Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa
File: 25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa (raw, json)
Hash identifier: Zi2Lm4ov+6KRNRaH0ZuGvQifgSuFiB8FeBIo14WDFwQ=
Subject key identifier: 6E:9D:CF:56:28:E2:CE:F0:0C:E6:D8:81:F3:85:F4:F8:5B:D0:9D:8A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2EA29F46580F0D3790284B819ECC448D3051B187
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa
Signing time: Sat 08 Nov 2025 01:01:36 +0000
ROA not before: Sat 08 Nov 2025 01:01:36 +0000
ROA not after: Sat 13 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 78.12.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:a2:9f:46:58:0f:0d:37:90:28:4b:81:9e:cc:44:8d:30:51:b1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 8 01:01:36 2025 GMT
Not After : Dec 13 23:59:59 2025 GMT
Subject: serialNumber=5b6ad2538aa25cffd8ea49613087f091e4de069c671f68436f71c80ddb05f765, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bb:40:0e:91:41:02:d7:f1:ba:8a:f9:84:4e:
80:88:76:f6:17:e6:d9:7b:e3:12:08:24:94:cc:03:
76:c6:b4:b9:f7:8e:65:49:e3:d5:71:d2:17:7b:45:
e0:e6:58:55:9f:e7:9a:62:14:cb:c0:a6:a6:c4:90:
be:f8:48:d7:4d:26:0d:a3:1b:c3:f9:2c:71:b6:20:
28:dd:a1:84:46:fa:ef:78:b2:8e:27:65:d6:0a:ff:
96:3f:52:37:f6:69:31:e7:5f:33:ad:ac:52:87:84:
5b:7a:41:75:0e:9f:62:3b:fc:0d:f2:a5:b5:ee:fd:
25:64:37:1b:36:4f:52:3d:55:0d:c6:6f:4f:af:a4:
2c:ad:e6:06:d4:8c:33:b8:6a:17:4c:a0:ed:8e:c7:
3a:ad:a2:df:d7:f4:14:7b:19:1b:81:d3:50:52:e6:
11:79:e9:87:cd:9a:ae:69:6a:9a:21:33:0b:8b:84:
3e:a9:73:cd:28:0e:6f:21:5a:73:24:01:c9:22:59:
33:9f:ca:ac:66:e0:22:f3:2c:90:4a:de:56:a0:8e:
12:f5:c0:84:1e:19:c6:64:e5:ae:51:e5:ab:6a:4b:
ef:ca:ad:d7:50:b0:13:c3:03:7c:52:9d:ba:62:c4:
2e:36:b8:21:96:1e:f1:33:81:46:02:f1:ed:24:48:
e5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9D:CF:56:28:E2:CE:F0:0C:E6:D8:81:F3:85:F4:F8:5B:D0:9D:8A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.12.0.0/15
Signature Algorithm: sha256WithRSAEncryption
d5:09:50:02:2e:01:d7:31:fd:08:4a:70:64:54:6e:cb:79:4b:
c8:ad:42:df:20:28:67:a8:06:94:90:3a:1a:c3:0b:ec:7c:51:
38:4d:5e:96:a5:d8:7f:e3:98:87:04:46:1a:3a:0a:1b:d2:7f:
14:4f:ae:a0:9b:f0:b4:a6:56:3d:69:57:a7:88:f1:82:51:cd:
69:08:73:01:ce:29:36:83:78:29:ae:cc:9d:b7:d7:15:96:7a:
36:e9:5c:41:54:c1:6f:1f:42:3b:3b:b3:63:7c:3e:83:3e:49:
b8:fc:e5:9b:a9:66:b0:a8:bf:51:85:ae:84:f3:6d:71:75:e4:
a6:c8:b5:48:9e:05:62:3e:22:fc:68:59:4d:f1:04:cc:ff:65:
34:77:34:54:4a:78:6d:b1:bf:a5:84:d6:a7:36:41:53:68:f7:
06:1b:7a:cf:0f:16:bd:73:20:e5:86:e2:a5:82:b8:58:88:3b:
76:1b:49:87:40:86:ad:d3:cd:50:3e:63:9a:ad:85:27:33:08:
d9:f3:c7:7f:31:52:cd:9b:27:42:d1:82:bd:9d:c2:61:d3:41:
64:56:49:60:06:fa:4f:1a:24:c4:f4:78:c2:3d:c9:ea:38:a5:
48:f8:b2:7a:b5:f5:f5:b8:16:70:2e:8d:88:76:75:c5:5e:f4:
e8:11:13:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 10:40:19 2025 by rpki-client