Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa
File: 52248f94-30ea-4ecd-abe4-da5a8409a81b.roa (raw, json)
Hash identifier: XRYdPVF1EoRZnKyKJJP2SNkHeqitTBtki9bTAGxNbqM=
Subject key identifier: D1:06:87:A6:2D:B5:5E:82:3C:EB:B0:95:F9:5D:69:E5:9F:72:23:C7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0CFFB89693A636649A7EB542529A33A8A01AF9EE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa
Signing time: Wed 05 Nov 2025 00:40:06 +0000
ROA not before: Wed 05 Nov 2025 00:40:06 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 69.0.146.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:ff:b8:96:93:a6:36:64:9a:7e:b5:42:52:9a:33:a8:a0:1a:f9:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:40:06 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=4dab1c4a5b293c65975a9956e38a7b0db3d17655038e2142cb9af3eaf99f1b1d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:34:60:68:b2:9d:eb:a3:9e:5b:30:41:6e:fd:
79:33:a3:01:40:ac:cf:ca:15:eb:72:89:89:20:e3:
7e:7c:01:08:a1:06:0a:e1:ff:87:81:0f:e8:dc:5d:
e3:9c:02:a0:ec:82:8a:ed:65:36:9d:5d:2b:bb:76:
ae:7a:a9:3e:7c:57:fe:d5:e7:41:01:c7:94:b8:dd:
1f:dc:55:66:36:40:5f:b3:0a:15:0d:57:d7:a5:52:
18:de:a3:59:71:8c:a9:e5:3a:ea:dd:c0:d4:0c:be:
c1:0d:f8:e6:39:84:1d:a4:91:fb:30:cf:df:86:96:
f0:02:3a:c6:a9:c0:85:fb:ff:6a:6d:36:e5:df:4b:
a2:8e:a8:a4:47:7c:84:04:65:2f:f6:d0:72:16:a3:
a0:07:2c:40:84:a8:50:af:e0:8d:76:a9:d5:6a:3c:
5b:83:5d:e7:5a:bb:1a:c2:0a:29:56:1f:0c:e5:ca:
3c:f3:8b:55:2f:49:4b:10:9d:8d:42:00:e7:22:5d:
06:0b:5b:2e:21:da:28:e1:ef:69:86:e0:86:09:fe:
9c:75:d5:ac:4d:3e:b0:67:ff:05:47:51:3b:1b:f4:
b9:58:d5:a6:53:30:bb:c5:88:61:12:6e:84:67:41:
8f:1a:f5:a0:27:ab:a3:3a:b5:2e:14:72:06:b0:9c:
02:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:06:87:A6:2D:B5:5E:82:3C:EB:B0:95:F9:5D:69:E5:9F:72:23:C7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.0.146.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:10:79:16:3c:53:15:cf:5f:e6:af:7e:a6:88:2d:24:63:8f:
f9:d0:55:87:9d:fe:6f:62:65:36:a1:00:a2:35:6f:b1:f3:e6:
92:2e:90:f3:2e:35:e9:8e:ba:f7:52:78:41:08:b7:d8:bd:5f:
a8:8b:99:b3:97:9e:15:9a:2d:51:ca:35:9a:08:b6:cb:8f:e2:
b2:e4:c3:58:7d:ec:99:5b:5b:3a:f4:82:e0:34:db:cb:a2:58:
a2:10:2e:1e:11:b2:c8:cc:4a:7a:31:98:12:ed:64:e1:43:5d:
f2:6c:fa:b2:39:3b:31:ac:09:c1:c7:14:5b:03:33:55:89:f8:
a6:06:66:39:0f:ff:13:43:d8:d7:77:82:9d:bf:ec:8d:46:6e:
17:da:cb:ea:de:82:98:13:77:98:bc:c9:6e:26:a7:ed:b4:00:
7a:ac:20:f1:d9:1f:2a:ab:f3:26:18:9f:d4:ab:59:fb:b0:4a:
6d:5c:ef:09:92:05:cf:53:db:5c:5c:84:16:db:cb:a3:90:35:
2f:57:3d:a4:ce:00:2f:f9:77:3e:2d:b1:53:ec:25:eb:da:6b:
58:99:98:ac:e0:8b:8c:06:57:81:c3:d4:c5:71:9f:e1:c0:1c:
da:8e:1c:41:43:95:cf:bc:1e:61:ee:1f:30:51:7f:66:cb:35:
b9:f1:c5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:05:03 2025 by rpki-client