Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eea3d420-1a2b-4459-ab7f-1d261611837d.roa
File: eea3d420-1a2b-4459-ab7f-1d261611837d.roa (raw, json)
Hash identifier: 1dUvyFRrpbr2ZKQQE5FxAT3+YrUd8jL9H5XzCEQQ/R8=
Subject key identifier: 79:88:B6:AB:AD:B9:92:CB:CD:08:5C:11:0D:BC:4C:F4:44:D5:13:2D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 39676B692DDAB150FDD20641F352BB6B4E740695
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eea3d420-1a2b-4459-ab7f-1d261611837d.roa
Signing time: Sat 01 Nov 2025 00:30:57 +0000
ROA not before: Sat 01 Nov 2025 00:30:57 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff4:2000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:67:6b:69:2d:da:b1:50:fd:d2:06:41:f3:52:bb:6b:4e:74:06:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:30:57 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=e861bcbfbf049f6b3d95abaab5506af8c34627c65763e3d5c5f910a424cce167, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9c:79:14:33:61:2e:56:59:2b:1b:16:5f:23:
6b:86:c6:1a:7b:e7:05:06:2d:26:8f:39:e5:49:a2:
4a:4e:c8:23:f0:ce:5e:5f:7a:72:d7:c4:bc:45:af:
ba:67:b7:5f:06:a7:b6:8c:5c:f5:11:b4:de:25:ce:
1d:77:64:55:db:af:f0:d4:c4:d0:b0:ba:b7:07:9a:
c1:cf:11:54:20:c0:3a:21:9e:20:2f:0a:20:a9:dd:
ee:d7:0a:1b:5c:e6:08:ff:ae:20:af:41:5e:87:b3:
5f:95:cd:03:56:2f:05:90:d0:a3:30:7d:33:54:b7:
8b:23:d5:bd:c6:1d:9d:9a:83:a1:3f:b1:ae:66:e6:
1f:8f:26:85:17:60:d3:6e:2d:f2:ed:3f:52:30:7a:
38:a2:44:39:59:66:3f:8b:5d:26:bb:9e:c1:20:13:
f1:2e:7c:01:46:e9:ed:6c:53:3c:ed:1e:16:f5:61:
04:42:fc:b1:e4:9d:63:10:9e:87:a5:8a:a7:cb:35:
b7:df:ba:de:5e:a7:cd:c4:fa:3f:41:fa:9d:44:37:
3d:e8:5c:70:d0:b2:ec:2a:50:84:5c:34:3a:34:f1:
f1:5e:86:22:5f:d1:53:c5:51:9c:21:29:aa:4f:5f:
6e:2f:01:5f:91:9d:89:fb:c2:e2:12:5e:19:08:2c:
02:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:88:B6:AB:AD:B9:92:CB:CD:08:5C:11:0D:BC:4C:F4:44:D5:13:2D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eea3d420-1a2b-4459-ab7f-1d261611837d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff4:2000::/40
Signature Algorithm: sha256WithRSAEncryption
86:13:a6:37:8e:65:d0:1a:91:40:1f:7c:0a:57:33:fd:f4:be:
65:67:fa:b0:0c:1c:75:62:01:21:51:c4:55:5d:39:1c:71:d9:
8c:06:c5:e7:57:f0:50:06:b4:84:45:7b:4f:54:ec:ae:cc:50:
02:58:77:09:03:01:11:57:4b:67:f5:af:1e:25:ca:23:35:48:
11:5e:1e:5f:ff:76:c0:f3:fc:44:c6:6a:ef:9c:08:78:0f:18:
b3:a0:81:bd:e3:76:84:c7:f3:fa:ce:66:d8:dd:2d:af:b9:95:
78:10:87:28:cf:65:fe:04:8c:b6:32:d2:b8:50:87:56:11:98:
cd:66:dc:fb:ba:54:33:b9:18:f5:30:e8:fe:45:1d:a4:ce:4d:
fd:a8:9d:6d:fc:8d:2e:12:b6:c0:4a:a4:13:e1:bb:30:37:d4:
5d:6f:ea:b5:ac:11:4a:8c:d9:c0:64:63:f8:8f:b4:4f:5d:c7:
94:be:7e:95:54:46:8c:d1:45:a5:62:48:69:0c:89:c6:8d:23:
75:03:ba:bf:56:0f:0c:51:fa:31:2c:07:51:da:1f:6b:ae:16:
22:47:0e:8f:81:20:1d:55:89:10:fe:a6:3b:64:f1:25:e6:aa:
e6:9a:9f:3a:0e:f8:54:26:9a:f6:5c:16:42:26:44:51:7f:8f:
d9:d3:c6:f6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 07:49:24 2025 by rpki-client