01:d4:c6:
67:73:19:95:11:3c:ea:f6:da:a4:9e:6b:d1:0e:79:68:4f:99:
24:da:9c:62:ce:a8:fe:73:7c:57:90:0c:da:e5:e6:a2:dd:91:
67:d5:93:9e:f1:ba:62:ca:2a:fd:87:f1:5e:7d:19:1c:2c:3b:
41:22:8a:e4:0e:81:19:4e:da:74:13:aa:ee:d8:df:37:c5:d6:
09:b0:9a:ef:cd:4c:40:db:7e:db:a0:4d:32:39:ca:78:01:b4:
11:24:2d:ef:15:a9:b7:a7:e9:0a:64:d7:1d:d1:29:bc:0c:f0:
ef:80:83:67:3d:03:70:28:78:8c:8c:69:e2:9f:31:e9:dc:ab:
63:6e:a2:24:4e:e1:2d:f1:a6:80:2e:28:ab:c9:f7:66:93:ec:
c0:85:a4:77:53:25:e7:c7:a3:ad:d8:af:43:b8:16:bf:e4:65:
8e:b6:ec:a1:f5:d4:f8:cd:58:33:98:26:49:92:95:b2:f5:c8:
91:87:36:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:01:38 2025 by rpki-client