Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e76626-c10b-4ce2-9398-d624166f3171.roa
File: 18e76626-c10b-4ce2-9398-d624166f3171.roa (raw, json)
Hash identifier: +LG0NLVOw2d+D3WBWhgqwkgJ7NWD79wFRHmo9WgaWHw=
Subject key identifier: EA:73:D1:10:15:D3:C4:26:FC:A5:C2:A3:82:56:62:9C:8D:13:11:E9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 55BC6E7A7CA874785DAF87D93388BA6FDBF81710
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e76626-c10b-4ce2-9398-d624166f3171.roa
Signing time: Tue 18 Nov 2025 00:00:12 +0000
ROA not before: Tue 18 Nov 2025 00:00:12 +0000
ROA not after: Mon 16 Feb 2026 23:59:59 +0000
asID: 16509
IP address blocks: 74.232.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:bc:6e:7a:7c:a8:74:78:5d:af:87:d9:33:88:ba:6f:db:f8:17:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 18 00:00:12 2025 GMT
Not After : Feb 16 23:59:59 2026 GMT
Subject: serialNumber=ce820bbe2e857c3f72dd88d88cffeeecd662f503a8f4b942afbe87c34d134597, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:df:7a:6a:53:79:2a:c7:b7:ee:fd:53:59:
0c:93:a4:8e:84:53:c2:97:e1:ad:55:83:bb:9d:47:
50:ce:bc:73:46:0b:0a:10:fa:b2:b2:90:cf:2e:94:
4b:95:e3:bd:9d:a3:85:09:61:aa:4c:a2:d2:c7:23:
7b:03:5d:f4:03:ae:33:56:96:2b:08:27:ea:28:14:
11:9b:6e:92:29:93:de:71:3d:05:f0:4e:1f:35:8b:
09:48:eb:c5:34:33:ac:75:73:1b:46:ef:60:db:1a:
a6:76:5f:ed:4a:3a:08:27:67:eb:95:9a:b5:66:e1:
3d:73:11:f1:0d:79:e0:ac:15:6f:06:6f:fb:d2:52:
c7:5e:22:d6:83:bf:42:d8:3a:d5:e0:3f:a9:e9:dd:
ec:88:c8:a5:c3:0a:91:c3:c0:f5:99:9c:45:b9:f6:
7b:e3:53:22:a6:d5:46:5c:a7:64:ff:4d:b9:97:98:
ee:40:59:93:73:b8:14:fc:7b:68:00:24:b5:96:9d:
85:7d:f7:f8:dc:68:a6:b9:9b:43:85:a0:e4:d4:fa:
24:38:6e:e3:7d:2a:b2:f2:e4:f1:9d:b2:e5:80:d9:
7c:0c:07:c5:0a:36:92:2f:41:45:32:4d:a1:12:51:
ed:2d:91:22:3e:6a:38:b8:5c:37:51:00:ae:13:7c:
fc:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:73:D1:10:15:D3:C4:26:FC:A5:C2:A3:82:56:62:9C:8D:13:11:E9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e76626-c10b-4ce2-9398-d624166f3171.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.232.0.0/16
Signature Algorithm: sha256WithRSAEncryption
54:ac:bc:b0:72:0e:5b:38:c6:a8:5a:c5:05:76:74:5e:ca:19:
49:fa:7d:c6:e2:8d:10:93:2e:c9:35:0b:02:a8:31:3d:42:79:
27:a9:68:e8:e7:59:8f:12:17:84:f8:98:41:39:96:c0:11:ea:
a6:80:d7:7f:87:4f:fe:48:ce:94:f3:55:d0:35:92:f7:d7:44:
32:0f:ab:59:28:28:88:f6:e6:74:7b:01:d1:5f:5a:f5:18:d7:
54:de:f8:a4:71:8a:4b:8f:b9:a4:0c:fd:80:fd:98:e3:04:c4:
67:e3:5c:4e:81:98:35:51:f5:bb:ec:e6:cc:90:0f:98:4b:ed:
26:4b:34:35:38:a4:ad:0e:96:bf:87:ed:e2:95:25:db:a0:ed:
45:c6:60:89:07:64:ad:08:81:bd:45:4a:d3:5a:e5:a8:86:8f:
52:37:b0:85:c0:11:7e:b2:c6:72:36:e7:22:66:3f:c1:b0:b2:
b6:30:43:83:53:f2:a3:f2:69:a8:be:98:f2:fb:91:f8:36:29:
b9:8f:b7:1c:ad:6f:04:db:c4:22:d4:45:6c:f7:0a:b9:2d:15:
ad:ae:de:2d:7e:3a:ef:dc:22:ff:ca:00:37:a9:fe:6b:6c:d2:
25:04:4f:ca:d8:ba:9e:c0:a3:6c:eb:ad:25:75:f6:8c:40:25:
de:c5:ca:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:52:14 2025 by rpki-client