Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6b39c3e-9738-436a-82b3-baacdf83c549.roa
File: f6b39c3e-9738-436a-82b3-baacdf83c549.roa (raw, json)
Hash identifier: Sq2dEV6p09KWXxvYIs534qk8NShN3mAb2nGFeUAiKYk=
Subject key identifier: 0F:3A:16:CD:EA:C3:04:DC:41:10:E2:45:19:33:41:9A:B2:1D:AC:42
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 593E4756EA365B6CEBD9CB8FD9590FC73E7B484A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6b39c3e-9738-436a-82b3-baacdf83c549.roa
Signing time: Tue 11 Nov 2025 02:30:10 +0000
ROA not before: Tue 11 Nov 2025 02:30:10 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 110.238.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:3e:47:56:ea:36:5b:6c:eb:d9:cb:8f:d9:59:0f:c7:3e:7b:48:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 02:30:10 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=17336db9c5f645549a86a49b846bc8880fdfbc498d3ffcb392453909fc5338f5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:32:2f:27:b7:e9:db:8d:b5:35:78:84:3a:ca:
86:2e:42:00:f3:fb:ed:4a:92:2f:01:6d:94:dd:d2:
a4:ca:da:db:e4:f7:cd:35:a4:3c:fd:62:45:d6:b9:
97:21:01:80:d7:33:60:1f:21:69:0f:ab:b8:02:84:
d6:25:ca:c7:ca:14:f3:e7:19:a7:6a:de:38:c1:13:
a4:47:04:10:ff:92:4a:42:9c:5c:eb:10:83:fd:2e:
0c:9c:cf:c5:99:0a:95:27:ec:f5:3c:de:6f:7f:74:
9b:55:34:6e:8b:13:68:c4:81:a3:33:f1:1b:1f:d0:
cb:8e:7f:08:8b:f2:d2:ec:b3:33:1a:35:7b:dc:ce:
8b:55:39:16:6e:ce:84:6e:f9:76:1d:92:96:ce:1c:
91:b4:0b:9d:37:44:85:dc:84:cb:af:55:f9:64:4c:
87:0b:34:6c:fb:1b:9c:6b:47:24:8b:ba:42:24:b3:
e4:a0:96:ff:83:84:fe:29:03:a6:d9:9b:10:d6:52:
41:27:ec:f9:fb:a4:a5:78:20:fc:68:b0:b5:91:79:
33:6f:b0:a9:79:47:fb:cb:91:32:9f:bc:1c:3e:ff:
42:1c:49:4a:5f:69:c0:c9:45:39:11:b0:2b:92:1e:
55:12:35:1b:51:5c:08:be:eb:de:ba:2c:c8:a1:ae:
d8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:3A:16:CD:EA:C3:04:DC:41:10:E2:45:19:33:41:9A:B2:1D:AC:42
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6b39c3e-9738-436a-82b3-baacdf83c549.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.238.28.0/22
Signature Algorithm: sha256WithRSAEncryption
06:9e:3f:79:7c:c7:79:33:67:82:71:cb:28:40:38:8b:12:d2:
f0:36:9d:41:8c:58:13:4f:db:37:ff:b1:3d:ae:e0:a8:66:fd:
3d:f5:22:68:3c:83:87:37:96:19:71:30:4f:49:73:82:e1:6a:
52:ce:36:9f:59:56:46:2e:e7:7e:fb:1f:40:0f:3e:c1:55:f6:
fa:29:de:85:ed:08:02:87:9a:e6:93:15:e8:27:0c:6d:fc:1b:
d0:7b:b0:7b:c3:3d:91:09:3c:f1:92:5d:89:e0:bb:48:a8:79:
24:b0:3e:ea:ed:06:18:e8:de:86:9d:ba:19:2f:66:7b:30:b8:
e7:49:ab:56:a0:7b:02:5e:0c:50:d7:cb:86:e3:04:45:1a:dc:
e3:75:1a:ec:a2:e7:e7:70:7f:52:9d:f5:24:98:12:16:f5:fd:
db:2a:4b:e2:72:ce:5e:87:12:00:ca:38:94:60:36:e0:37:40:
b4:51:42:9e:58:ad:f1:5d:b4:c2:88:fd:99:60:67:b5:fb:ca:
4f:c4:94:89:53:86:7b:62:3b:70:10:a8:88:ec:6e:7e:ad:2e:
74:79:4b:73:60:0d:e7:36:0e:09:cf:42:19:f7:6a:1c:5a:2e:
bd:23:b5:3a:d3:82:1b:7c:d2:e5:f6:76:d8:76:44:6f:40:61:
2a:3f:2b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 09:37:27 2025 by rpki-client