Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa
File: 9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa (raw, json)
Hash identifier: hz4yzfH3dohYwlhQ540yxRZXb32/pC1SlD/qykx4McA=
Subject key identifier: 47:7A:B2:6E:83:0F:01:E5:BB:1F:80:7C:ED:FA:72:E8:18:63:EF:F7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 75EF6E561EEC949D67839C7DD9EA11E1A4237239
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa
Signing time: Sat 15 Nov 2025 00:30:39 +0000
ROA not before: Sat 15 Nov 2025 00:30:39 +0000
ROA not after: Sat 20 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 202.5.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ef:6e:56:1e:ec:94:9d:67:83:9c:7d:d9:ea:11:e1:a4:23:72:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 15 00:30:39 2025 GMT
Not After : Dec 20 23:59:59 2025 GMT
Subject: serialNumber=feb3152a7608d45100b7aa5aea1132f845b2bbb488bdd2447e5700528e8bff50, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:43:ad:67:cb:72:6a:73:e8:19:7c:cf:1b:9c:
bd:97:cb:1b:b5:f9:d2:b6:79:bf:98:87:73:73:66:
42:e7:6e:78:02:60:b9:d5:0d:d4:a5:45:d1:24:ea:
e0:df:c4:e6:43:eb:f9:10:df:ad:ec:fd:7b:64:20:
88:76:1a:77:4f:11:a8:95:36:a9:ac:38:03:89:b7:
ab:d2:86:45:b3:3f:57:65:a7:b8:2b:7c:cc:3a:1f:
6b:f7:e8:64:f3:8f:02:c3:a8:d4:23:87:6e:a8:63:
00:b2:72:7e:cd:8e:24:2f:0c:e9:0c:b7:b4:1f:81:
bb:51:36:db:be:f7:11:7f:33:69:0d:df:41:cf:d2:
ab:37:0e:06:51:2c:e7:3f:f0:a6:06:9a:e5:f2:be:
9b:78:55:de:6e:b3:ac:ab:fd:1c:f8:b9:84:2e:59:
29:d9:f5:f0:ae:12:13:29:fb:e5:6a:25:df:34:ad:
7b:1f:53:06:36:41:df:fc:b8:79:93:92:89:b8:d6:
e7:ba:e0:2f:0a:3a:d3:86:70:a2:1a:47:39:d4:55:
64:42:6b:1c:5e:a9:b1:2f:8b:a2:a5:3a:0b:8a:41:
b1:c7:5f:04:53:2c:96:e3:97:19:11:3e:af:3d:16:
7d:8d:09:32:6f:49:50:01:f1:63:8b:98:27:ba:e7:
fa:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7A:B2:6E:83:0F:01:E5:BB:1F:80:7C:ED:FA:72:E8:18:63:EF:F7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.5.180.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:10:c7:a9:86:75:73:1c:e3:2a:4e:bb:4d:44:ce:31:20:8b:
65:5e:07:b5:00:3d:e2:10:82:8b:de:78:66:a3:27:e0:7a:b8:
54:a9:57:bb:d4:2c:d6:b3:52:b1:8a:79:b8:8a:b0:f2:af:d7:
b6:d5:16:64:81:24:d6:f5:b8:b5:58:8b:3c:91:d0:8a:2a:a4:
32:39:92:08:95:7b:8d:52:d2:96:e5:6d:4d:69:c8:77:39:5c:
31:99:5f:1b:ee:f1:3b:89:18:81:92:c2:cd:52:62:6e:37:27:
75:f7:44:07:1e:be:c9:bd:ee:a4:2a:6f:ac:09:1d:3f:29:a0:
72:fa:ee:00:35:69:dc:7b:e3:69:66:98:ac:15:d6:4a:c5:44:
99:42:00:ac:96:36:a2:6c:97:8f:a3:1a:84:54:e5:d9:37:db:
14:27:ec:f4:a4:53:2a:2a:59:5a:d6:8e:18:06:db:da:d3:ab:
a3:c5:79:7c:6d:92:2a:c4:14:e8:98:e8:8e:42:ba:90:4e:83:
c5:43:d2:c1:11:aa:94:c1:6c:13:d6:e4:3b:a5:db:e5:be:d2:
83:0c:ed:db:b1:c5:fd:d7:d6:e0:c6:c2:08:6f:8a:1f:b1:f8:
68:95:d2:2b:f5:13:55:68:68:74:fa:0e:29:af:d6:d2:07:af:
91:89:20:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:35 2025 by rpki-client