Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1932d35e-8470-472b-beeb-7ce1306eddae.roa
File: 1932d35e-8470-472b-beeb-7ce1306eddae.roa (raw, json)
Hash identifier: qnty3SChx3X4UUJqR64R9s7KRq4LyR8nuDLWRXfwNW4=
Subject key identifier: 32:1C:EF:1F:D3:05:40:3F:60:33:B8:5F:A7:9F:5B:19:54:3C:97:1D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7CFDFD7FF59A76A2471B5A202770F712E191338B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1932d35e-8470-472b-beeb-7ce1306eddae.roa
Signing time: Tue 21 Oct 2025 00:10:07 +0000
ROA not before: Tue 21 Oct 2025 00:10:07 +0000
ROA not after: Tue 25 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 160.209.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:fd:fd:7f:f5:9a:76:a2:47:1b:5a:20:27:70:f7:12:e1:91:33:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 21 00:10:07 2025 GMT
Not After : Nov 25 23:59:59 2025 GMT
Subject: serialNumber=013c2906fd87375bf4d1e3a13db01d72f8217ff59fe8b9d9fb17d4e6cd209208, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:69:e0:23:24:b8:af:86:77:da:9d:5c:6f:b9:
80:0e:ac:30:3e:ce:6f:d3:fb:82:9e:c4:84:65:f7:
57:ca:40:57:fb:fd:58:cc:1c:0e:02:89:fc:d9:33:
0f:ba:5e:20:1a:56:dc:e1:86:5f:23:4f:fa:9a:63:
0f:07:17:73:ed:d6:cf:5b:9a:37:ed:fa:d0:36:dd:
77:68:af:8b:04:57:dd:a6:2b:a7:ce:f3:bc:95:10:
a8:d7:3c:82:9d:e5:1e:68:25:76:ae:67:18:08:e6:
a2:44:43:c4:ba:95:4f:26:31:f8:04:16:cf:be:ad:
a3:f0:99:90:72:ee:ce:6c:d2:04:36:ca:76:7c:9e:
78:54:78:39:fa:5f:b6:70:32:3e:a8:ee:6c:7c:56:
15:e5:37:af:55:b0:07:4c:ce:6e:2f:cf:2a:5a:e6:
6f:91:c5:95:28:f4:d7:21:f3:63:97:23:4b:70:1a:
2a:7a:77:97:fb:6b:73:93:39:38:a0:06:86:68:3d:
04:7a:1d:7a:87:b6:9f:18:5b:75:cf:f5:fb:81:03:
30:03:5e:f1:4f:90:09:9f:40:ea:60:c4:49:77:b4:
9f:8b:ed:5a:70:53:2b:85:f7:b9:d3:0b:03:e0:44:
df:be:ad:a9:ca:0a:0b:b5:a1:e5:0f:b2:70:65:78:
d5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1C:EF:1F:D3:05:40:3F:60:33:B8:5F:A7:9F:5B:19:54:3C:97:1D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1932d35e-8470-472b-beeb-7ce1306eddae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.209.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:6d:cc:80:2e:fb:44:ad:26:1b:76:9d:43:15:12:87:1a:e4:
be:12:a2:af:b9:8b:0b:39:b8:4e:fb:a9:fb:f8:72:62:19:93:
fb:43:d3:83:91:46:c2:8a:82:e5:6f:fb:ef:a4:00:55:57:48:
b4:30:ee:d2:bd:5a:37:84:44:ec:f9:bd:7a:53:ad:fc:35:f3:
6b:cd:3b:dc:e4:e6:d2:29:5e:d4:f5:b2:5a:61:73:d4:76:69:
d7:51:55:60:c2:7e:18:66:b6:63:af:2f:94:8c:ee:39:04:46:
ac:42:fd:d4:4e:1a:bf:d6:fa:85:7d:46:76:ba:01:94:84:10:
01:a7:c3:2a:6a:34:0d:40:22:81:f2:b7:87:03:76:27:8f:19:
38:23:e6:22:22:b9:ad:49:cc:4e:c6:59:3c:bf:b9:23:18:af:
99:6e:53:f2:ed:57:b7:b5:9c:b6:37:64:b7:4c:21:6b:d4:9a:
60:95:c9:b5:5c:35:04:e1:69:0e:03:20:b2:c2:74:76:7c:03:
a5:19:56:c4:aa:b1:55:76:0e:d8:6d:79:c7:6f:c1:62:9c:69:
fb:b6:1a:5f:d1:4d:a2:1a:de:d8:f9:97:0e:b0:70:b3:27:28:
78:4a:f1:b1:af:5a:50:4b:9a:b1:b6:93:32:04:f6:f7:22:8b:
69:35:81:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:47:06 2025 by rpki-client