Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa
File: 379473a4-1fad-417b-8aa1-0054523c76bb.roa (raw, json)
Hash identifier: YfUFD61aQw/pLYfpDCxr0h8TWIQ1c1II53P/lP6OhWk=
Subject key identifier: AD:3C:14:EE:4E:D6:AF:AA:DB:2D:15:90:A0:73:73:C5:24:D0:EC:BD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 43E2B41C66412F9828A97F8F4A2C040E32D42214
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa
Signing time: Tue 28 Oct 2025 00:50:49 +0000
ROA not before: Tue 28 Oct 2025 00:50:49 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2620:107:4002::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:e2:b4:1c:66:41:2f:98:28:a9:7f:8f:4a:2c:04:0e:32:d4:22:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 00:50:49 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=3b79501724bdde2ed64875a014dd9f981ca08712b774cfa07a9c03c83d4b1935, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3b:83:f7:32:54:53:d3:ad:bf:b7:2a:7c:e3:
3f:e7:9b:cb:95:7f:19:f3:ba:4e:c7:52:3a:b7:14:
be:76:1a:ee:4f:f9:48:6c:e3:da:f2:de:b2:6e:e4:
f6:ec:c2:19:36:29:05:02:4c:73:b9:94:39:ee:e7:
9d:e2:b8:1e:d0:43:df:da:2c:2b:15:26:6f:af:0f:
fa:25:e1:36:fc:1b:05:ed:6d:0a:e9:28:22:03:ad:
e4:fd:0f:58:b1:2b:26:18:ec:c1:dd:50:b6:db:8a:
6d:a6:58:02:59:b0:c9:87:30:fd:3f:95:24:7b:6c:
53:0d:99:b6:26:6f:94:e2:25:e0:c3:39:ee:c0:58:
5a:97:5c:c8:a2:12:b0:91:68:cc:de:4f:0f:e7:ec:
46:1a:1d:df:b0:7e:ad:2e:b9:ed:10:7d:2b:ae:9d:
53:c8:9b:16:18:0b:39:dd:cc:18:8b:4d:4f:d5:22:
51:c7:bb:8f:61:6a:64:90:1a:d7:96:c0:9d:d8:29:
1c:7c:10:d3:d4:92:df:16:9b:80:23:f8:69:9d:80:
14:e5:06:a6:14:cf:07:ba:6e:af:c7:bf:29:77:fa:
12:0d:af:7a:ea:79:df:6a:a2:79:3c:3c:44:f5:20:
9c:04:0a:68:2b:32:c1:b3:cf:66:b5:e5:d9:1e:68:
a2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3C:14:EE:4E:D6:AF:AA:DB:2D:15:90:A0:73:73:C5:24:D0:EC:BD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2620:107:4002::/48
Signature Algorithm: sha256WithRSAEncryption
d9:2f:aa:90:a8:97:bd:b0:93:9a:1a:8a:f1:36:1f:2c:fa:16:
64:43:0f:84:68:1c:53:7d:7c:49:16:95:a8:88:71:d3:cc:db:
cc:8b:91:bd:a7:84:6d:dc:7d:c7:0f:b0:e7:89:ab:11:3a:0c:
9d:9f:5a:71:06:1c:29:8e:96:88:82:44:cf:b1:95:e2:32:61:
b2:03:ff:4a:49:03:a8:e5:4f:e1:de:79:a1:a7:d3:f0:b0:8f:
c1:d2:05:24:a0:44:4e:93:dd:9e:0d:56:2f:68:a0:6d:5d:1f:
a2:9b:da:5c:c7:bb:2e:52:d4:3b:48:fc:e2:39:8f:d9:7e:c0:
ba:ed:a0:38:c4:3c:d5:38:0f:7e:ac:70:d8:f5:e4:c3:0a:6f:
3e:18:7a:e1:46:58:d0:5b:3a:41:c9:ff:76:3c:e7:2b:cd:0d:
8e:ad:cc:28:02:70:42:e5:35:c4:3b:e2:02:d9:5f:a0:94:be:
76:07:a5:c3:54:01:f4:9e:6f:d3:51:b9:cf:dd:2d:d7:20:cc:
1a:8b:2c:a7:13:12:0d:ff:50:dd:69:ea:d5:ef:31:27:ee:6e:
49:4c:d7:d0:97:7b:89:1c:a6:ce:58:69:56:b0:2f:ad:2e:f2:
7c:66:13:a8:b3:df:c4:a5:04:67:60:87:4d:1b:b5:c4:f3:9b:
26:b4:65:7b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:59:47 2025 by rpki-client