Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa
File: d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa (raw, json)
Hash identifier: 3amFDd+MFiTiXuplf8yQYaw5oc8LO8i1fgamarqyvMU=
Subject key identifier: 10:2D:DA:1F:63:3C:DC:D9:2E:B9:72:DA:18:22:6B:0B:97:56:13:E1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7DE729F0A2A93540CF34A8257DDB02D6A4993EE8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa
Signing time: Sun 02 Nov 2025 00:10:06 +0000
ROA not before: Sun 02 Nov 2025 00:10:06 +0000
ROA not after: Sun 07 Dec 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1f32:8000::/39 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:e7:29:f0:a2:a9:35:40:cf:34:a8:25:7d:db:02:d6:a4:99:3e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 2 00:10:06 2025 GMT
Not After : Dec 7 23:59:59 2025 GMT
Subject: serialNumber=10d1767c26c63e10f89ed7717428286de7c44967fa83227c80c39e56be3884b2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ee:b4:3b:61:33:33:69:a0:22:2b:b9:22:f0:
10:7c:f0:e7:e8:5e:77:64:15:62:a1:08:61:56:c4:
c5:b1:bd:2a:90:c6:08:58:5e:13:eb:db:c2:ea:c9:
d6:9f:af:43:82:26:9c:99:1c:49:c9:59:11:1a:46:
38:77:38:7d:2a:99:cf:cc:3f:66:01:0f:28:52:b9:
b2:06:92:59:8c:16:6e:f4:60:ab:16:ca:9e:d5:74:
0f:ef:70:82:43:10:35:15:ea:29:38:2c:50:d1:03:
76:87:c4:d3:7b:96:11:63:95:f8:d9:a7:84:bb:d6:
ff:c6:7c:05:3a:f7:c5:eb:07:3d:43:4a:e9:be:7e:
b5:32:a0:e0:80:01:1e:7e:7a:3c:a2:6c:3b:b6:11:
01:be:09:aa:b9:51:5c:99:17:06:48:be:0b:f2:66:
56:7c:a8:fb:b9:1a:54:6a:e1:53:4f:1b:6e:50:44:
78:f4:ca:11:96:06:64:68:b3:d5:2f:ac:30:d6:8e:
72:f7:a4:3f:6a:f2:c0:fb:67:f5:93:4c:3d:71:6f:
8c:f0:8f:ce:44:d9:07:32:91:f7:69:8b:28:af:80:
9a:90:70:18:93:16:11:8d:26:dc:83:c6:6c:e9:c1:
12:07:39:b4:98:60:1c:28:f3:47:97:e6:31:6c:0d:
32:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:2D:DA:1F:63:3C:DC:D9:2E:B9:72:DA:18:22:6B:0B:97:56:13:E1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f32:8000::/39
Signature Algorithm: sha256WithRSAEncryption
11:c1:a0:3f:d2:e5:96:a7:b5:8c:44:99:50:a5:24:96:79:e6:
84:a2:33:e5:61:59:b1:87:40:88:48:7a:eb:62:f4:72:58:05:
94:a3:52:69:ba:13:ab:f0:51:1a:e7:47:f8:31:0d:2b:8f:20:
b3:d0:47:df:1b:cf:5c:68:ff:b3:e5:00:92:15:ae:6e:4b:fc:
9f:11:4b:43:44:31:25:fb:d9:0b:81:60:ae:03:49:3d:83:6c:
03:43:52:14:cc:7c:34:05:19:f4:a0:ac:d7:2d:13:3f:ab:57:
15:72:a6:d7:68:21:dc:08:89:b6:5d:0e:80:89:d1:dc:89:87:
75:57:00:5b:6b:4d:51:ad:24:fd:0c:c0:73:ac:2a:f6:fe:6c:
b8:d7:ed:42:47:b6:0f:81:f6:a3:e8:79:2c:0f:5d:ab:67:a7:
7b:aa:31:84:b4:3c:ab:2b:7e:82:0f:3d:b8:0b:2e:1e:e9:a1:
a6:0d:34:9a:99:09:da:2b:ef:b7:8f:6f:bc:fc:c9:69:79:ef:
17:fe:d2:87:43:cf:7c:c7:7f:e4:07:a8:6c:6e:9f:0d:77:16:
b7:08:4e:8c:ff:47:38:d3:e5:b9:89:16:20:4e:dd:71:05:2b:
a9:5c:75:5a:6b:61:9f:c7:3b:da:dd:4d:29:29:d8:84:76:5e:
1d:68:ff:b6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 05:41:50 2025 by rpki-client