Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa
File: 6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa (raw, json)
Hash identifier: ReuM+qMjD027kAlmIIzPnNw0NzqAjFYb+WOhcM0HX7M=
Subject key identifier: F2:F9:D0:11:EF:91:8B:C5:27:99:1F:6D:C5:72:EB:D4:AE:09:DD:18
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 434E91BDA95C5D93917E2DF7D64E0B8CC2FC66D8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa
Signing time: Wed 22 Oct 2025 00:30:56 +0000
ROA not before: Wed 22 Oct 2025 00:30:56 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 202.174.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:4e:91:bd:a9:5c:5d:93:91:7e:2d:f7:d6:4e:0b:8c:c2:fc:66:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:30:56 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=152300f2e094178654d68c31029c3278ab3e1789be969e757f6db9084b6d294c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a1:3b:a2:d3:e9:04:22:a4:4d:69:01:4c:ae:
6e:4f:34:90:66:16:70:19:b4:9c:c9:ab:be:e4:be:
ed:05:db:fc:61:fe:94:4c:ac:3a:bd:b4:3c:5b:c8:
98:5a:d1:9b:61:4f:71:84:81:78:a8:6e:33:ac:75:
fd:e0:6d:3e:0f:21:bd:f8:20:84:a4:cf:8f:02:5b:
18:da:9f:80:bd:c1:84:b5:be:da:69:5a:dd:18:59:
99:12:c5:21:b4:c7:09:63:c8:01:23:f7:00:52:63:
aa:82:85:df:4b:59:cf:f5:84:15:b9:87:22:5b:2b:
0d:4e:1f:cd:a7:b5:21:c8:7a:29:7f:76:9e:29:1f:
e2:0e:4d:a7:0f:89:fc:9b:94:32:9e:d8:75:65:07:
d6:18:eb:8c:23:d4:5e:07:ed:10:b7:23:8f:5e:c1:
e8:c7:ab:47:b0:fd:e5:b1:4e:ef:51:46:c8:0c:05:
73:49:04:c4:b3:50:bb:6b:13:ff:7f:c8:c0:e5:18:
90:46:2f:72:e4:8d:3b:bf:e4:57:65:4d:d4:9e:eb:
f6:5a:03:5b:c5:f1:9a:23:1c:2b:64:9f:38:18:7f:
5c:ea:0c:9e:b6:ad:6d:09:2c:a9:35:8d:38:b7:ba:
31:81:96:90:e6:27:94:db:71:bc:f3:77:dd:a7:e9:
c0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F9:D0:11:EF:91:8B:C5:27:99:1F:6D:C5:72:EB:D4:AE:09:DD:18
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.174.154.0/24
Signature Algorithm: sha256WithRSAEncryption
69:8d:d3:ad:19:ea:22:a2:61:83:44:db:1e:ba:70:41:43:50:
e7:55:30:5b:9b:d8:5d:eb:77:88:f0:a3:61:44:67:8c:3b:96:
07:b2:d9:28:15:b9:7d:e6:e5:5e:54:bd:31:bd:05:00:f1:7e:
1e:3b:ec:da:52:6d:ee:9e:8c:ed:94:45:b3:e0:04:8a:ff:59:
35:9b:90:d7:f5:24:6a:7f:89:31:aa:98:ec:cb:51:7e:23:5c:
5e:fa:a2:9b:db:28:09:99:ef:29:5d:62:88:28:25:fc:8e:0c:
5e:a2:cc:2d:32:15:65:cc:6d:40:d5:4a:bc:8b:a3:ce:24:61:
5f:49:b9:2f:9d:54:e2:f0:ea:6c:51:67:40:12:30:10:69:74:
da:6d:fd:82:59:1d:c3:6e:ff:93:d0:85:f4:81:69:0f:8a:bf:
28:cd:5e:0d:ad:63:58:3a:17:25:a4:cd:7f:81:75:a0:88:c4:
53:d0:d1:4d:1f:f3:ec:c6:9c:4a:33:02:69:6f:bf:9f:3e:0c:
46:f2:c4:99:24:a2:ef:b8:0a:f0:ec:6e:48:3a:de:d7:55:43:
a7:fc:2e:74:e5:37:0d:49:36:42:60:02:35:91:37:f1:b9:db:
f9:2a:b9:d0:bf:0d:16:7b:b9:39:f2:4d:32:aa:27:f6:3d:38:
9c:d4:39:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:48:24 2025 by rpki-client