Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58feff9-88a6-4564-8529-2be1d91940ab.roa
File: a58feff9-88a6-4564-8529-2be1d91940ab.roa (raw, json)
Hash identifier: hiNEyW9p6GldbXPfRtyhCweGAHutnWfxgr4yErk2ucc=
Subject key identifier: 03:C8:CE:2F:F0:BB:EF:05:3F:18:E7:B0:2B:5E:3A:9B:62:1C:8D:3B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 66FCABBF41C19BECE8E70662BAC0851F9E0600F4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58feff9-88a6-4564-8529-2be1d91940ab.roa
Signing time: Wed 29 Oct 2025 00:20:12 +0000
ROA not before: Wed 29 Oct 2025 00:20:12 +0000
ROA not after: Wed 03 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff3:c080::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:fc:ab:bf:41:c1:9b:ec:e8:e7:06:62:ba:c0:85:1f:9e:06:00:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 29 00:20:12 2025 GMT
Not After : Dec 3 23:59:59 2025 GMT
Subject: serialNumber=5315aa919afdd979d1cab6bcbb91282b306af0283883caf7a3264cf46487e936, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:f6:26:28:ae:20:1e:29:7a:41:ec:ac:6b:
3e:2c:64:3d:6a:74:f8:48:de:7f:77:0e:77:b9:eb:
ac:2d:b8:d3:f9:38:97:a7:28:2f:f7:ce:a1:71:62:
28:8b:2d:5e:42:c4:e5:f0:27:be:8c:e5:ca:69:a4:
c2:7b:d1:4f:5b:74:a5:cb:46:c4:b8:78:6a:af:bc:
6b:44:72:a6:58:16:ad:b9:28:a8:9e:c6:c1:e5:e2:
0f:c3:b5:e3:1d:ae:0d:6b:dc:8c:b7:4c:1b:3d:91:
54:bd:48:da:4e:c0:d3:a9:39:3a:5f:e8:bf:1d:f7:
c7:9f:cd:8d:78:85:11:08:67:75:ea:e9:30:f1:94:
19:3e:6d:02:95:2e:19:0e:e8:b1:63:ff:1a:1e:6b:
f7:93:3e:8a:32:72:e7:31:f0:d5:8c:2f:0e:40:5c:
d8:02:80:01:9b:34:69:06:0d:0a:01:38:53:f0:79:
ca:a2:18:f2:27:4f:0c:f5:eb:e9:e1:ad:f3:86:87:
8d:38:d6:33:77:00:1c:5a:69:4e:24:14:7b:f7:be:
6a:24:b2:37:6a:8b:b0:da:31:6e:c8:c6:70:51:dc:
33:bd:f1:3f:bf:3d:02:39:a2:96:49:4d:6f:a2:22:
96:6d:3e:19:2d:91:f5:3b:6c:19:90:df:4b:0c:d2:
1f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C8:CE:2F:F0:BB:EF:05:3F:18:E7:B0:2B:5E:3A:9B:62:1C:8D:3B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58feff9-88a6-4564-8529-2be1d91940ab.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff3:c080::/46
Signature Algorithm: sha256WithRSAEncryption
5a:39:52:fe:ff:31:9c:d0:cd:e1:6e:cf:12:a1:aa:06:08:a4:
77:9c:3b:5e:c1:a0:35:10:86:6c:e2:f6:9e:24:99:0a:ff:aa:
6c:2b:68:46:99:b6:fc:9c:45:78:45:78:89:6f:5a:ff:09:99:
3e:7c:7a:0e:6a:49:80:12:87:27:29:cc:f4:d9:3d:42:18:a5:
d6:e3:7f:2f:ae:52:2c:e4:92:46:9a:a2:8a:17:b2:52:5b:eb:
30:bc:35:44:4f:bb:ac:af:58:91:0f:a6:fc:41:9e:13:5c:db:
64:25:87:06:f9:89:fc:03:92:77:8f:f2:2b:2d:49:15:7b:ef:
9f:a8:c6:76:e5:ed:79:41:fc:b5:66:df:f4:c3:f9:47:bd:0f:
72:07:e2:ae:98:b2:15:f2:68:4e:dc:24:fb:72:6c:cc:b7:38:
95:f7:c7:b3:6f:12:24:83:fa:51:e5:58:0c:0e:c7:b9:0b:ed:
2c:25:cb:85:0e:da:88:34:a1:9a:bf:cd:2f:31:1d:52:2d:7b:
be:12:71:52:84:27:7b:cf:41:66:2f:5b:05:7e:5c:51:54:8b:
b6:6f:a2:80:bd:0b:56:b6:53:a2:3e:30:42:aa:ef:22:9b:1b:
0c:0c:7c:4c:aa:4f:b6:de:6d:19:7d:0a:ec:cf:3b:52:27:4e:
fb:0a:d9:5b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:50:31 2025 by rpki-client