Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d190c3e-4718-48cc-9771-8f4da3fea829.roa
File: 4d190c3e-4718-48cc-9771-8f4da3fea829.roa (raw, json)
Hash identifier: HzphlyV3hm5fJWpdwcATc8RuqYib7RkwN8nQaQNcuhU=
Subject key identifier: C1:07:DF:CA:C2:0F:AF:7C:AF:5E:88:22:7C:EA:79:0D:06:69:7C:EA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4EAC4F524EF0A9F2394585D5B8960A53185FFC9B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d190c3e-4718-48cc-9771-8f4da3fea829.roa
Signing time: Wed 22 Oct 2025 00:00:55 +0000
ROA not before: Wed 22 Oct 2025 00:00:55 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 56.164.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ac:4f:52:4e:f0:a9:f2:39:45:85:d5:b8:96:0a:53:18:5f:fc:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:00:55 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=b9399697fd434022d6724b008cea7bb01424201c0616615a8372cc81a59e1b2f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f8:df:ce:70:1f:67:16:41:3d:c6:f5:6a:e7:
a2:10:3d:b2:c4:a4:c0:ed:0b:4d:8f:2b:5f:f4:6c:
0a:12:fc:df:0b:a7:d8:e0:22:23:32:0b:0b:e7:b2:
c6:1d:ba:fc:45:2c:f4:8c:11:db:c6:bb:de:6c:85:
cb:e8:c2:9c:7f:bd:6b:38:c4:aa:8a:45:aa:5b:4b:
40:6f:69:32:1f:f5:17:5f:60:e2:a3:ab:dc:51:08:
b7:4a:fe:88:74:2e:b9:b2:dc:cd:94:62:22:61:c5:
f8:ba:66:4a:5d:67:18:34:55:14:47:2d:97:13:0a:
43:37:59:43:da:be:ba:e0:08:d2:23:08:57:09:7c:
20:1a:11:39:ff:b8:03:8f:f8:99:e5:c2:45:ab:5f:
cb:28:63:86:ed:f1:45:c2:a4:6e:ad:a7:06:d3:ab:
ca:f6:8e:5b:6e:d4:70:8c:fe:9f:e3:25:80:aa:e8:
e5:44:cb:28:84:b8:bb:88:7f:52:2c:f6:a3:61:4f:
10:84:15:ee:e6:97:82:2f:09:78:8d:f8:78:05:fb:
e7:d2:9c:98:88:a3:56:8d:da:2a:7d:34:b8:e4:b2:
aa:fd:d3:e8:9e:dc:28:01:f8:f5:b3:11:4c:e8:3e:
69:c2:94:93:a9:4f:37:0d:18:29:e0:55:e9:50:eb:
c9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:07:DF:CA:C2:0F:AF:7C:AF:5E:88:22:7C:EA:79:0D:06:69:7C:EA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d190c3e-4718-48cc-9771-8f4da3fea829.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.164.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3a:dd:71:bb:f2:b0:a6:f8:11:58:1a:35:ac:33:f3:25:0e:ac:
31:be:8c:6f:b3:01:82:a7:31:9b:c8:e0:68:c7:64:7c:17:73:
38:99:e8:37:f0:91:0b:d0:4a:0e:70:c7:96:ca:47:eb:d8:4c:
2d:68:a8:3f:42:f4:c9:a1:d4:db:d0:a9:f7:92:0c:04:0b:6a:
ba:0d:52:c7:8b:32:84:60:a7:cc:7b:ae:96:57:20:88:32:ab:
57:81:1a:f2:25:7c:97:24:10:16:a3:6a:50:22:55:c6:84:18:
e0:7b:46:35:99:df:fb:f0:13:40:2b:49:92:c6:8d:34:93:7b:
8e:b4:c5:e7:70:56:fd:5d:59:60:b2:2f:93:ae:cd:a9:81:f2:
6b:cd:72:3f:1e:fc:79:03:30:24:ab:86:2e:52:f0:6c:b8:7e:
38:31:9e:a6:fb:36:b9:63:ac:a2:14:f6:4b:d8:e5:ad:fb:ea:
f8:a4:34:12:e2:af:83:b9:f1:12:4e:5c:db:5e:dc:66:e2:f2:
41:cb:18:0f:fc:c8:40:0b:df:f7:22:f6:ff:07:e0:35:1f:52:
84:e5:13:de:8b:3d:6f:e4:39:52:58:7c:50:58:a7:3a:ec:b5:
2b:8b:a1:78:d7:fb:d0:3b:d1:49:9d:63:55:94:d3:72:64:84:
cb:e3:40:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:02:02 2025 by rpki-client