Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa
File: 6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa (raw, json)
Hash identifier: Rg/4+KjEyghmBbE1t9r26Soy8vuJ3kfeSg3+0BdPbvA=
Subject key identifier: EA:C5:EA:F7:68:A2:B4:51:06:5D:1F:0F:F0:11:B5:E4:F0:CC:E7:C1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 55F58F860EE78E53D0FC115A575E8B133EA5705B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa
Signing time: Wed 05 Nov 2025 00:20:13 +0000
ROA not before: Wed 05 Nov 2025 00:20:13 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 115.177.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:f5:8f:86:0e:e7:8e:53:d0:fc:11:5a:57:5e:8b:13:3e:a5:70:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:20:13 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=b775f5d5bfa764e3c5ade1a5e8724f464b35f665ba7b8f5f7ef389320b015710, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:62:c2:8e:dc:ff:26:49:8a:8c:ff:1e:d0:
e6:38:20:c3:60:19:db:26:1e:68:17:ff:9d:b3:f6:
07:43:b1:02:42:df:a9:8d:10:8d:74:15:95:36:e1:
45:2a:a1:c4:e3:78:1b:cf:8f:9d:7a:83:29:ff:3d:
7c:4c:da:72:99:5a:f3:6d:4c:54:1c:48:2c:cd:9a:
d8:06:79:cd:2c:a9:49:92:44:fc:c8:e5:0e:5c:5a:
1d:f4:04:93:61:68:bf:b0:cf:2d:9d:0a:50:7b:5b:
28:1f:13:3d:e6:e8:8e:0d:92:7e:3f:02:93:bb:02:
cb:a8:fc:61:a2:fc:9c:cf:0c:aa:cb:82:47:2b:e2:
1f:22:5b:fa:4b:c8:c9:47:d3:15:96:f2:65:68:9a:
0b:ae:a1:a4:64:7c:22:03:ef:e2:96:f7:34:77:57:
ed:77:07:d9:bc:ba:86:0d:7a:01:42:a2:ad:ea:7a:
37:4e:f6:b0:70:29:1b:74:bf:4d:6a:18:b0:6c:ac:
51:b0:b4:4b:3b:1e:6f:8e:d7:f1:08:69:6d:11:21:
88:26:04:65:f8:3e:cb:7e:1f:a1:12:83:21:17:e8:
6e:85:93:63:76:e1:88:46:33:7f:b9:82:79:a7:8b:
a3:69:d5:2c:af:01:87:c4:63:2e:68:05:0e:f4:9d:
2e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C5:EA:F7:68:A2:B4:51:06:5D:1F:0F:F0:11:B5:E4:F0:CC:E7:C1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
115.177.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a8:da:c0:66:72:3e:41:cd:bd:7f:09:01:0d:53:44:6a:42:4c:
60:f9:fd:29:30:3b:6f:62:a0:f7:1c:31:83:15:49:c4:91:01:
14:8b:9b:00:99:7b:f5:b5:3f:fa:52:08:39:fc:cf:63:a2:a3:
49:ea:f4:67:07:3b:88:ee:7d:b5:ff:c6:7c:28:b9:ca:09:50:
83:27:b6:3c:be:a7:eb:db:33:31:af:60:d6:7c:a6:83:1f:60:
7f:5e:62:12:79:ac:6a:46:57:11:be:7a:11:d7:c7:33:99:d4:
1d:e8:b3:9d:1f:54:d9:07:f0:46:e7:16:b9:cb:25:57:d7:85:
9c:4b:1d:e3:2f:c6:03:bc:b7:a4:21:c3:f7:e5:88:8a:87:bc:
a5:f6:40:75:aa:4e:f6:80:4d:ed:dd:48:da:16:13:bf:aa:bf:
7c:6b:8e:f3:d0:f5:d1:19:83:cc:c5:53:46:0c:59:57:a2:03:
1c:4c:c6:a6:56:64:ba:58:a6:e0:84:ea:42:78:02:65:62:ab:
1e:b5:ab:7f:31:26:18:5e:49:ce:4c:0d:f9:38:c7:ff:6c:1a:
28:05:1e:6f:e2:e4:4c:34:02:82:1e:4e:6f:53:4a:03:82:16:
d5:32:e5:72:64:71:e6:bc:ce:8f:91:de:bc:03:3e:5b:e9:9b:
0c:51:2f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:42:36 2025 by rpki-client