Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2ffe9e9-aee0-49bf-83a2-8376b9cabc33.roa
File: d2ffe9e9-aee0-49bf-83a2-8376b9cabc33.roa (raw, json)
Hash identifier: 1CLfV669ApCgKy5x7zniDAV/mcJ77goX8KW4kP6/FBw=
Subject key identifier: 32:7B:7F:90:EE:B3:01:39:52:86:92:85:40:0E:B4:97:1F:31:BC:32
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6E9A27CCE838C61BCC07C5C3969B0AC31F93218B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2ffe9e9-aee0-49bf-83a2-8376b9cabc33.roa
Signing time: Wed 12 Nov 2025 01:50:09 +0000
ROA not before: Wed 12 Nov 2025 01:50:09 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 1.178.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:9a:27:cc:e8:38:c6:1b:cc:07:c5:c3:96:9b:0a:c3:1f:93:21:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 01:50:09 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=e37cf3984acfe3e2cf045e1a0d4fd8d62356207bcc2ef50622b7ed1edf97c758, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f9:29:40:35:5a:0d:bb:f4:eb:36:86:cf:20:
76:74:1e:6e:8a:f1:82:e7:e9:5a:2c:bf:3e:8f:1f:
5d:12:3d:c3:b1:dc:56:c9:f3:70:18:cc:3e:bb:95:
aa:ba:3c:86:8d:35:d9:79:01:6a:48:55:f7:d9:87:
2b:ab:13:91:00:e4:ae:cd:07:79:ff:f9:3d:4b:84:
67:71:4f:3b:89:5e:bf:94:01:5b:3b:f2:70:07:10:
b8:28:ee:e6:a2:e5:1e:37:a7:1d:06:5d:53:ea:a8:
ce:85:ef:21:e0:3c:6c:90:02:bb:1d:c1:7b:77:77:
78:de:c5:f1:d2:48:6d:d5:85:8e:d2:0d:b6:42:d2:
9c:76:8b:11:ac:39:6a:3a:43:ab:7c:7b:a9:ff:c4:
f6:7c:21:ce:65:4a:72:29:2c:0d:97:f0:9b:e3:b7:
5b:a2:61:a9:e2:76:a8:85:69:79:fd:5c:7d:fd:d9:
0a:5c:68:bd:87:93:b7:d8:72:59:f1:05:9e:cd:d4:
71:7a:2f:c9:bd:07:b8:78:6e:d2:04:de:bc:93:18:
af:c3:eb:bc:17:82:16:a7:24:98:e1:61:ac:09:fa:
23:10:9b:b0:48:f4:69:ad:52:41:60:1c:c8:5b:57:
2d:d5:6c:5a:94:d0:82:e9:d2:c5:54:d2:b5:12:74:
1a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7B:7F:90:EE:B3:01:39:52:86:92:85:40:0E:B4:97:1F:31:BC:32
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2ffe9e9-aee0-49bf-83a2-8376b9cabc33.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.178.180.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:b5:44:7d:58:4e:c9:36:c7:76:e9:62:04:04:1f:d1:06:74:
db:b5:ac:d1:18:02:60:d6:c6:74:4c:0c:33:e9:4e:7a:62:2b:
df:ad:bb:d3:b2:a1:70:84:52:e0:dc:54:2d:dd:33:1b:1f:60:
16:b0:20:4d:ae:13:0e:74:d0:38:ee:90:dc:d8:ea:27:d1:93:
4e:e9:e9:c5:37:de:42:af:b9:ec:10:09:39:b5:19:46:53:b5:
bb:d7:9c:0f:3f:bc:aa:f2:69:a6:de:39:3c:c8:e4:28:65:f1:
97:b5:7b:ef:33:a8:97:38:a5:da:08:b0:df:7d:11:70:77:a9:
15:e5:9f:62:13:6b:87:d6:64:7b:24:9a:93:19:1c:09:54:19:
d8:66:88:42:a3:dc:72:e7:ce:82:61:84:48:fe:82:50:9f:15:
5c:b9:0c:83:28:bf:0b:18:da:75:f6:0e:5a:8d:1b:77:44:11:
1d:bf:68:b4:7f:46:56:5f:ff:fb:5a:83:2c:8b:14:fa:70:65:
43:78:27:02:d3:3a:6e:4f:26:d8:d3:31:ca:a7:51:21:fd:86:
f7:79:0d:f2:db:31:ea:20:eb:2e:f2:35:7d:68:03:64:3f:88:
d1:89:64:67:85:81:ce:45:3e:87:68:dd:c5:01:0e:6b:d2:d7:
b9:a5:c6:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 08:23:48 2025 by rpki-client