Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa
File: 2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa (raw, json)
Hash identifier: Zag6Htp8EWEzQ/n8Rt7loNErVuOUSkrkOnI4MnCuMTE=
Subject key identifier: 22:3A:D0:44:D4:BB:A2:B4:3B:E0:DC:C9:C4:88:66:00:24:F2:C8:53
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2BE11953FE3AEC58C91DD9A0EBF4B698CA16555B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa
Signing time: Wed 05 Nov 2025 00:10:43 +0000
ROA not before: Wed 05 Nov 2025 00:10:43 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 207.21.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:e1:19:53:fe:3a:ec:58:c9:1d:d9:a0:eb:f4:b6:98:ca:16:55:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:10:43 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=3d0a903a6565fed18e28220be8ccbf6439414271efcb2b040b3e285555e58c2e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4e:35:60:98:b5:59:9e:4a:96:c9:26:12:c3:
25:73:f5:80:99:93:53:69:a6:89:77:2f:16:e0:06:
f9:d1:7d:6d:19:0a:4c:9b:9b:1f:90:22:a1:89:7c:
ff:c0:32:d3:93:4a:81:86:54:0f:8a:12:50:0d:fa:
ef:a4:d8:0b:7c:16:40:f5:dd:35:4f:c0:04:66:bd:
cf:a4:6b:7c:7f:a2:95:c4:45:83:48:70:c6:8c:48:
c4:de:7b:c1:4b:e3:cd:93:97:68:92:43:4a:04:80:
97:6a:75:62:55:e7:7b:68:7e:f4:94:22:af:77:eb:
99:ef:e1:00:45:35:c9:95:fc:da:9b:73:30:70:81:
97:72:ad:d9:28:be:dd:30:7a:00:07:56:1b:d9:32:
fe:65:f4:69:64:97:c9:10:b1:47:58:43:f3:32:bd:
03:e5:9d:83:6b:de:0b:90:32:40:57:1f:e2:71:78:
24:52:69:4a:96:0b:8e:e7:9b:fe:f7:93:d4:56:e4:
6f:2d:97:43:bb:2b:9b:4e:a7:4c:55:73:a7:54:4b:
33:cd:7c:14:12:f0:e5:21:06:ef:9e:54:95:d5:43:
a8:9c:a2:15:67:16:ea:1c:79:dd:cf:8c:5b:4e:60:
12:d9:ea:d0:29:af:ca:b3:8f:bb:0a:d0:8e:89:6e:
2d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3A:D0:44:D4:BB:A2:B4:3B:E0:DC:C9:C4:88:66:00:24:F2:C8:53
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.21.240.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:4a:06:08:9f:f1:7f:24:70:6e:c8:73:48:94:d5:df:fa:a2:
1a:09:7f:6f:33:96:cf:99:7d:28:56:c2:25:40:34:28:4c:fe:
91:e2:66:cd:da:0a:9c:0f:a0:f0:c5:13:10:33:7b:25:3d:32:
5c:a7:e5:c0:96:87:78:5c:21:ca:7d:73:e8:9a:7d:a3:cc:c6:
55:49:9d:8c:21:27:0f:b0:de:6d:60:82:9b:22:e4:b0:e3:55:
65:b7:e8:f8:8e:5b:f9:a8:72:08:9c:3b:77:dd:56:35:a0:d8:
50:ad:f2:73:e5:49:7f:49:0e:84:6d:b6:ae:77:12:4d:c1:c4:
c3:82:1f:26:e3:12:9b:48:33:aa:02:a5:a4:f1:a4:9a:ca:19:
0b:e9:f1:a6:13:82:6f:1d:a2:14:20:56:45:5d:b7:d7:1d:fe:
82:bd:e0:46:0a:70:c9:e8:51:ee:15:96:8d:74:63:0d:33:31:
4c:32:93:a0:1c:80:01:18:05:d2:e2:53:bb:ea:c9:64:fa:0e:
38:b8:25:7d:03:aa:35:b4:81:01:d5:50:39:9e:28:0a:6f:2c:
fd:ff:e3:e4:85:7a:8c:cb:a2:6a:9c:a5:2f:7f:28:ae:e6:dd:
73:38:36:4d:54:a7:5f:12:8d:5b:0d:dd:e6:d9:7b:98:5e:07:
a9:0b:af:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:59:50 2025 by rpki-client