Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa
File: 5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa (raw, json)
Hash identifier: l0hIGibMaU6XXrKqChKpRFAbTlYYM0PS4ujMp7fSCpc=
Subject key identifier: 25:C0:95:D4:EA:CE:A2:09:58:91:09:C6:7F:03:47:EA:8A:47:37:ED
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 045940C094DE115DB46D0FDE703B6C90E61D9AE6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa
Signing time: Wed 05 Nov 2025 00:30:57 +0000
ROA not before: Wed 05 Nov 2025 00:30:57 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.135.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:59:40:c0:94:de:11:5d:b4:6d:0f:de:70:3b:6c:90:e6:1d:9a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:30:57 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=63f315259ff4f5dbb23a8d88a31b207de7068585d2e367b5a306902f02fb0064, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:d6:06:16:15:ce:89:02:3b:c4:8d:f1:f5:c4:
2b:b7:0c:1e:36:e2:a6:dd:2c:21:5a:b2:3f:33:40:
7b:ce:15:c5:f2:82:23:ad:35:a2:8b:b8:45:a6:8e:
bc:60:43:35:83:f7:65:88:4e:d1:8d:9e:ef:b4:38:
e8:ba:a2:53:89:61:f2:fa:bd:51:43:6c:46:8b:58:
c1:82:16:bf:af:b5:85:9f:cd:59:dd:4a:65:e4:35:
7d:c7:87:19:38:c7:34:74:4d:5a:a3:18:d1:85:a9:
70:1e:42:7d:b1:9e:4b:87:42:bf:65:a0:08:4a:e9:
69:f9:d0:94:2e:9b:4a:c0:86:73:1c:55:2b:81:39:
da:b2:b8:0e:89:f3:34:ab:7b:4a:45:78:7c:fa:d3:
fb:fa:c4:c7:85:ee:93:28:0d:b9:7e:dd:01:06:60:
77:97:50:4d:74:f8:d7:b3:9c:3f:8e:88:25:45:34:
60:02:7b:d3:98:72:a8:82:a9:23:af:10:f3:07:6e:
32:8a:99:06:d7:89:a6:8f:a5:3f:9a:e1:f8:0e:83:
37:66:2c:0e:1a:95:df:b3:1f:0d:13:00:a8:c4:b4:
18:2d:38:ea:ba:1a:1a:a6:ba:e1:46:df:44:95:ea:
74:b4:fa:11:ab:5e:e4:40:be:71:da:4c:15:42:11:
e1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C0:95:D4:EA:CE:A2:09:58:91:09:C6:7F:03:47:EA:8A:47:37:ED
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.135.128.0/17
Signature Algorithm: sha256WithRSAEncryption
8d:0b:b3:09:59:71:67:fb:a6:44:0c:09:0d:0f:a5:30:98:8d:
60:05:57:1f:47:f3:7f:6d:11:f6:87:01:20:e6:a7:92:67:8c:
19:50:76:a5:6b:1b:ae:03:24:fc:67:30:93:bb:f9:49:c5:78:
ac:72:00:00:7f:c2:25:3d:46:d3:64:b1:fe:19:be:1c:96:46:
c5:c8:88:d9:e2:6c:b5:39:da:a0:68:ed:f7:7e:50:f2:1c:17:
41:d9:e5:ab:85:cf:4f:ce:fd:c9:46:20:0f:f2:91:fc:79:ba:
41:1f:e4:50:e0:4e:f8:11:d5:5e:29:54:1d:66:4a:86:82:85:
f8:93:6c:4d:51:ea:9a:6a:3e:56:d3:dd:c8:72:28:c7:2a:ba:
80:15:4a:35:fa:79:b5:b3:42:0a:d0:ba:44:38:15:59:55:7d:
0d:d5:ee:76:60:cf:fc:00:b4:f8:2f:25:d7:07:63:2d:bb:bd:
cf:70:5c:b3:12:06:e7:c6:35:93:63:6f:a6:64:4c:3b:fb:93:
13:5f:f5:05:dd:c3:d0:ae:f4:7c:fa:0b:16:77:8d:ef:f0:d0:
60:e8:94:e2:0a:90:a0:b4:95:20:b8:03:27:8e:43:98:cd:3d:
9e:d5:a1:00:fd:ce:f1:ae:e9:38:b3:74:b8:c7:dd:75:58:38:
4d:91:87:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:59:30 2025 by rpki-client