Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa
File: aa346539-ccae-457c-905d-9a4a3ea91dd1.roa (raw, json)
Hash identifier: 99trQbea5fqcfGVuynuhpvmnP0IcGBXCwju/ekhJst8=
Subject key identifier: CF:C5:B2:9B:C2:3B:B5:A9:7D:0A:F6:76:49:BB:F5:31:B3:3A:CB:C8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 28A0634AB460F8DA3107E2D9870BA807B0E35300
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa
Signing time: Sat 01 Nov 2025 00:50:05 +0000
ROA not before: Sat 01 Nov 2025 00:50:05 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 184.72.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:a0:63:4a:b4:60:f8:da:31:07:e2:d9:87:0b:a8:07:b0:e3:53:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:50:05 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=50902e1a9efd8d8fb59ed69cec83373139c5b2ac54f4774c8905e1cc8ec3f36d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:28:86:87:c6:dc:c4:9e:31:db:6a:8a:50:ed:
ae:6c:e8:88:72:7f:d5:ce:3d:ce:b0:0e:2a:d8:be:
bf:12:0b:7e:68:6c:c6:22:7a:8f:aa:e5:70:e2:3c:
dc:a9:ed:40:30:8d:33:44:08:60:b1:56:ed:68:73:
9d:6c:54:91:32:8a:e2:de:bd:0d:69:f9:54:53:d9:
6b:f5:ba:5d:98:14:89:ef:f3:9c:de:14:70:55:fc:
9b:6f:19:1c:b3:9d:76:3e:8b:86:ad:01:5a:cf:29:
16:1a:f9:bd:a9:6f:c9:56:64:d5:ab:e9:a8:3f:ac:
02:98:8f:16:25:f0:8b:fa:ea:97:f3:30:e3:f2:f9:
94:fa:e1:f5:3d:84:0e:98:18:6b:17:c9:5a:b3:84:
dd:5d:59:4b:a5:26:02:df:f5:20:f6:64:58:4f:29:
74:53:a1:e7:7b:a6:d3:4b:6a:fb:a0:85:f0:41:fd:
ba:f8:89:ba:72:2f:73:0c:f7:9a:04:a2:39:74:cf:
bf:da:e1:8a:7c:6f:b5:fa:66:9b:4b:dd:73:a4:f0:
cd:be:1e:eb:59:9b:e3:9d:2c:96:7d:2c:c9:95:f3:
98:d1:0f:33:2a:08:9b:e6:61:73:ed:5e:5a:84:58:
3e:43:22:9b:d7:2f:97:6c:d0:18:d7:57:82:6b:e8:
37:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C5:B2:9B:C2:3B:B5:A9:7D:0A:F6:76:49:BB:F5:31:B3:3A:CB:C8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.72.0.0/15
Signature Algorithm: sha256WithRSAEncryption
45:41:92:d6:4d:6d:0d:4f:84:7e:a4:fc:c0:40:4f:5c:08:1c:
1e:e5:a7:b5:9a:9d:6f:c0:13:a8:2c:62:73:03:f1:19:6d:6d:
26:07:c6:20:23:45:3b:7d:7a:5c:ae:cf:6a:c9:71:c7:7e:b6:
33:c6:f8:fc:37:3f:2c:d0:6b:97:fe:58:78:16:d0:46:3e:b4:
f7:af:77:53:df:03:1e:aa:89:40:47:0d:e9:91:86:61:6e:02:
90:06:c9:2f:dd:a4:93:61:4f:2c:d9:6c:cc:ae:98:42:93:f0:
da:7d:74:60:26:87:65:0c:ad:f0:bd:48:12:06:ef:99:19:19:
da:e9:03:37:18:b4:47:3c:dc:55:5d:19:98:ea:8f:64:ab:88:
e3:af:f6:b4:50:be:b5:76:d9:4d:69:1f:c2:00:be:5a:a6:e1:
91:c3:9a:34:0d:49:8a:4c:ad:83:d1:17:d3:86:18:23:94:29:
53:e1:c6:c7:01:87:d4:81:ad:a5:28:5c:c5:a3:7e:1c:59:83:
03:fb:5b:0e:84:f1:51:c3:23:6f:c3:c5:8d:f4:6f:be:96:27:
74:ca:95:9b:cd:6c:c8:0d:23:b2:b3:e6:00:77:74:20:e9:fe:
27:5b:47:8e:15:7d:79:13:66:09:61:e6:c7:fc:b4:4f:f5:42:
6d:6d:49:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:45:39 2025 by rpki-client