Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa
File: b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa (raw, json)
Hash identifier: 3L1md07vMA2hwI0vRaSXOpg+IfgL2tAOC5IXgOxOJro=
Subject key identifier: F0:55:70:84:7E:87:00:51:1A:A1:47:59:A1:B7:21:18:7A:87:7E:9A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 560FC913050D89051FEEBC4E66AECA8147678D44
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa
Signing time: Wed 22 Oct 2025 00:01:46 +0000
ROA not before: Wed 22 Oct 2025 00:01:46 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.70.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:0f:c9:13:05:0d:89:05:1f:ee:bc:4e:66:ae:ca:81:47:67:8d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:01:46 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=ccb2ca301afdafd71fd3311db46e0a40c680681691e5021c6a53e80ee1b35834, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7f:71:d9:7e:69:c9:86:78:f0:eb:9e:77:d0:
e9:2c:9e:25:f0:89:d7:07:1b:70:21:37:2e:c6:78:
2e:6c:3f:95:e2:71:f9:71:20:d3:a2:76:53:c7:cd:
1f:a1:85:8b:9a:08:5e:3a:a0:c0:8e:02:f5:4d:a8:
a1:62:51:0c:7b:17:84:e0:3d:2d:2b:3a:80:6d:58:
2f:8d:40:8c:75:6f:6d:0e:49:37:77:6e:1a:2b:a0:
bb:94:f0:cf:ce:ff:06:07:6c:5a:df:87:39:6c:64:
3d:88:41:19:4f:56:0e:87:7b:f8:65:8a:e3:63:35:
d0:00:05:b3:9d:b1:5b:19:9f:7d:f3:5d:fa:31:8a:
10:8d:4e:28:33:59:2e:13:d4:9e:b2:03:2d:c9:9b:
d4:36:cc:9b:a2:1e:92:42:2e:16:55:06:9d:87:f0:
29:0f:aa:7b:07:f1:95:32:1b:ed:0b:d3:85:d3:cf:
49:73:8c:9d:30:86:e5:21:8c:e3:20:8e:e2:4e:a8:
ab:0e:79:1b:b2:ba:09:94:36:e3:06:f2:c0:75:18:
09:9e:69:6a:f0:54:2d:11:cb:75:8d:b1:44:68:bd:
69:b7:97:1e:bb:8b:c8:b9:7c:5e:ec:d7:d5:70:49:
b7:00:35:54:5c:ed:b8:33:0d:95:a3:16:d6:e0:2a:
8a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:55:70:84:7E:87:00:51:1A:A1:47:59:A1:B7:21:18:7A:87:7E:9A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c9:e1:6a:67:32:fe:bf:67:56:38:59:46:9f:cf:09:14:c8:73:
c9:97:eb:78:b5:09:ee:bb:20:8e:a5:d3:68:e2:86:a0:e1:94:
23:60:51:95:4d:1c:8d:19:08:0e:a4:10:7b:a4:ae:34:60:64:
1a:05:f4:c4:b9:0b:33:a0:e6:bb:4c:c7:cc:f5:7f:cf:44:63:
58:bb:6b:96:af:60:87:e0:e5:e3:9f:07:99:cb:51:40:ba:26:
9d:dc:0c:1d:64:f9:7c:66:d5:7b:cf:41:93:b7:79:30:50:8c:
32:ff:86:2d:65:6a:3f:52:7d:18:7e:10:6a:1d:91:f3:c9:5e:
80:b7:1e:ab:cc:bf:ff:a1:df:be:1f:dc:8a:fa:af:cb:d1:79:
e4:64:fa:3c:3d:13:8a:17:46:58:41:e5:6f:23:8e:7a:71:8d:
ab:c4:09:6f:13:dc:6e:e2:12:82:42:0c:43:90:96:47:ba:84:
1d:ec:9d:a8:68:8f:a6:29:f3:ec:83:2f:44:5e:16:94:65:bd:
a1:53:25:3b:71:4f:7f:a0:3c:c4:f4:f7:b6:5c:1b:b6:29:2c:
70:9e:af:3d:94:56:72:e1:d0:c3:59:40:7a:75:d9:6c:ae:81:
b4:60:12:fa:99:bc:90:f8:ec:2a:aa:fb:03:0a:2b:d2:ee:43:
76:67:9f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:45:23 2025 by rpki-client