Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa
File: ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa (raw, json)
Hash identifier: lRkM0YVBsrppJl1FOrgkiuAq4smEu6SxPoG6kDbsMkA=
Subject key identifier: 00:B0:34:55:51:8D:05:D6:CE:1E:4B:58:98:28:65:EA:FE:87:2C:DB
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2C53DB30B55F674C2B4404A817AB0115C37D29A2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa
Signing time: Tue 21 Oct 2025 00:50:59 +0000
ROA not before: Tue 21 Oct 2025 00:50:59 +0000
ROA not after: Tue 25 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 149.164.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:53:db:30:b5:5f:67:4c:2b:44:04:a8:17:ab:01:15:c3:7d:29:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 21 00:50:59 2025 GMT
Not After : Nov 25 23:59:59 2025 GMT
Subject: serialNumber=b0892674539aaad1bad0c533bb9ccb2287753934e5ea386c5c8806573fec664a, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:02:0e:a1:cb:dd:79:7c:5c:25:45:1b:a6:74:
b6:60:15:06:43:91:51:3e:7f:b1:32:8a:30:ce:cb:
12:6e:a2:36:f7:d9:3d:4e:c6:cb:62:31:03:46:9f:
28:da:d7:48:6f:fd:f4:5f:ab:f9:10:01:ab:45:cf:
73:8a:a0:e0:bf:8b:7b:5a:ac:80:2a:2d:53:be:8d:
3d:fd:35:21:1d:83:25:ca:3f:2b:0b:5e:a8:80:68:
32:b2:2f:32:a8:b8:b2:88:03:73:ac:41:d1:87:3b:
bd:f0:a5:38:4f:7a:b9:ab:15:32:2a:7a:e0:b3:50:
06:87:d3:17:f6:26:1a:65:2e:96:a7:f6:0e:6a:eb:
b8:12:07:9a:31:6c:f0:f0:e3:85:5d:71:78:d3:9d:
85:76:aa:f7:a2:b6:09:2f:34:4f:fc:ee:61:96:90:
ea:59:9c:78:15:26:7d:ee:ab:7b:b4:61:c7:bf:c6:
8b:62:80:e1:98:e5:d4:b4:17:8b:75:0d:15:b4:4d:
31:ec:8f:2f:80:52:25:cc:f1:5e:07:30:f0:37:57:
b1:ea:d4:e4:1d:91:c6:2e:b5:37:aa:ee:90:71:96:
0b:e1:e6:99:d4:f1:1a:39:9b:de:88:33:1d:82:5f:
86:94:7f:aa:92:a2:0d:42:e7:11:44:3d:44:e7:10:
fb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B0:34:55:51:8D:05:D6:CE:1E:4B:58:98:28:65:EA:FE:87:2C:DB
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.164.0.0/16
Signature Algorithm: sha256WithRSAEncryption
90:1b:61:1c:0e:3f:25:2d:fa:ef:ed:b7:78:5f:6d:88:0a:ca:
84:06:c9:33:8f:45:27:4e:fa:e4:8a:a8:62:c0:34:7b:da:ea:
2f:fd:2f:3f:ca:6a:f9:a1:b1:b9:27:95:c0:4a:6f:78:b5:dc:
e3:48:48:1b:7f:f1:22:c6:b1:8b:1d:70:9b:8e:2a:5e:92:7a:
73:31:5a:ba:14:78:34:31:a8:67:71:82:b7:0b:a7:c9:77:ae:
89:0f:26:d7:61:7e:2d:21:b3:8e:3b:5b:da:5b:0f:7a:87:7f:
b7:8d:67:d9:2f:f8:e6:09:d0:52:43:fa:95:fa:b6:78:ec:ff:
41:77:73:16:76:c5:df:ae:ab:0d:7c:c4:c4:96:96:df:b6:ec:
25:80:42:a4:8f:42:bc:65:99:ea:3d:b3:94:b6:d9:3d:01:dd:
3b:e3:88:ed:b1:a4:ec:3b:e8:cf:fa:a6:d1:d5:ee:58:54:3b:
d6:37:6c:24:d6:33:9f:31:2e:ca:ad:48:8e:18:72:ca:c7:1b:
63:ae:0c:2c:e1:66:25:5f:33:dc:01:28:85:24:18:fb:f0:40:
90:3e:ba:e0:62:af:e6:ac:6a:8c:43:d9:87:ee:de:f5:b0:5b:
b7:77:d1:a6:e5:e4:8e:b6:c8:3f:ac:82:fb:68:03:d8:7c:4e:
e0:3e:ad:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:42:02 2025 by rpki-client