Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa
File: d97c3616-0d82-4524-945b-08ee314efd7b.roa (raw, json)
Hash identifier: slYpPZwaluMei1DIWsLGigp5fMXakvT23bwJKsQMurU=
Subject key identifier: 7B:A5:8D:6E:C5:1C:CE:E3:77:87:53:DE:DE:B5:B6:61:26:B9:73:4F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7F8017BF9B0C21407D503AE6223435C93BA9E243
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa
Signing time: Tue 28 Oct 2025 00:40:03 +0000
ROA not before: Tue 28 Oct 2025 00:40:03 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff0:2000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:80:17:bf:9b:0c:21:40:7d:50:3a:e6:22:34:35:c9:3b:a9:e2:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 00:40:03 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=1e08b93437a494743b766a0e9fa404d26fc1e8a027e1fa26d8123c0572ab1952, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b9:c6:3b:4c:d7:f3:3b:4e:5c:3f:da:f1:f3:
db:24:04:b0:5e:1a:0a:02:e3:e1:0f:1e:98:e3:69:
c2:b8:c4:74:69:ba:83:8a:4f:29:a8:f4:36:4d:db:
95:9f:77:39:60:9e:d9:fd:4e:45:69:99:f2:48:fa:
e9:38:37:59:5e:83:50:a3:57:57:5d:b2:c8:f1:64:
9a:ab:34:07:07:46:ef:d4:63:ad:81:72:16:ea:94:
7f:34:27:64:f2:8b:58:e9:a8:df:d2:f3:33:31:9c:
17:a9:54:34:aa:06:aa:b4:5f:0a:8c:8b:0f:5e:a5:
d7:be:53:b4:e7:c5:58:19:71:08:a5:20:30:46:d0:
8e:ba:73:ea:e0:5c:0c:42:8d:30:e3:03:1e:7c:97:
9f:f9:ff:8b:bf:94:4a:a3:03:33:12:5c:14:12:db:
e3:ed:5a:a1:db:be:24:94:31:9b:bb:6e:c7:47:70:
34:f4:bd:10:50:02:7f:ab:78:49:92:70:c7:d7:51:
6b:3e:73:99:e4:b5:d9:a9:99:c8:3e:3e:ed:b0:fd:
61:03:27:cb:ea:91:b2:4c:bd:c1:a5:cf:87:54:84:
4f:d4:24:ab:9f:8b:9b:87:4f:c9:28:78:26:a7:79:
3a:40:81:31:cb:b5:6b:09:a9:1e:d5:20:6f:9c:ab:
20:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A5:8D:6E:C5:1C:CE:E3:77:87:53:DE:DE:B5:B6:61:26:B9:73:4F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff0:2000::/40
Signature Algorithm: sha256WithRSAEncryption
85:69:8f:fb:0d:c5:ce:b2:77:8a:00:43:01:af:77:51:82:39:
31:02:61:f7:10:85:df:d5:75:25:81:8f:64:48:9f:d6:9e:7a:
58:f6:36:8e:fd:c6:9a:2a:36:a0:0c:b3:cc:be:e5:6e:ec:57:
b9:19:3a:fc:42:5d:3b:61:55:b1:6d:33:f2:fc:8a:1d:5a:2f:
4f:29:eb:1f:ad:00:15:3b:f9:9d:6e:a2:20:03:4e:9d:40:9b:
a9:a3:5f:06:4e:5e:5a:c5:e7:78:45:c1:d8:7e:33:4a:88:05:
6c:5f:03:e8:d0:03:86:f3:5f:0a:e7:09:52:66:e4:3b:1f:50:
2d:09:7f:5a:46:f4:e3:a4:bc:2a:1f:23:61:49:b9:f2:9d:e8:
61:a3:15:69:f5:63:b4:57:c4:03:79:97:54:bd:ee:3f:e2:1e:
97:a1:93:90:4b:bd:85:f0:c8:a5:7e:1a:c8:71:ee:49:43:37:
e3:e5:fd:34:5e:c5:93:ee:ad:22:84:34:6c:e2:d0:89:9e:02:
38:b9:13:79:0e:a3:8f:3a:98:eb:20:bb:67:e3:df:11:82:03:
60:87:00:56:61:7c:ad:ff:e8:57:8d:02:1b:47:ae:c3:46:04:
99:e9:25:b0:ec:8a:1e:50:48:18:f9:6c:43:c6:3c:4b:85:06:
7d:d3:7d:16
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 05:45:24 2025 by rpki-client