Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6194b27-8378-4959-8e87-076083a0e654.roa
File: f6194b27-8378-4959-8e87-076083a0e654.roa (raw, json)
Hash identifier: /0EAExngoxEgwT8fT4vaMY+Wx29bq42m6bOQzeNTLwk=
Subject key identifier: 73:9F:DE:D9:63:7C:76:04:CA:14:6B:5F:29:57:A9:21:8B:C7:F7:C8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 44CCFC0C54BBFB0CBAE7ADC41C83D32FEF328F35
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6194b27-8378-4959-8e87-076083a0e654.roa
Signing time: Sun 02 Nov 2025 00:30:06 +0000
ROA not before: Sun 02 Nov 2025 00:30:06 +0000
ROA not after: Sun 07 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 107.179.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:cc:fc:0c:54:bb:fb:0c:ba:e7:ad:c4:1c:83:d3:2f:ef:32:8f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 2 00:30:06 2025 GMT
Not After : Dec 7 23:59:59 2025 GMT
Subject: serialNumber=0f5453338d963c61f434ebc12f2bfc6981200e58005dc6d5ec68fe593467cff7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a5:0a:6f:d6:f4:bb:33:11:08:92:04:8f:e1:
59:6c:7f:1d:9d:cc:4b:a4:1b:d4:36:88:5b:81:22:
12:7d:fb:18:52:4d:5f:8b:b5:7c:1a:86:b5:33:c4:
53:58:f2:9b:d2:21:64:ad:43:04:28:20:f8:66:a9:
7f:72:95:34:c1:96:69:7a:8e:16:06:0b:40:e9:6a:
78:23:cb:ba:64:26:c0:36:80:42:cd:db:c2:1d:f4:
ce:01:30:01:fa:7a:2d:54:92:e8:7b:83:68:fd:2f:
6d:7e:82:f6:6f:76:9d:35:c1:85:50:13:f4:f6:85:
5d:3d:f7:f4:ae:95:18:9c:c1:d6:f2:7b:44:3b:b6:
7c:c8:9b:5a:0b:b5:2a:33:db:40:16:0e:19:ed:e9:
bd:e5:67:71:b0:e7:79:d6:7c:df:85:61:8a:6f:46:
6a:e5:0d:94:c7:21:97:40:93:85:c5:6a:9f:2c:a4:
fd:d3:15:e0:21:ed:f4:49:5d:79:93:a2:34:31:79:
16:42:a8:dc:85:08:cc:15:49:b4:00:26:00:ae:0d:
a4:c4:08:ef:e7:64:18:96:51:fd:08:f9:5f:08:32:
38:7a:d8:9d:c1:7a:e2:08:0c:cd:7b:74:db:46:af:
30:a4:22:c7:bd:7d:0b:dc:77:04:bd:7c:12:e5:98:
4a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:9F:DE:D9:63:7C:76:04:CA:14:6B:5F:29:57:A9:21:8B:C7:F7:C8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6194b27-8378-4959-8e87-076083a0e654.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.179.0.0/17
Signature Algorithm: sha256WithRSAEncryption
3d:03:c6:51:29:3e:87:09:0b:b4:81:36:a8:3c:93:40:31:4c:
a9:f9:46:82:d4:59:12:68:b9:58:1f:42:09:89:6d:9c:17:46:
a6:30:1e:b3:c9:0f:3e:07:b3:ee:84:3c:e0:54:b1:a9:21:ed:
b2:46:2b:3f:34:e4:4d:a5:59:38:bb:36:45:72:be:84:af:86:
ef:a7:07:74:00:95:e9:24:13:12:2c:7f:0c:97:55:7e:de:5f:
41:9a:e2:e8:30:4e:51:09:eb:0d:7e:ba:e5:d1:04:10:3e:8a:
db:f3:c2:f2:c3:29:0e:7a:d5:90:6d:c8:98:c8:a8:5e:34:1b:
d3:e8:7d:d8:e6:08:c9:08:f8:0b:60:26:6c:83:66:27:4f:c5:
a9:55:f4:87:3f:dd:c5:ab:ba:99:2c:3a:61:ad:ec:de:57:34:
22:d3:51:5c:9e:f0:8c:98:7a:36:59:59:d2:20:e4:ce:4b:55:
fe:44:fd:a0:b1:3b:30:a1:64:d6:d8:49:97:ea:f0:ac:c7:c2:
49:d6:08:96:81:1e:e1:f3:ef:16:66:af:8e:bd:e8:7a:64:5b:
82:92:30:82:4d:a8:ce:34:e2:f9:e2:2f:94:26:de:34:53:45:
3e:da:5d:aa:32:a2:e9:bb:3d:46:e0:4d:79:80:3a:60:d2:f1:
f2:11:ce:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:00:49 2025 by rpki-client