Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa
File: acee793e-e4d8-4c60-8711-8877a8378aa0.roa (raw, json)
Hash identifier: yQVW7l1fkG1JHckXNFc1M8RiZguU0jG2qz2BVkL/UKw=
Subject key identifier: 2B:9D:2D:3D:A2:8C:99:BF:A8:3E:52:CA:7D:70:E0:D7:82:AB:54:4A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5405D397CEE90F4DAFAE964F5631BD25AEA81AB2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa
Signing time: Fri 31 Oct 2025 00:20:09 +0000
ROA not before: Fri 31 Oct 2025 00:20:09 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 14618
IP address blocks: 44.216.188.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:05:d3:97:ce:e9:0f:4d:af:ae:96:4f:56:31:bd:25:ae:a8:1a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 00:20:09 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=42df052baa0ce3cd5c77abe6846f4816da2208142a387af3e205748946c90f2f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1f:91:b1:93:eb:bd:c3:e3:df:b7:3a:5c:72:
e7:fa:73:e4:17:dd:a2:01:5a:95:37:e6:4d:32:25:
62:3b:e0:83:f9:ac:84:6d:35:06:ee:4d:03:cd:65:
16:a4:84:b8:4a:60:05:52:3b:ff:02:2b:af:30:58:
67:27:f9:5c:34:cb:8e:14:0b:fb:21:b2:ae:0e:97:
ec:07:25:04:88:9c:4e:98:2f:02:a6:3d:13:f5:b7:
51:b5:72:1e:8d:87:93:b0:ed:ec:02:18:c9:d3:78:
95:9f:a0:5c:d8:46:e9:8e:03:67:a5:68:24:fe:eb:
c5:a5:59:87:19:65:e6:83:aa:a5:cd:b6:0b:81:96:
eb:af:3f:d9:98:9a:03:a4:e6:f6:e3:83:0b:9b:a8:
2e:c9:19:4e:79:d6:c7:98:e0:2a:de:b1:de:95:e3:
99:bc:14:b0:b3:16:2f:eb:cb:cc:94:41:55:77:73:
5c:8f:18:ef:bb:82:30:aa:35:ee:ca:98:79:7a:16:
92:60:bd:4d:47:d0:a4:47:8f:c1:84:43:70:a4:6c:
24:85:b6:56:93:c5:0b:b8:3f:8e:90:15:02:56:aa:
53:aa:05:8b:08:9f:60:5c:ec:7b:86:cc:69:2d:c6:
e3:3c:5a:cc:37:a8:6b:0c:2e:65:1d:83:ce:57:96:
02:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9D:2D:3D:A2:8C:99:BF:A8:3E:52:CA:7D:70:E0:D7:82:AB:54:4A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
44.216.188.0/22
Signature Algorithm: sha256WithRSAEncryption
31:e2:ca:78:8e:05:a3:9c:f4:06:0c:a6:fe:78:6f:ac:62:36:
15:02:22:26:89:32:5f:d6:1b:34:e1:3b:44:cc:a7:45:a3:84:
06:df:64:6f:99:7f:7e:54:1b:cf:c4:48:c1:1c:fa:cd:d9:37:
85:bc:ab:55:c0:ca:95:14:38:0a:2d:d4:c5:27:5c:75:29:ae:
e4:b8:b4:72:00:ca:0a:97:03:c2:05:85:f1:6b:22:0a:ff:39:
33:7b:e7:98:71:8d:26:31:68:a9:ac:93:e4:8a:2e:ba:ed:88:
34:27:fe:6b:8b:d3:90:1b:1e:c6:dc:31:03:4d:03:e2:24:65:
5c:70:89:fe:8c:d6:d1:3e:d5:3a:47:c4:f2:68:41:0d:74:ec:
13:62:11:cf:98:4b:43:ba:f0:a0:48:53:5c:05:b4:fe:12:9e:
ce:06:3e:2d:96:1f:15:2a:b8:30:d2:76:2f:12:46:b5:6a:0f:
81:fe:bf:90:01:72:3e:e2:d6:26:79:49:50:29:79:3d:1c:8c:
56:07:b4:52:99:8e:55:43:e1:3e:07:f7:b1:37:a8:7e:eb:fa:
a9:68:ef:b8:a0:c7:21:06:fb:e6:19:38:99:33:fb:dc:7f:1c:
43:cb:46:58:01:14:cd:dd:33:1a:ef:53:9a:f8:a5:64:73:f8:
fd:0a:b6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:47:13 2025 by rpki-client