Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa
File: 0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa (raw, json)
Hash identifier: BZHtXOccu9wUWLrZCxogdpUyjr6nI1Fspj2wmaQ5oPo=
Subject key identifier: A6:1E:A6:39:80:A3:AD:30:9A:C7:00:67:D4:A5:38:14:E8:A5:22:9C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7262F502E18A395BE509B1639360E047592F9A42
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa
Signing time: Sat 01 Nov 2025 00:10:08 +0000
ROA not before: Sat 01 Nov 2025 00:10:08 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 14618
IP address blocks: 184.72.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:62:f5:02:e1:8a:39:5b:e5:09:b1:63:93:60:e0:47:59:2f:9a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:10:08 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=7eec2e0d0f4ad2e7c48ef3b034418fd850c612e58dbea5a4bec1c98db3ee40d9, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:99:08:44:cd:3e:eb:20:86:d6:9b:72:04:90:
00:fa:b2:0c:6d:1e:ef:89:1c:46:23:95:6b:2b:bf:
67:bd:ba:eb:f7:5d:7b:03:ea:8b:a6:07:10:d6:22:
26:d7:cc:14:f1:16:83:96:2a:7a:69:49:0e:a4:d5:
f7:cc:38:e9:3b:48:50:e9:2a:b8:b5:89:a7:6d:de:
c6:20:e5:7a:b7:60:13:88:93:ba:7c:ca:63:7d:1e:
9f:bb:cb:07:24:46:61:65:90:f7:4f:89:ed:4f:e1:
55:45:f7:40:6d:91:53:e1:77:a0:c7:73:ce:d6:07:
1c:1a:a7:72:ca:b6:52:d8:97:21:c5:29:23:91:87:
e8:ea:f4:cb:94:5f:86:c2:e1:61:3e:c7:cf:d7:97:
89:55:34:0d:19:96:59:9c:6e:1c:54:24:81:39:6c:
e1:04:26:ed:1e:f1:f6:aa:fe:ec:8e:fc:b7:e1:1a:
31:9d:90:eb:d6:2e:5a:c4:8a:3b:3b:6a:d4:66:38:
67:84:e3:de:67:e8:8f:45:51:b4:8b:b1:54:2f:9b:
5d:f8:3a:ef:03:43:45:bf:ea:7f:db:22:66:2a:3c:
98:4f:4e:b5:d3:36:71:d9:a4:c9:c4:3f:b4:29:0d:
b0:3c:7e:8a:08:c7:b5:cc:9b:d3:bb:8d:1c:88:ff:
f6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1E:A6:39:80:A3:AD:30:9A:C7:00:67:D4:A5:38:14:E8:A5:22:9C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.72.128.0/17
Signature Algorithm: sha256WithRSAEncryption
d0:33:18:e0:fb:c4:4c:2f:4c:8f:7b:e1:14:aa:b3:54:05:07:
a0:a0:1f:da:97:57:36:d6:c2:fd:56:02:e3:98:62:ba:a0:25:
7d:5d:c1:e8:50:07:c7:bd:64:38:f2:c3:c1:d5:1f:89:03:3a:
dc:4b:68:c2:d7:6a:a3:ee:14:42:9e:ea:99:e4:85:3f:bb:27:
44:c0:76:18:66:47:5f:b8:b8:7b:01:ca:a8:3f:be:d1:1c:d7:
54:12:1c:75:11:c5:b8:4c:cd:e7:64:3a:48:0f:4f:99:41:c4:
fb:ab:81:9e:86:90:39:c3:9a:e9:a7:f6:af:3e:f6:a4:5c:a9:
16:28:3e:3d:6d:4d:16:1d:40:15:41:e3:51:70:d5:b1:11:cd:
2a:93:c5:01:d8:ae:32:53:6d:3a:2c:61:af:f1:cc:46:d7:fa:
5c:26:28:47:77:48:c5:8a:dd:d5:9b:4b:08:84:fe:ef:30:50:
e1:40:db:a2:0d:79:b0:70:c9:83:48:9d:98:a3:cf:8a:e6:cc:
f1:99:16:d6:63:78:fb:6f:94:03:b0:70:51:82:56:b3:5e:17:
1f:c2:e9:e0:a0:70:8e:4e:fb:8e:57:c1:ff:4d:f7:82:a9:d5:
65:88:ff:23:c0:46:d0:ba:9e:02:5d:c6:0c:80:ba:48:f0:79:
f5:82:96:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:00:45 2025 by rpki-client