Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02f64397-44ee-4051-91ed-e40644e90d92.roa
File: 02f64397-44ee-4051-91ed-e40644e90d92.roa (raw, json)
Hash identifier: YV3SwvL4rbaXwkOJ/wHIivwSXQ8fmO3fyhilBXQA2f0=
Subject key identifier: 1E:0D:5C:7B:1A:B5:C8:B7:65:92:D1:38:EF:51:6F:EF:D2:7F:DB:83
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 59D4813494B576B2DBE4264D867BFB45B898340E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02f64397-44ee-4051-91ed-e40644e90d92.roa
Signing time: Wed 12 Nov 2025 02:12:03 +0000
ROA not before: Wed 12 Nov 2025 02:12:03 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 161.178.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:d4:81:34:94:b5:76:b2:db:e4:26:4d:86:7b:fb:45:b8:98:34:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 02:12:03 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=569d8e48a35fb88698973eee0433d4b5e4252e83b3649c78a8e32142c0133c86, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ed:63:fc:72:d8:33:25:79:9f:d0:10:28:5f:
d2:3d:42:48:35:9b:84:82:b1:e0:15:f5:7e:4a:8b:
0c:41:1d:2f:9d:c5:51:16:ee:46:41:f0:d9:b5:fa:
46:42:10:cb:be:c6:9b:66:29:87:12:87:72:7a:35:
a0:d4:2c:8f:22:ee:32:42:86:43:12:e0:20:db:15:
b0:3a:92:ec:89:86:50:2f:19:3d:3f:6a:1e:42:73:
fb:f7:61:57:f6:29:9c:23:07:bb:ca:08:98:14:cb:
58:a6:59:d4:ae:4a:bb:ff:1a:03:2f:71:ec:43:ae:
17:a8:e4:fc:72:fe:0d:c0:d4:43:88:24:01:ea:0f:
9c:73:87:cd:47:a0:03:53:c3:5d:eb:ef:45:ac:b4:
4a:e5:74:01:38:14:91:d1:06:6b:48:6d:d0:83:c1:
76:f7:6c:24:4a:62:ca:d8:dc:c8:83:35:e9:66:10:
82:ba:d6:c8:c5:49:69:34:d0:15:ec:06:36:c5:36:
52:2b:4a:22:e1:60:e2:a2:2e:7b:95:62:04:25:6e:
87:9b:83:1c:d4:17:63:39:51:7e:d1:5d:4c:54:ee:
c5:32:33:dd:29:58:81:f5:59:c9:6b:95:b5:27:f6:
04:aa:90:ae:51:9b:cf:dc:84:8e:84:de:8c:47:a8:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:0D:5C:7B:1A:B5:C8:B7:65:92:D1:38:EF:51:6F:EF:D2:7F:DB:83
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02f64397-44ee-4051-91ed-e40644e90d92.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.178.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d4:5a:6c:92:fd:d7:a8:b7:a2:5e:d3:46:a2:3b:e1:c4:eb:a3:
3d:cc:74:65:bc:2d:65:cd:ec:9d:6c:be:7b:91:58:a6:cb:a1:
f7:0b:a1:9d:a2:15:bf:ae:13:19:52:94:55:4f:fa:3e:05:d8:
13:1f:85:d5:2f:a0:72:4f:d3:2f:f8:c1:dc:15:6f:68:35:f5:
16:3d:46:8d:ff:7d:3b:bf:14:11:7f:80:7a:20:10:f4:b8:66:
33:18:e8:a5:e9:6b:0e:14:ae:86:38:5f:99:03:a1:9a:6d:d2:
52:fd:16:ef:80:a1:fb:dc:0e:35:34:95:98:6c:6b:08:b0:6b:
eb:b7:16:ff:a5:55:77:4d:4d:50:7b:61:72:76:08:c1:fc:51:
11:d7:c6:d7:ce:f1:ae:5c:36:c5:d9:02:48:fa:ce:3d:6a:ee:
a0:2e:da:05:32:05:a4:b5:0f:1c:e9:0f:86:cc:fb:f3:06:8a:
b8:b4:25:52:e5:d9:7b:dc:6a:25:26:18:e5:10:d5:41:42:24:
19:4e:9e:b2:df:2a:df:f8:15:94:3f:9b:88:df:40:9b:ed:28:
eb:df:83:42:7b:d6:f2:b2:ef:eb:2c:ce:11:dd:ea:ee:59:46:
4a:7b:c6:00:98:6b:d2:ba:7b:d2:7a:c3:3f:0d:ec:c7:a6:0c:
b6:fe:ce:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:51:00 2025 by rpki-client