Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa
File: be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa (raw, json)
Hash identifier: /NP5u8vI9TPHtR6OVczQggEsuwUduUjUYXTbb/3RIp0=
Subject key identifier: 06:E6:E0:F0:EE:F1:E6:EA:17:FA:B1:9F:2A:8F:0D:92:46:4C:08:51
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 513E04B2D739C7588EB2B369D8C09E78B9753AE4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa
Signing time: Tue 18 Nov 2025 00:00:14 +0000
ROA not before: Tue 18 Nov 2025 00:00:14 +0000
ROA not after: Mon 16 Feb 2026 23:59:59 +0000
asID: 16509
IP address blocks: 142.4.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:3e:04:b2:d7:39:c7:58:8e:b2:b3:69:d8:c0:9e:78:b9:75:3a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 18 00:00:14 2025 GMT
Not After : Feb 16 23:59:59 2026 GMT
Subject: serialNumber=951fca2e8e1e17bee6246821d150a8e08deda5eda94730fb228d6a4ee8924cfd, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f2:84:48:57:06:63:07:ab:99:c8:74:78:10:
fc:89:56:c4:23:f0:c5:75:0b:6f:19:39:68:b5:ea:
d7:49:48:48:18:27:ad:ca:31:2f:85:15:07:15:46:
ca:57:11:e3:a5:61:60:76:74:7d:a5:e3:ae:48:e3:
d7:cc:f3:f6:af:55:82:70:4e:72:e0:db:a8:43:26:
78:88:3c:86:d8:a5:7c:da:ea:3a:3b:32:87:5d:10:
36:2e:01:2f:df:ba:11:00:fd:22:9a:a2:24:e4:24:
b9:3b:14:96:ab:ff:ca:56:59:51:62:6a:de:be:60:
5f:43:be:d7:0c:6a:99:e2:98:70:7e:f6:c2:1f:3f:
32:24:90:4e:8d:4b:0a:02:8d:99:65:8b:47:fd:cb:
98:4b:41:8d:ff:ba:19:f7:41:92:1f:8c:90:c1:12:
d5:06:44:3a:b1:a2:69:48:c8:03:6a:b8:d7:b1:c5:
fb:d6:3c:e8:b0:12:37:62:d8:e8:43:01:10:46:8a:
8e:8a:a1:aa:13:98:e1:89:e2:8f:dc:49:4e:0f:f3:
cb:33:ec:24:08:60:8c:48:46:df:57:b6:14:c9:fd:
72:6b:d7:ec:ec:9a:31:04:36:41:c7:5b:f8:c8:c0:
e5:8c:1a:e2:6e:27:78:56:ad:20:fa:a4:9a:1e:78:
bc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E6:E0:F0:EE:F1:E6:EA:17:FA:B1:9F:2A:8F:0D:92:46:4C:08:51
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
142.4.178.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:64:0e:96:c8:14:38:e1:9a:04:f9:c8:3c:fd:50:a3:fe:5f:
e2:ad:6d:13:ef:5b:85:2e:f7:e0:3e:45:19:a8:04:5c:d3:40:
e7:8f:f5:12:d4:28:d9:25:d0:52:42:1a:e5:90:28:79:62:d3:
22:99:5f:d9:75:ec:3f:64:62:08:b3:4c:60:c2:fb:e0:82:c6:
f3:79:60:bd:5e:38:bf:40:5e:f1:ba:01:49:f1:31:a0:59:59:
23:50:f3:77:fa:93:f4:76:d5:3c:94:9a:ec:0c:f7:56:1b:69:
2c:f9:6e:4f:04:53:9c:da:33:f1:6e:39:5e:08:1a:c0:08:40:
b5:c5:0f:fa:4c:3f:b6:da:6c:4e:d7:42:eb:c5:4c:09:e3:cd:
c0:2c:43:40:c6:57:d5:02:c4:18:fa:1d:bb:77:f2:0c:88:c9:
7b:1d:6b:e0:50:0d:8c:59:47:21:b5:2b:10:f6:ce:e5:b4:f3:
f6:63:60:35:0e:0b:aa:26:ff:a2:38:7f:aa:53:b0:94:e9:4f:
9c:10:19:03:56:35:b2:d0:0a:38:e2:d4:98:43:e8:e5:ce:8f:
b3:a8:ec:55:11:d1:05:1d:ee:3f:79:73:96:27:a6:94:03:4c:
c2:3f:7f:e3:9a:ad:df:f9:87:1c:20:58:34:b6:69:d0:fb:78:
92:56:fb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 08:24:01 2025 by rpki-client