Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa
File: 6c512c1b-f3e3-4cc4-adf7-022feda26799.roa (raw, json)
Hash identifier: oRDKbsoK2UPUlz+XVOzmybdhP/KLccPFt15AMLniQ44=
Subject key identifier: BC:E0:99:CF:D9:D6:EF:0A:7F:5B:F4:AD:78:E4:66:B2:8B:0D:A1:FC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0263A9E8519C8194D9DD93DE86D9B94D48250035
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa
Signing time: Wed 22 Oct 2025 00:10:58 +0000
ROA not before: Wed 22 Oct 2025 00:10:58 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 79.73.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:63:a9:e8:51:9c:81:94:d9:dd:93:de:86:d9:b9:4d:48:25:00:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:10:58 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=6a051e17855dad2c50d1642a6229ea7c3e59d3b27ebd3dd84a16288b841ba99c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:05:d9:4f:2f:07:ce:64:1a:81:58:f1:6d:78:
e3:4d:9f:c8:e8:96:db:72:65:c5:a9:2b:e6:32:04:
84:bc:58:18:54:a5:fb:0e:ac:1c:f3:2d:5c:b8:16:
cd:61:91:5e:24:3d:a9:14:cc:92:79:8b:e3:28:b4:
d6:f1:fe:f6:8d:c6:7b:2f:66:06:94:ba:3c:6c:39:
ea:f6:87:12:b1:1e:bd:c9:02:84:b0:48:42:df:58:
f1:c8:d3:09:64:57:f7:ba:53:aa:5b:bc:ca:2a:b5:
33:e6:49:e1:dc:10:bb:8d:27:cc:ef:ed:7c:58:42:
6c:aa:fc:66:69:41:ab:27:81:0c:bf:b3:19:6d:3a:
f8:30:81:65:26:af:79:9b:03:2b:f4:63:93:14:ee:
b6:13:86:69:8c:60:48:0d:1d:6e:42:44:74:85:64:
0a:d9:e0:51:c7:96:4b:87:52:b6:63:0f:fc:a5:91:
2b:07:fe:1b:e4:bc:b9:80:9c:4b:69:51:fd:ba:b4:
f9:0e:17:91:89:67:f2:ad:80:71:77:2b:01:06:b6:
45:47:a5:aa:4e:fc:0f:c2:20:ac:95:8e:f2:64:d6:
c6:42:f3:9a:f1:84:55:39:9c:f1:7b:cb:a0:2c:05:
b6:b6:e9:7a:ae:e5:82:a8:8c:da:0b:83:32:d5:de:
6c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E0:99:CF:D9:D6:EF:0A:7F:5B:F4:AD:78:E4:66:B2:8B:0D:A1:FC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.73.0.0/18
Signature Algorithm: sha256WithRSAEncryption
86:07:18:63:3c:fc:28:c0:bc:0f:06:8d:28:95:bc:a2:6d:bb:
3b:3c:d9:85:40:b2:36:95:84:ed:87:72:83:ff:fd:f2:92:23:
52:83:e5:53:b3:58:2c:e7:43:3f:e0:51:8b:9a:b9:a3:0e:f5:
c0:dc:fd:69:87:db:65:c7:b6:7b:40:ef:ed:2f:8b:e6:01:ee:
4d:42:30:e5:3c:17:a8:80:14:7d:4f:e0:9f:ad:cf:c2:67:f1:
73:7c:0c:92:b6:cd:b9:dd:42:20:22:9a:2f:d5:83:24:16:05:
d2:de:4b:8a:5b:ff:93:89:b4:83:05:ee:8e:44:b3:1d:41:1a:
9b:02:ee:c9:0b:07:a4:eb:aa:f5:8b:8a:e1:5e:63:96:07:53:
36:95:97:a8:ed:45:14:1a:0b:36:09:4e:8b:e5:60:5d:87:36:
86:fd:85:cf:45:0c:53:1a:b2:cd:da:c6:6f:1c:68:ad:c7:a2:
6b:41:ec:29:2c:90:48:be:56:a0:10:fc:4b:d0:e3:41:3a:60:
ca:4b:c9:29:6c:e0:b8:3d:fa:b8:42:f1:88:0f:d9:d4:32:06:
3d:99:ff:25:3a:8a:ae:ad:3b:25:c6:d1:ec:b3:fb:8f:a9:1c:
f0:5d:87:a1:fc:ae:f4:6f:b3:44:62:9f:f7:16:0b:fa:4e:cc:
ec:eb:af:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:46:36 2025 by rpki-client