Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f5100a1-9182-409a-aacd-de6217f098f6.roa
File: 3f5100a1-9182-409a-aacd-de6217f098f6.roa (raw, json)
Hash identifier: JHZtAqinDpUnOjyRiJMa9QXiwwBGaaC12dq2AUQFwas=
Subject key identifier: 6A:BE:09:F9:ED:A3:58:A3:78:DD:A5:AC:91:84:9A:80:2E:0D:A1:63
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7CCE7A76D15105269FB2CFC19CE5435E6CB9936F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f5100a1-9182-409a-aacd-de6217f098f6.roa
Signing time: Tue 11 Nov 2025 00:31:19 +0000
ROA not before: Tue 11 Nov 2025 00:31:19 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 8987
IP address blocks: 182.30.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:ce:7a:76:d1:51:05:26:9f:b2:cf:c1:9c:e5:43:5e:6c:b9:93:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 00:31:19 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=7b53300b3ec024a8face1d42c9d683d6bbe593ca0be14e5648f27ffeffc3606d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:da:7e:ef:29:c6:6b:b9:da:2b:82:2d:2c:fa:
68:f0:2e:fc:b3:8d:6b:13:5e:83:0f:69:e7:44:a1:
37:df:d8:e2:82:4b:93:7e:56:39:ba:50:e5:d8:83:
29:4f:e5:8c:b6:ef:2c:be:4b:97:89:cc:ef:4a:7b:
1d:45:06:cb:d7:27:61:81:f5:62:7b:4a:59:86:8c:
77:68:39:d5:83:55:3a:07:34:58:e9:8e:41:de:25:
25:98:f1:c8:64:ac:85:25:3f:44:b9:a9:df:e6:ab:
0c:ff:63:2c:3d:13:a1:3a:81:5e:f3:b6:ef:32:08:
5e:a3:91:9f:86:ce:96:08:9e:60:10:8a:51:7a:d3:
ba:5f:93:71:c4:ae:b7:5e:31:d5:dd:99:c9:7a:e2:
b9:a2:3e:69:ae:72:b0:7f:82:eb:11:e3:a1:c5:9c:
e9:4d:e5:98:7f:4b:c6:c9:76:5d:58:0a:3e:b7:8d:
4c:06:bd:d8:82:e2:df:35:59:20:03:30:5c:5b:e4:
f4:79:36:70:a3:98:ab:00:a5:08:ff:3c:39:80:bb:
ef:ed:eb:6d:2a:8a:18:ce:a6:35:aa:76:ab:fa:fc:
fe:86:e5:da:1a:e6:9d:0e:19:96:a8:4a:f8:b0:7a:
aa:97:fa:f0:ba:20:f0:8c:d2:b8:f7:f2:21:3d:ac:
e1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:BE:09:F9:ED:A3:58:A3:78:DD:A5:AC:91:84:9A:80:2E:0D:A1:63
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f5100a1-9182-409a-aacd-de6217f098f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.30.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ab:b4:ca:c3:1a:15:d9:4e:23:d7:7e:33:9c:8c:de:4e:2e:fc:
dd:9c:c1:0f:68:64:53:a3:c1:e4:21:5b:c0:4f:bb:a1:28:d4:
39:02:e8:35:7c:22:0b:0b:32:4c:af:b2:71:46:56:38:e5:ec:
5f:5a:6a:ac:43:06:71:24:11:f3:60:aa:5e:c3:2e:50:6d:99:
21:0a:d6:c7:9e:0d:a7:40:ef:ff:eb:2b:80:3b:e9:a3:ee:38:
07:b1:d8:6d:22:ba:8b:57:c0:ff:05:73:65:5f:53:94:29:21:
5d:32:38:06:1f:99:15:88:a9:22:36:bc:c9:20:e1:e5:6a:98:
e3:b9:11:09:f1:c5:25:ed:a6:c7:18:92:30:40:b6:4c:a5:2e:
cc:f4:45:9e:5b:17:d2:6c:67:40:bc:24:a1:56:5c:b1:03:6b:
f0:69:06:fa:15:59:3a:20:8c:93:c8:42:55:37:0d:b8:80:ba:
a9:9e:37:85:d6:9a:6e:f8:1d:61:6c:e0:de:15:30:b2:22:7a:
c9:c8:88:8f:cb:58:2b:ab:6c:72:d2:54:92:59:df:fa:5b:0e:
d1:7f:61:25:d6:bf:f3:26:f5:6c:51:0a:d7:ad:37:b6:d0:b5:
ac:0d:02:20:02:c6:30:6b:a9:f5:c3:33:d2:54:d2:b1:a8:56:
e3:c6:53:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 12 07:35:02 2025 by rpki-client