Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa
File: fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa (raw, json)
Hash identifier: Ju+/SHVNKPw5GitVkIz0LFrLpJa7jvDuPN6q5bHsUHk=
Subject key identifier: 08:0B:08:B4:4F:C9:96:5C:67:D6:3E:8B:73:A6:D0:90:05:B2:12:B0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 401C38F0C6B689D6D1790EEA33A1B6CC7B7697BC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa
Signing time: Wed 22 Oct 2025 00:31:55 +0000
ROA not before: Wed 22 Oct 2025 00:31:55 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 37.7.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:1c:38:f0:c6:b6:89:d6:d1:79:0e:ea:33:a1:b6:cc:7b:76:97:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:31:55 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=78612083eb81e157588213c5a006b967bc609ddfbd737f78e5d07b9940e5aae1, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1e:76:f4:af:df:68:d4:30:d5:0e:33:be:79:
84:91:e0:c0:04:3a:d6:2b:51:19:90:7b:22:29:4f:
a0:7d:7a:4e:72:54:01:34:dd:93:cf:c6:a5:81:1e:
35:b4:ff:10:5d:46:3c:b3:68:94:12:30:3c:14:5c:
51:25:45:d2:cd:a4:01:c9:0c:8f:37:95:82:03:32:
83:ad:01:24:26:ae:11:d0:81:01:0e:50:7a:99:31:
1d:d0:4e:ea:66:17:11:93:21:b3:59:35:f2:14:72:
38:90:d3:21:f9:12:5b:5f:83:4b:0a:93:ee:6c:24:
d4:15:68:55:1e:3e:a5:09:c5:00:eb:a7:a1:da:bf:
9b:70:b2:8b:3b:7d:c1:40:de:6d:c0:a2:bd:60:73:
54:08:13:b5:53:37:16:2f:66:ae:e9:c7:9b:a5:76:
c4:b7:99:94:ad:03:e1:e9:ea:fb:88:bf:d7:79:26:
34:96:4a:ce:30:e7:c1:aa:0b:16:1d:92:c3:0e:50:
e8:8e:61:4d:9b:a8:63:b3:4a:91:95:ee:b8:44:ee:
b4:20:01:c1:2a:5d:ea:fc:72:e9:b0:c3:ca:9e:b1:
d5:a9:54:b8:52:7a:b5:0a:1b:50:aa:0b:b5:88:51:
c5:d6:e7:e6:27:fa:f5:db:31:de:88:df:88:44:84:
84:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0B:08:B4:4F:C9:96:5C:67:D6:3E:8B:73:A6:D0:90:05:B2:12:B0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.7.0.0/16
Signature Algorithm: sha256WithRSAEncryption
37:20:25:7f:2e:9b:9e:72:cb:6e:24:cf:cb:63:b2:5f:1f:7c:
95:26:f0:71:fe:3b:39:a4:7b:1a:b9:4d:2a:06:5a:45:e9:f1:
d5:af:d6:a7:e8:28:d1:1a:84:e6:8c:e6:a6:1f:ec:28:bc:b1:
b9:47:a3:f9:04:de:05:71:ab:ea:ab:fa:82:e8:e3:ac:cd:42:
e0:c2:b5:11:90:3d:23:e1:e0:57:ee:86:42:0a:e2:f7:b2:39:
4f:3c:ba:3e:25:31:1d:30:81:9c:c5:2a:14:24:ad:f6:15:fa:
92:c3:4b:db:86:d7:c4:df:cf:27:21:79:1d:8e:8b:42:86:25:
fb:9f:41:43:db:93:f2:3f:a0:e6:1d:73:38:b0:1b:b5:bb:7e:
06:cd:47:60:e6:1a:a3:03:3e:e8:8c:98:3c:65:00:1a:c9:b8:
f7:e0:9d:ba:69:18:96:f7:85:5a:92:13:93:69:b0:b5:03:51:
82:ab:b5:a9:3e:ae:b5:1a:46:a9:39:0e:42:f0:69:70:89:ea:
33:d2:1c:80:4c:9c:fe:19:f8:b5:19:a7:54:d2:15:ab:9d:d4:
14:ab:3a:80:7e:31:28:57:97:7b:9f:2c:e3:5b:b5:63:f3:d1:
6d:18:70:8e:92:a7:79:d5:e1:87:2b:fe:c6:05:b4:56:40:7d:
bf:67:b6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 17:51:39 2025 by rpki-client