Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa
File: aae2d162-8718-4e30-8f4a-57332cb846c6.roa (raw, json)
Hash identifier: bRG3L7BuxN1Xwz1Gm9XSaTUJjwjynrfQ86TxrYvGsns=
Subject key identifier: 97:E8:3C:9C:2A:3A:B8:0F:F3:03:CC:D9:9D:13:25:9F:73:AF:BD:94
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 702371E14DF5C446FD8626FE9ECCFB759259D826
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa
Signing time: Sat 15 Nov 2025 00:50:10 +0000
ROA not before: Sat 15 Nov 2025 00:50:10 +0000
ROA not after: Sat 20 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 45.57.160.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:23:71:e1:4d:f5:c4:46:fd:86:26:fe:9e:cc:fb:75:92:59:d8:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 15 00:50:10 2025 GMT
Not After : Dec 20 23:59:59 2025 GMT
Subject: serialNumber=db0c15e3ae041b776e893881c85c99d1c25bb59db34010b159eec673f5a12e61, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:88:46:ac:67:ca:20:3b:9d:f7:7f:72:1f:aa:
0c:41:32:74:3f:50:0b:b8:d0:b4:97:8f:2b:f8:dd:
5b:ad:cf:39:aa:b1:51:5a:b8:b0:0b:d1:c4:32:c4:
8f:21:49:1a:71:e8:01:d1:b1:50:ce:96:81:31:39:
a7:dc:62:16:5b:73:76:c6:8e:5c:13:9e:fc:f8:0e:
f1:b2:c1:b5:d7:9e:80:48:38:42:7f:01:7b:f5:46:
96:7c:12:f2:16:21:30:39:67:a3:65:6a:6a:e0:1c:
1f:b6:79:29:a6:48:17:b5:00:9d:03:fa:b6:ba:bb:
ac:73:4f:8e:cf:30:d6:a9:ed:4e:73:5e:89:49:5b:
c9:48:86:c4:33:72:7f:98:7d:f1:7c:78:da:eb:06:
7a:8e:5f:ba:1c:cd:c8:06:b2:7d:b8:90:f2:b0:0e:
4f:f1:df:43:80:08:2d:cb:f6:46:50:c2:24:e8:c1:
92:f2:a0:f5:ce:1d:88:fa:f4:2c:9e:dc:51:19:7d:
29:60:5b:c1:53:dd:4c:f2:74:56:3e:fb:11:3e:75:
9b:1a:18:a5:e6:9c:62:6a:a5:c2:f4:eb:65:cf:27:
0d:81:49:ce:66:7f:50:28:1e:5e:d3:61:27:1d:98:
a7:8e:6e:62:ea:f7:44:0e:3d:59:e3:56:0b:8e:f5:
9d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E8:3C:9C:2A:3A:B8:0F:F3:03:CC:D9:9D:13:25:9F:73:AF:BD:94
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.57.160.0/19
Signature Algorithm: sha256WithRSAEncryption
48:25:5a:c7:03:aa:5f:48:08:4c:39:5a:c1:55:21:44:72:11:
fd:b4:ed:97:fa:a5:3d:2e:2f:3b:c2:11:93:95:cc:c4:25:e4:
79:1e:be:10:bd:e7:37:ba:b0:e7:8e:68:bd:40:d3:75:7f:1e:
c1:8e:e3:5f:0c:5b:4c:a9:36:27:05:91:11:5e:d7:2c:8f:be:
93:e2:3f:b4:58:49:ba:f7:db:e8:dc:0b:4a:cf:fe:a5:27:e0:
14:37:d6:44:ca:b1:a9:a6:b3:a9:cf:03:26:ac:12:6b:c2:02:
cf:e0:03:77:4b:b1:fa:8f:ae:69:b7:96:cd:5c:65:47:d1:4e:
d5:ff:5f:53:b5:e6:2d:83:3a:1c:d8:87:7b:bb:07:73:7b:1e:
e1:16:ae:b2:01:f3:23:41:13:32:03:cd:f2:18:72:9d:69:d9:
c2:65:39:b0:2e:59:18:a4:38:4a:9f:d0:3e:82:74:58:72:70:
d6:77:8a:55:de:c5:3d:2c:b4:29:ca:32:b4:bb:76:7c:b2:4f:
16:78:f5:ec:a5:71:1d:aa:f7:ec:a1:04:84:74:17:3f:19:7c:
42:5f:57:5a:83:09:c9:3e:c9:e9:cd:5a:ea:a8:01:eb:7d:97:
98:05:9e:62:88:e7:c2:c1:1c:2e:46:4d:67:9b:bd:74:65:dc:
d0:fb:06:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:53:19 2025 by rpki-client