Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fac1823-b328-4f8c-8379-f7180469d48a.roa
File: 7fac1823-b328-4f8c-8379-f7180469d48a.roa (raw, json)
Hash identifier: yyatROXRw3MHsXBH3IXX/LbGBT6n9IcAxgww/TVUgxU=
Subject key identifier: 66:A7:03:66:94:5F:A2:34:BB:DC:7B:10:F9:94:29:D9:0B:34:5A:19
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0841EC267EEC39DB05DE0BED8AEFC77A15B1539C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fac1823-b328-4f8c-8379-f7180469d48a.roa
Signing time: Tue 28 Oct 2025 00:31:12 +0000
ROA not before: Tue 28 Oct 2025 00:31:12 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f2d:8000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:41:ec:26:7e:ec:39:db:05:de:0b:ed:8a:ef:c7:7a:15:b1:53:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 00:31:12 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=dc5108c4ed582f301f5338883b862a2e82e1efd67c66d5257900891e0dfd8725, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:94:f1:05:1c:2c:33:76:d5:b3:25:4d:c9:8a:
96:c3:87:26:70:ec:12:00:4e:54:c2:e0:5d:14:aa:
64:ca:31:06:ed:4b:03:31:18:27:1d:e7:cf:06:1e:
12:2f:e3:14:f6:94:15:3d:74:1c:e8:57:12:5a:01:
79:ee:cb:3c:69:79:d2:e8:ad:90:18:de:fa:4d:d4:
a9:7d:b6:bf:fb:61:f4:4d:fc:3b:d4:49:5b:52:2a:
12:53:c2:d6:d6:29:3d:93:68:d0:3b:3c:81:e2:51:
2e:48:0f:9d:c2:a0:eb:33:33:45:68:24:78:cc:03:
b0:0f:d3:50:ed:10:2e:4f:0b:78:5c:d5:e4:fd:70:
90:d8:eb:35:51:17:e3:18:ca:36:a2:e2:4b:ae:60:
06:08:cc:87:16:19:29:93:ed:62:fa:74:18:c8:ca:
35:aa:0a:f2:cb:df:23:41:dc:c8:a9:b2:b7:97:73:
e9:2c:31:fa:85:a8:fb:a3:dd:4f:83:50:e7:86:2c:
b2:d9:db:b4:2e:fb:49:34:7a:e4:7b:1e:bb:e7:d0:
bb:17:f2:a9:e7:0e:ab:74:5f:b1:53:e1:b1:44:f7:
67:ae:85:5d:43:77:3b:62:f4:56:47:9b:8d:0a:51:
76:78:c4:19:04:71:9c:b5:de:c6:32:c1:70:d2:04:
32:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A7:03:66:94:5F:A2:34:BB:DC:7B:10:F9:94:29:D9:0B:34:5A:19
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fac1823-b328-4f8c-8379-f7180469d48a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f2d:8000::/36
Signature Algorithm: sha256WithRSAEncryption
94:96:1e:3b:d8:bf:05:1a:a9:89:b0:6e:ba:72:26:b3:60:dd:
70:69:11:1f:ef:aa:77:14:46:f9:45:91:73:22:0d:08:40:ef:
74:9e:3e:89:67:ab:b5:b2:27:ae:b3:76:97:98:8e:86:cf:20:
b2:23:f1:8a:b6:1c:00:d6:f1:44:4c:c9:23:34:a7:08:57:30:
c4:79:27:68:a0:fc:9b:59:76:2e:df:92:f2:43:ad:30:5e:a5:
fd:66:9e:5a:b6:99:24:49:01:e1:c2:ce:31:d3:9f:dc:49:9c:
d3:58:2f:0a:f7:6d:c0:26:22:56:3c:98:51:8f:80:6d:a6:61:
67:a5:52:58:54:ea:f4:e6:ae:d4:7b:b0:29:3a:41:00:87:1c:
86:db:f0:d6:df:46:77:af:28:cb:4b:fc:d7:86:72:e7:bd:0f:
89:6a:75:09:2c:67:e1:09:bf:93:77:32:a7:5d:f8:0d:23:56:
9e:10:5b:f1:df:25:05:f5:b4:12:f8:f8:05:83:46:02:d1:76:
0c:12:59:a5:3d:13:90:83:35:97:28:3e:25:7a:57:bb:04:34:
66:1d:ef:35:74:f6:1e:ce:51:a9:3a:83:76:34:86:77:f0:76:
9a:fe:e7:e0:47:c5:2d:37:be:d8:4f:6b:3c:9b:d2:c3:3b:72:
aa:f0:4e:18
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 05:47:59 2025 by rpki-client