Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa
File: 2753f989-5094-40f6-9952-e005b9c4f0d6.roa (raw, json)
Hash identifier: ZBYqB5pli0yjQD6z0dNCWOOhBoTl9JEFSP0LQuG0FQg=
Subject key identifier: BF:D9:D2:09:85:22:7D:FC:CC:1E:D5:81:0A:5D:89:8B:16:0F:BC:D8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 054507CF6EC6657C99C1505974092FCE3A1DC683
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa
Signing time: Fri 31 Oct 2025 00:40:48 +0000
ROA not before: Fri 31 Oct 2025 00:40:48 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 44.192.0.0/11 maxlen: 11
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:45:07:cf:6e:c6:65:7c:99:c1:50:59:74:09:2f:ce:3a:1d:c6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 00:40:48 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=443f69d0ee5957974cfa3adc79b28acef2e8598b69cc0639535373970b8d335c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8d:b7:88:0b:d4:0b:e9:51:af:25:c4:2c:be:
7d:7a:12:61:f7:de:25:a6:e0:ea:c3:1c:6f:63:45:
6c:8f:72:d5:3f:fa:7a:ec:3f:38:28:0a:a0:de:3b:
53:63:a2:6e:fe:b2:a1:12:dc:52:b3:03:a9:9e:6c:
be:f2:a2:ff:67:5a:bb:6e:f2:b7:4d:4f:5c:ce:24:
96:e3:d4:cc:ff:7c:8a:58:2a:ef:0a:d0:99:3c:f3:
ff:ec:46:87:bd:4f:bc:0b:28:c6:53:e2:41:2d:09:
e2:e7:40:b3:e8:19:9f:9c:f2:09:f9:a1:03:38:3c:
66:87:6f:0b:91:e9:37:b1:32:48:0b:95:be:11:be:
fb:e7:67:2f:51:a8:aa:7e:bd:c1:fc:d4:39:be:a1:
7f:e0:fb:ce:34:87:6c:34:e8:42:3e:58:fc:27:59:
02:00:87:29:7e:0e:1b:e9:af:7a:5d:79:a9:6c:5f:
84:cf:e1:41:34:ba:6b:b6:4e:6c:55:ff:8c:a8:df:
a0:87:7c:61:e2:ca:20:cc:aa:94:fe:e1:8c:4a:83:
75:86:ab:7c:a4:dc:41:77:c8:55:dd:e8:37:c3:07:
25:70:b7:78:fd:4f:21:4a:fb:28:f7:e8:0e:51:22:
08:cd:4e:95:b7:c5:27:80:9e:f3:4c:e5:d7:59:ba:
98:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D9:D2:09:85:22:7D:FC:CC:1E:D5:81:0A:5D:89:8B:16:0F:BC:D8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
44.192.0.0/11
Signature Algorithm: sha256WithRSAEncryption
09:92:81:95:fc:34:3f:89:55:d0:02:4b:3c:62:56:99:08:d3:
3e:4e:d7:e9:34:85:69:7a:51:eb:a8:59:9b:81:18:87:1c:29:
8c:60:fd:a8:44:64:67:d9:6c:91:37:96:b0:f6:03:41:87:1c:
34:76:3e:01:28:5d:09:7f:46:c6:90:6e:69:f5:c8:7e:c4:e8:
5a:7d:aa:30:19:9a:b8:9e:3b:d4:12:25:f5:a8:e8:06:0d:3c:
de:45:19:70:3c:9a:55:f1:ec:28:87:21:d3:66:16:21:83:79:
9f:91:ec:41:46:26:23:2a:08:5a:30:ed:7d:42:04:f7:40:08:
f5:bd:c8:cb:53:2d:b4:24:23:67:ba:73:79:98:cc:ac:01:2e:
0c:dc:03:1d:14:45:21:f7:de:73:7c:8b:6b:64:69:2f:41:b8:
65:db:e7:3e:e3:f6:17:cb:2f:f0:b3:44:a0:aa:89:06:50:ed:
4b:1a:02:5b:c8:ee:6a:5e:ce:94:3d:21:b2:60:9f:ff:0b:4e:
34:f1:12:b3:cd:d3:e6:ca:36:5a:76:02:37:21:59:a2:98:68:
da:78:94:c3:74:3d:bd:ea:50:e8:27:75:d8:97:93:83:0c:12:
4b:48:df:41:b2:8f:73:49:69:4e:33:87:ac:21:cf:0e:7b:94:
4a:3d:45:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:54:28 2025 by rpki-client