Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f4cb75-bc47-405a-9a28-48a89ca2a0c4.roa
File: 51f4cb75-bc47-405a-9a28-48a89ca2a0c4.roa (raw, json)
Hash identifier: ij1OHOe6Z+c2hGnyDoNbQKOEnw3UKI5D/S5emHxCi2c=
Subject key identifier: F2:F1:A2:FB:AE:5A:D9:F4:AE:F7:5A:18:A1:A4:CC:FF:B6:C4:AA:E1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 14EE8F470FB03E2583F805B9C47E0F1A4AEB1516
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f4cb75-bc47-405a-9a28-48a89ca2a0c4.roa
Signing time: Tue 28 Oct 2025 01:01:53 +0000
ROA not before: Tue 28 Oct 2025 01:01:53 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 14618
IP address blocks: 56.49.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:ee:8f:47:0f:b0:3e:25:83:f8:05:b9:c4:7e:0f:1a:4a:eb:15:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 01:01:53 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=ac35e147e1ac95bc3aea48f67ea00708406ea200f90e9a31cd8cb3f1a61f2d78, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d8:e2:3a:06:d6:63:3e:81:1c:a4:df:ad:f3:
6f:a4:45:9c:2c:05:76:b2:b9:9a:e0:16:a3:81:ae:
81:f1:8b:d8:0a:82:6c:97:e9:c3:9b:81:5c:9c:00:
11:af:b8:96:69:01:0d:5f:14:4f:e4:30:c9:39:63:
17:78:67:bb:ba:20:4d:07:98:02:f9:bc:b8:f0:59:
24:4c:d4:95:68:f8:92:b4:fe:36:11:c0:35:a1:79:
bc:9d:82:76:16:2f:5a:91:10:eb:87:5d:9a:a3:15:
50:27:76:50:4e:6a:e4:a7:75:d4:87:68:9c:26:f5:
63:35:0b:25:e3:77:81:f1:42:fe:24:c0:a4:dc:da:
66:9d:85:a3:77:16:62:80:2b:5c:55:fd:d7:91:07:
1d:c2:ff:31:f4:94:b2:07:8b:ac:3e:20:7e:93:44:
80:96:e3:02:b7:67:0e:2a:2e:14:1b:78:60:a0:11:
0c:29:6a:84:5b:15:f4:53:64:69:20:a0:7e:72:8d:
dc:54:6a:c2:fe:a2:e8:4d:58:a1:52:62:cf:f3:ed:
34:c3:31:29:97:44:38:59:66:28:be:ca:43:99:98:
ac:14:5e:1d:45:7f:05:6f:1f:98:54:9d:54:eb:fe:
ea:49:ce:f3:ac:d8:8a:ca:a3:76:a2:8f:e9:8d:1f:
3d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F1:A2:FB:AE:5A:D9:F4:AE:F7:5A:18:A1:A4:CC:FF:B6:C4:AA:E1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f4cb75-bc47-405a-9a28-48a89ca2a0c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.49.0.0/16
Signature Algorithm: sha256WithRSAEncryption
57:21:49:31:8e:39:2c:5b:24:c3:3a:a5:39:52:2b:cc:77:f3:
eb:03:f3:fc:33:16:14:ce:21:6c:1f:ba:a2:7b:54:be:28:c1:
bc:6b:17:53:3a:42:31:86:64:7b:57:88:bb:36:ff:39:7a:8d:
b9:44:16:c2:19:b5:62:45:94:3e:5d:ec:8d:d5:66:0e:68:77:
f5:d8:f7:06:a1:fa:93:9a:6a:ba:e9:cb:27:32:36:be:c1:a9:
15:9a:65:64:db:81:69:6c:f2:89:aa:ee:3c:b9:20:ca:83:5a:
bb:ab:3a:fb:91:fb:c6:22:07:f2:20:d9:96:d9:f5:0c:da:a4:
d5:53:4b:e6:29:34:f7:fd:51:f4:f9:fc:73:95:90:fa:bc:d4:
b1:4d:24:b7:2f:67:f1:24:3c:01:62:44:19:ec:e2:ce:e0:5a:
c5:02:6b:b4:e2:87:05:e0:d6:38:dc:1f:27:f7:e6:5c:be:cd:
17:d5:94:d1:04:6e:e4:e0:fa:38:25:27:f1:24:f7:20:2f:62:
55:e1:4b:6a:49:60:77:cf:08:5c:97:84:29:c7:3b:b4:08:a7:
14:67:47:22:a2:a6:e9:17:a6:9f:f3:9c:4e:94:63:58:c2:23:
94:63:80:24:2e:7c:05:b4:1b:f4:80:af:d1:b1:f8:67:c2:f2:
54:fb:b1:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:49:40 2025 by rpki-client