Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa
File: 76e74dd0-5733-4c2f-b500-2d75cab973be.roa (raw, json)
Hash identifier: 5281heo2EXSj5fI2MSa7pooJw/2e/3mBFQFAf7eNHdo=
Subject key identifier: 37:F8:15:B0:41:5B:34:BA:97:E5:D7:7C:6E:FD:6D:BB:14:9E:2C:37
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2DBE39916F3A738443A8A428BFCF0498C6B54E09
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa
Signing time: Tue 28 Oct 2025 01:00:08 +0000
ROA not before: Tue 28 Oct 2025 01:00:08 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.44.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:be:39:91:6f:3a:73:84:43:a8:a4:28:bf:cf:04:98:c6:b5:4e:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 01:00:08 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=1b66d1620a79878391b29c44b85811f933b59a3e91a1482c68ccee1896a07ff4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e4:ac:ea:38:2f:fd:df:72:a0:d9:59:20:4b:
c5:c3:4f:cb:ff:81:fa:a1:04:25:6a:87:59:f2:9d:
7f:9a:5f:0a:9d:35:9d:59:a8:f4:82:c8:76:77:34:
3a:e1:73:5b:a2:56:18:bf:56:1f:ac:a2:fa:eb:a9:
0d:79:55:b5:2e:53:22:21:85:7c:16:e4:3b:fa:69:
8d:f7:60:19:56:2d:af:7c:79:8b:77:9d:70:aa:1e:
dc:52:3c:e0:cd:5b:1a:cb:30:76:4d:b1:1b:a1:7c:
f0:31:da:63:bc:fe:f8:60:d5:8b:1a:a3:5c:03:39:
a4:5d:03:4f:5c:e1:b9:92:e8:0b:64:9b:fa:97:5d:
c1:55:89:f4:98:42:3a:cb:f4:1f:48:51:e8:d4:e6:
9a:ce:c6:c1:5c:e0:ce:82:95:47:85:eb:52:db:a3:
a1:c1:69:a6:8a:7b:7b:8e:58:9b:25:94:d5:b8:f9:
84:50:3a:ca:ba:71:cc:40:11:ff:2f:36:c4:b4:d5:
fd:dd:84:a4:dc:89:1f:3c:61:6c:c6:34:b6:c3:24:
64:f9:39:a7:b6:35:6c:f6:47:46:1f:6a:3b:84:ed:
58:42:d0:f1:6c:01:dd:fb:90:4c:e5:88:dd:37:0d:
e4:4a:b6:59:18:1b:15:71:8d:80:35:46:9f:9e:db:
7c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F8:15:B0:41:5B:34:BA:97:E5:D7:7C:6E:FD:6D:BB:14:9E:2C:37
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.44.0.0/16
Signature Algorithm: sha256WithRSAEncryption
28:7b:ca:28:75:b6:9f:1e:cc:92:52:d2:eb:94:2e:3e:2b:be:
a6:a4:a0:fa:fc:65:7d:cb:65:9f:4e:60:ad:a7:cd:54:17:7f:
78:3a:56:74:46:98:36:8e:60:73:ed:f6:69:84:79:5b:b3:90:
ce:0a:d1:d9:f5:f6:61:d7:6d:33:56:47:48:1e:4f:5d:4a:d1:
aa:80:3d:9d:ba:8e:99:5f:3f:f7:5d:5a:e8:27:53:bc:92:11:
42:d2:33:cb:fa:55:57:25:3d:b5:80:aa:cc:e7:78:3f:60:f8:
a1:9c:ab:ee:a1:5b:bc:70:04:59:a6:53:39:33:70:7a:15:bf:
cd:b3:59:c9:f6:a4:da:cd:fc:46:5d:0c:f9:70:e9:69:9f:ef:
af:5e:ab:3d:8f:89:e7:d4:6c:52:03:a3:28:5d:88:d5:60:80:
f9:1e:36:51:32:9d:69:ed:1e:f0:fa:cd:4c:7b:0a:85:9d:c1:
29:b4:49:fb:27:e4:d3:54:31:bc:09:f4:1d:c2:5a:f8:8c:90:
42:3d:24:d0:14:47:ae:b6:9d:9a:24:07:b1:fa:4f:b4:2f:84:
34:71:34:40:13:c0:b3:b4:29:cb:5b:50:9a:b6:31:e8:f9:cb:
b8:42:e1:b7:64:a2:53:51:4c:6b:a6:f7:cf:9c:f4:ff:45:eb:
4b:9a:8a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:50:14 2025 by rpki-client