Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa
File: 22f4d3b0-2537-48ed-bf15-840b585b2b11.roa (raw, json)
Hash identifier: V28PGO/icf+z14anPTlUa09YDn7pcLwRxgDrL8pQclc=
Subject key identifier: 1A:BE:E1:6E:45:57:9A:7B:45:ED:9E:FD:6A:41:75:90:9C:2B:5F:EE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 321C798DB3FCBDA06FA17966AA8354F07BFA26B9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa
Signing time: Fri 31 Oct 2025 00:10:09 +0000
ROA not before: Fri 31 Oct 2025 00:10:09 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 31.220.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:1c:79:8d:b3:fc:bd:a0:6f:a1:79:66:aa:83:54:f0:7b:fa:26:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 00:10:09 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=a6d56f8d60cc5bec123caf2aaa7cc201d2112bb5411361b3f9b2ce186f0deade, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:13:25:88:ed:09:25:13:78:07:fc:91:81:c4:
ed:9c:12:4a:df:b6:ea:78:00:47:28:f5:c6:8f:ce:
a2:27:de:8f:b8:95:11:21:c8:6b:a8:1e:20:08:17:
6a:86:5b:b5:55:2d:eb:ed:ca:f9:8c:b5:42:b7:92:
b6:63:dd:37:66:32:34:b7:fd:36:fe:51:b5:ff:4e:
72:7d:68:21:db:c3:54:29:5d:92:3c:8e:63:12:77:
97:5d:c3:46:14:ee:5e:89:0e:ba:e2:52:c6:e5:7d:
5e:cb:f9:95:51:8e:1d:a6:67:f8:6e:91:ff:33:16:
39:aa:47:75:56:9b:8c:60:ad:e8:ae:c2:fe:ef:8f:
7e:9b:1e:28:63:fe:2b:1d:5d:76:c6:b4:d6:b6:f6:
9b:ce:b1:ee:0c:93:4a:df:b0:99:53:9b:68:54:1e:
11:be:46:17:1d:b5:81:ec:d6:06:f6:e0:07:74:1e:
69:96:ce:8d:21:ba:e7:96:31:2c:da:41:44:79:5e:
8f:23:d2:b0:4b:35:8f:9b:16:f5:06:12:2d:9f:b7:
99:48:71:f1:0b:be:29:0c:cc:a7:ad:aa:df:4a:ab:
23:d8:c0:fd:46:4b:82:bc:a4:c8:06:48:ff:47:88:
f1:87:56:4d:2d:9a:42:6d:b0:c7:22:c7:b7:e1:97:
de:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BE:E1:6E:45:57:9A:7B:45:ED:9E:FD:6A:41:75:90:9C:2B:5F:EE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.235.0/24
Signature Algorithm: sha256WithRSAEncryption
08:37:fd:c7:b5:f4:88:eb:60:d0:7b:83:c9:fa:d5:9d:16:4e:
9e:6e:cb:8d:36:7d:9f:79:8b:21:ac:c9:8c:61:47:18:e8:bb:
70:64:f0:c5:7e:7c:56:0b:bb:48:0a:8f:61:55:e0:a4:fa:4c:
f7:0d:62:51:01:5a:bf:4e:40:93:2b:fb:4d:0f:e0:d8:8a:0c:
2b:b9:a3:6c:17:7f:92:39:d0:af:4e:de:9a:ee:95:1c:82:ca:
99:2f:28:62:6c:b1:1c:6e:7a:73:55:9e:2f:9b:d0:d9:8b:6f:
54:a2:37:fd:f1:3d:c0:75:9b:fc:32:d8:70:bc:ce:b9:dd:ad:
84:a1:27:f7:da:38:04:36:1d:2f:06:92:6c:ee:15:76:f0:90:
aa:f9:eb:71:72:d0:54:10:24:b4:6a:92:c0:ed:34:c4:74:43:
a5:65:b8:d2:96:68:f7:a7:e8:e8:68:26:9f:32:f8:07:93:5e:
a7:15:81:a5:40:19:5a:8a:4f:e4:2d:6f:dc:52:7b:58:af:50:
23:5e:fb:c7:6e:2b:0f:72:70:b2:57:c8:3d:d9:82:4d:1c:84:
c4:10:10:87:1e:01:57:72:78:17:65:db:4b:60:60:13:89:ab:
ed:16:99:3a:f3:34:80:8d:76:0e:7f:a1:6d:ca:62:32:78:18:
cb:c7:f7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:34:46 2025 by rpki-client