Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45396181-d099-460b-8475-8ec08021bd09.roa
File: 45396181-d099-460b-8475-8ec08021bd09.roa (raw, json)
Hash identifier: IikSP6XdcyuAMoMmAb+z1f41nmJbL8pHbUNNBox3JQs=
Subject key identifier: 12:5A:55:1A:08:73:E8:2D:0E:B8:9C:EB:AE:AB:C1:03:C9:73:EF:5E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 302C786DC4CF5A298FF2CF1D471A7486044D0B90
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45396181-d099-460b-8475-8ec08021bd09.roa
Signing time: Wed 12 Nov 2025 02:31:55 +0000
ROA not before: Wed 12 Nov 2025 02:31:55 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 207.234.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:2c:78:6d:c4:cf:5a:29:8f:f2:cf:1d:47:1a:74:86:04:4d:0b:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 02:31:55 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=ef38496aa5a99bc7bba1f80755f32cbb2a443716c42248fb9437461cdd371ecd, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:75:d2:d8:62:75:20:12:33:15:2f:ae:df:2f:
19:3d:80:8f:3b:48:ec:c5:9f:4d:a2:94:ea:77:47:
1c:86:13:b5:73:90:b3:84:d4:c6:0a:5c:7a:77:15:
74:a9:4d:fd:a7:11:5e:b3:07:17:7c:de:4b:1b:55:
db:c4:23:a1:b2:32:ca:6e:f6:a0:3c:c6:3b:b4:71:
d9:6c:6e:a7:88:9d:26:d2:b1:b1:20:f9:3a:ee:81:
16:cd:f9:34:be:f2:11:08:cb:b0:66:b2:76:86:9f:
a7:b2:76:8c:6a:52:22:22:0f:47:a0:73:b0:63:81:
db:c8:88:ec:25:80:30:d9:9b:11:5d:7b:fb:42:d5:
8e:32:2c:d6:31:99:80:7f:33:b3:a9:ad:95:35:bb:
2a:7e:c3:f8:62:4f:cd:ac:66:76:fd:09:66:47:14:
b0:3b:37:ba:f8:a7:a2:60:f2:1c:ea:c3:dc:d8:4e:
fa:bd:93:76:15:ea:6d:35:31:84:ce:54:48:49:58:
f1:32:af:65:9a:17:0c:4b:fc:63:80:ba:da:ad:8d:
2d:61:39:4a:1c:52:4e:9c:3f:ea:02:ea:59:5a:82:
5f:da:d2:2b:4b:eb:b1:a1:80:79:73:5e:7f:d9:fd:
5f:85:bc:9d:c7:fd:68:1a:f3:e9:db:ce:fb:84:2f:
c3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5A:55:1A:08:73:E8:2D:0E:B8:9C:EB:AE:AB:C1:03:C9:73:EF:5E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45396181-d099-460b-8475-8ec08021bd09.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.234.128.0/17
Signature Algorithm: sha256WithRSAEncryption
bb:e0:da:90:96:39:16:69:ab:46:58:d6:42:c6:2f:10:bc:58:
a2:2a:2c:76:c9:2e:81:d3:7c:c2:a8:27:d6:8f:bc:11:e3:e1:
ec:7b:d0:1c:c5:5a:a0:b6:10:52:dc:50:10:f3:b1:3b:82:23:
6d:1c:9a:0f:07:05:88:0a:7d:62:42:57:5f:58:29:4d:7c:c1:
18:d9:67:a4:88:d2:34:19:28:3a:d5:35:1a:84:1a:4c:cc:74:
a8:c3:01:57:cf:84:a0:9b:b9:f1:b9:30:be:40:1a:22:3d:f8:
71:21:91:9f:ab:4a:f9:04:db:38:b5:a0:2a:01:81:0f:e3:bb:
25:eb:3d:51:60:da:6f:f8:f6:ad:9f:b0:7e:0a:6a:6b:85:29:
3c:57:57:43:3b:76:f5:20:a5:04:fa:0e:0d:1d:34:56:f8:99:
ee:91:be:68:48:dc:8a:62:11:cf:46:a7:6f:8e:03:86:d0:24:
40:18:41:60:d8:7d:aa:8a:58:12:af:cb:19:5d:41:3a:d2:f8:
dd:8c:9f:44:df:fc:3f:b3:80:4a:62:4e:1a:d6:2d:d6:97:05:
9b:0e:f2:71:db:86:4b:ef:d2:ed:75:31:85:8e:9b:4b:ff:4a:
be:72:0b:0f:17:de:c5:bf:12:7c:2a:29:d7:97:7a:ca:b6:a9:
84:af:cf:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 07:02:52 2025 by rpki-client