Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa
File: 59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa (raw, json)
Hash identifier: 9Jh1zevnPu4zpUyWyGpVC81LU2gxrNctCm65FIQU6S4=
Subject key identifier: EF:0D:60:83:19:49:5A:AC:46:36:9B:1D:77:75:EA:E3:71:F7:A1:45
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3E110245C001489B4EAF43505F381CA48AAAED39
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa
Signing time: Sat 15 Nov 2025 00:40:09 +0000
ROA not before: Sat 15 Nov 2025 00:40:09 +0000
ROA not after: Sat 20 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 103.13.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:11:02:45:c0:01:48:9b:4e:af:43:50:5f:38:1c:a4:8a:aa:ed:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 15 00:40:09 2025 GMT
Not After : Dec 20 23:59:59 2025 GMT
Subject: serialNumber=343936afed9c2b9e3f64356742f4d177559accb39edbff8dfa800a332f3d7277, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e7:c8:db:1d:90:6d:c9:cb:26:7e:92:5c:fd:
05:a9:da:83:d5:73:ed:77:c8:c4:98:5a:26:61:0e:
09:1d:c2:aa:82:53:fc:cf:1e:e4:9b:8c:82:01:cd:
92:89:cc:46:12:a8:d5:dc:49:c5:ea:02:eb:4b:9e:
df:27:13:9d:56:b8:56:f1:6c:82:f1:d5:bc:90:c0:
bb:3e:a1:c3:3a:d5:64:14:55:cf:da:b3:b0:ed:5d:
da:41:4c:88:9c:e7:61:9c:d4:14:53:23:eb:ea:ff:
00:a2:17:4d:e8:73:ce:18:5d:9c:1e:de:b0:27:2f:
56:32:31:8c:3e:45:85:59:e4:df:85:5b:f4:8e:b9:
2c:12:3a:c8:57:06:d3:d4:2f:e9:07:09:4c:98:bc:
05:93:b3:c4:17:2f:8c:e3:3d:25:61:2a:df:d6:0b:
34:aa:06:fe:93:7f:73:99:99:a6:36:3d:8e:af:3a:
58:73:9e:d5:9e:5c:26:81:9d:12:cf:c4:9e:8a:a0:
f4:76:d1:8b:e8:7f:be:9b:43:49:80:bd:e2:2c:c1:
a7:71:9a:99:af:81:f8:2d:13:2c:c6:ef:af:71:ca:
62:13:75:80:d8:a5:ad:ba:a6:e9:d7:8f:f5:b9:9d:
2a:d7:38:44:7c:ba:58:95:59:60:34:72:1b:00:65:
a1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0D:60:83:19:49:5A:AC:46:36:9B:1D:77:75:EA:E3:71:F7:A1:45
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.13.190.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:4b:40:d0:6e:09:d2:e1:0d:f7:41:0e:cb:23:73:0e:6b:b9:
26:bd:be:89:55:20:6b:4f:98:80:04:db:b0:de:08:74:5e:58:
c5:03:ca:29:40:52:c3:2b:f0:4a:1c:aa:7e:20:3f:fb:0a:20:
6b:16:73:cf:15:94:e4:b1:b1:ed:17:ae:47:ed:aa:68:b8:40:
5d:a4:3a:98:90:69:c0:04:4c:b2:c5:70:bd:b5:2b:c2:5c:6a:
21:e8:8c:64:33:79:de:e1:53:dd:03:3d:92:51:6c:cf:a2:b2:
54:d5:d2:47:dc:28:18:f1:29:ae:bf:d5:bb:52:88:90:1e:a2:
1e:b6:c0:f3:20:63:aa:9e:99:24:9e:57:fc:83:4d:45:03:e3:
34:d2:13:5c:cb:5d:2e:13:60:07:eb:b1:56:5c:81:e6:c0:eb:
15:c3:08:90:2a:1d:ad:0e:82:ba:62:22:99:4e:f8:ac:59:fd:
9c:36:d8:0c:ba:00:4b:59:12:1b:09:e9:f7:1e:39:63:1b:cb:
d1:a7:33:ad:aa:8c:ea:7e:08:16:80:12:a5:a9:08:8f:45:b8:
dc:7a:25:05:f8:d9:ee:d4:78:28:dd:7b:77:5d:76:1b:ea:7c:
18:6e:60:34:92:4b:1d:0e:67:e8:01:0f:69:00:5e:12:bd:e1:
c1:26:17:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:34 2025 by rpki-client