Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9515184d-12a2-49fb-b12f-8c4dfdddf2ad.roa
File: 9515184d-12a2-49fb-b12f-8c4dfdddf2ad.roa (raw, json)
Hash identifier: oWhlfTPrLpuVRgoJZi9l0LqSurZkoMnGNBgjbR6C4VA=
Subject key identifier: 69:2D:AD:61:3D:CB:2D:6B:E7:15:D7:EA:52:EE:DC:B8:9F:05:FB:91
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7EEAAE75129E79A9E920B72C00A13C819299501A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9515184d-12a2-49fb-b12f-8c4dfdddf2ad.roa
Signing time: Wed 05 Nov 2025 00:31:39 +0000
ROA not before: Wed 05 Nov 2025 00:31:39 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 202.174.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:ea:ae:75:12:9e:79:a9:e9:20:b7:2c:00:a1:3c:81:92:99:50:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:31:39 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=12c3f821abcd4e2c42e8666cadd0cab535367c9008e34cb4de10c0c08de74a46, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c7:15:31:2d:85:3c:e1:eb:27:83:23:69:0c:
e9:91:41:ab:6e:8a:a0:0b:83:47:84:da:cd:fc:c4:
bf:df:c4:c5:2f:a5:e6:3d:7c:25:4a:9d:8a:bf:5a:
fe:91:5e:1f:02:ef:85:c7:bc:22:e8:13:8b:a1:30:
61:57:8d:5e:2c:5b:0a:98:f1:78:34:a9:e4:49:3e:
77:08:3f:34:0a:dc:70:c5:22:4f:79:dd:7b:ec:b7:
3b:03:c3:6f:84:6d:6b:db:61:7c:94:04:f6:0b:83:
2b:fd:50:f7:fe:00:f5:95:c4:0b:b2:c2:7b:cf:3e:
04:4f:eb:0e:c3:74:8e:fd:f8:49:f3:7e:f0:34:aa:
4d:69:58:46:8a:b5:14:08:1e:aa:b8:e5:ef:ed:33:
5f:9d:5c:c6:37:ae:6e:32:2d:d7:d2:84:6c:67:dd:
be:40:1d:6d:77:74:44:e1:35:5a:2d:e3:c2:20:ab:
00:7a:6a:f0:a2:60:1b:60:2b:66:30:c0:f2:8b:75:
1a:58:67:ee:24:4a:23:09:8d:14:71:8c:8e:d5:29:
f0:90:f4:61:40:c0:b8:b7:b4:cc:9e:d7:9c:29:22:
fa:e3:30:2c:5d:9a:5a:9d:98:d2:3e:ea:4e:6a:98:
65:40:58:50:6b:64:a5:9b:34:d4:fe:4f:4e:2c:cd:
53:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2D:AD:61:3D:CB:2D:6B:E7:15:D7:EA:52:EE:DC:B8:9F:05:FB:91
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9515184d-12a2-49fb-b12f-8c4dfdddf2ad.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.174.128.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f8:a2:e8:87:1f:51:91:9e:45:f1:54:7d:83:e0:c1:06:95:
b0:37:66:dc:4f:9a:88:5f:3a:b3:d5:66:d5:a8:fb:8b:c2:57:
45:63:99:4f:bf:3d:40:59:4d:2d:c3:f1:0b:2d:9f:bf:61:7a:
5e:a3:fa:4a:32:c6:7e:dc:c5:cf:49:41:f7:39:7e:d5:46:d5:
0e:4f:d8:fb:5b:88:8c:a6:e2:44:04:db:a6:ae:ab:a0:75:e0:
58:b7:cd:63:f9:c5:07:4a:58:fe:4f:6c:29:de:3d:a7:d1:41:
c6:12:3d:50:3a:0a:60:4f:ae:6c:ab:67:61:56:2f:58:8d:80:
5a:76:53:11:be:ab:47:da:3a:1f:0d:2e:c2:ab:5a:08:7f:b0:
92:50:01:56:dc:f8:cf:73:4f:a9:13:8f:2c:4f:0c:34:62:0a:
19:a6:77:99:c7:cb:53:5a:75:99:f9:03:ad:ad:da:be:e0:74:
6b:42:e4:ad:02:c9:9b:11:5d:3c:ec:48:af:af:d1:ed:ed:46:
d1:5f:10:4e:74:d9:c9:0c:b3:a4:41:44:15:59:a5:a6:cb:4d:
b4:2b:61:73:49:03:16:c9:ec:5f:77:09:32:e8:e0:60:97:70:
29:6b:38:ee:62:c9:5a:90:5f:51:cf:e7:a5:42:94:f6:07:fe:
5e:87:54:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:42:03 2025 by rpki-client