Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa
File: 0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa (raw, json)
Hash identifier: LkEAag2eeLH8MF3FI5j0C4lvXNpy0H5POTfXocAZ/EY=
Subject key identifier: 13:1A:73:9A:9D:A8:F5:5D:5A:0E:9B:1E:5B:38:EC:75:F0:59:A8:1F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 77DE6D315F84AE0284C6BB7B0064B09557A5EF85
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa
Signing time: Wed 12 Nov 2025 01:40:07 +0000
ROA not before: Wed 12 Nov 2025 01:40:07 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 23.22.0.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:de:6d:31:5f:84:ae:02:84:c6:bb:7b:00:64:b0:95:57:a5:ef:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 01:40:07 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=45084c28f04bf76e2b1c25792954567b25ec26750fb49d86b21d4dcff464bf57, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:96:54:bd:02:1a:2c:f3:23:08:d8:0e:03:52:
fb:ce:7c:20:6d:3d:bc:7f:83:68:5b:d4:b4:65:30:
61:ee:ff:66:10:60:78:74:97:9b:dd:af:75:ae:9d:
47:64:30:9b:23:a7:5f:d7:df:c1:03:16:ed:00:1b:
b8:a8:dc:6e:f0:6a:bd:e3:2a:ed:6c:52:8d:42:ac:
b3:02:58:3f:4f:2a:c0:7a:cb:55:f3:43:26:5e:c1:
6c:a1:1d:47:d0:49:64:da:61:af:3a:d9:c4:44:28:
fc:e6:36:a0:19:29:d4:5d:48:b0:15:71:6c:1b:55:
ea:de:99:fb:fc:f3:f1:ee:b5:98:38:6a:21:30:20:
9a:ba:3f:3e:44:7e:e1:34:97:9e:a4:4d:22:8d:ec:
2f:5c:42:e4:64:cf:c6:c1:82:98:30:0c:30:3e:f4:
0e:c7:74:1a:4d:34:f7:2f:be:49:6d:5b:21:14:07:
6e:05:d6:df:88:8c:31:14:9f:71:3f:e1:97:ed:0e:
28:46:14:a2:5a:fc:8b:5c:01:64:fe:fb:78:be:1a:
6c:97:82:67:11:a0:96:9a:eb:98:89:07:5a:10:bb:
85:11:59:31:61:f4:39:43:a8:db:1e:33:4f:d2:2b:
2d:e9:f8:61:a3:d5:a5:9e:69:a0:67:0e:9a:46:f7:
9f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1A:73:9A:9D:A8:F5:5D:5A:0E:9B:1E:5B:38:EC:75:F0:59:A8:1F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.22.0.0/18
Signature Algorithm: sha256WithRSAEncryption
af:2e:f9:ef:87:fb:cf:34:c0:9a:2f:f2:c3:3b:79:0a:07:6c:
a4:58:c1:13:73:80:92:4a:c8:e5:43:70:8d:3b:8f:c9:34:60:
16:62:77:0e:63:bf:b4:ba:03:f4:1c:07:ba:b1:d8:26:0a:76:
12:e2:7a:2c:ca:ba:44:0f:a7:bf:53:54:47:58:3d:b9:ad:1d:
08:aa:3b:47:23:6e:fa:c0:3c:20:ec:cf:eb:cc:31:ee:3a:78:
7c:2f:97:16:ea:10:76:66:5b:fc:2e:c5:2e:6c:2c:aa:61:8a:
80:a9:7c:43:4b:87:b2:d2:a4:40:e3:82:0c:01:c2:68:c0:1f:
d3:3d:d0:33:15:0f:65:ca:51:92:aa:a9:d3:33:88:44:f8:bb:
5e:54:d9:88:91:f0:ec:d4:df:3d:1b:69:0c:12:e4:b1:d5:e4:
64:ce:3a:5b:f7:fd:64:1e:3b:f1:31:22:b4:35:c7:71:a0:26:
1d:41:d5:77:5f:b6:d9:37:0f:d3:91:97:64:70:b5:8d:ab:02:
bd:5d:b1:82:10:55:9c:77:34:b5:16:00:22:4b:e8:26:d8:a4:
b2:1f:a1:99:63:0a:0a:ba:e3:c2:01:69:8c:06:38:fc:15:b8:
dc:6d:c0:35:3b:3b:cb:70:3e:6b:8f:8b:34:14:00:0c:f4:84:
42:42:ed:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:50:40 2025 by rpki-client