Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa
File: b2262b90-44fa-401f-842c-4ae44ec786a4.roa (raw, json)
Hash identifier: xyI8xh/HpSA9M+yyh+AGDQLE9fEGoPMv8p4te6BVsi8=
Subject key identifier: 16:27:06:F7:34:71:BB:24:94:63:8F:63:C4:33:CB:78:95:28:36:E5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4997DAC0C7F81291377D12EBE3CD8244F060EB49
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa
Signing time: Sat 01 Nov 2025 00:40:10 +0000
ROA not before: Sat 01 Nov 2025 00:40:10 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 184.73.144.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:97:da:c0:c7:f8:12:91:37:7d:12:eb:e3:cd:82:44:f0:60:eb:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:40:10 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=1ed5694f55d864079882612c7a486a1348bd8ffcc91183b0ae08cd74f7296aee, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8f:ad:f6:c5:1a:31:40:53:aa:3c:8b:e5:b4:
62:7e:fc:45:70:c1:47:20:ec:36:4e:0a:0c:db:c3:
67:c5:62:f1:a0:38:fb:24:70:13:1f:ff:72:26:4f:
3e:6c:1c:78:88:05:ac:88:ee:64:10:c5:30:59:ff:
21:ef:cb:ec:b7:78:a0:38:d9:c1:39:18:4b:5d:df:
67:25:29:27:07:e0:8a:ec:13:3a:68:d8:3b:80:82:
a2:61:98:0c:84:67:fd:6f:74:1d:f4:da:ee:7f:a3:
57:be:ae:4d:f6:99:73:2a:83:09:25:9e:a0:6b:ba:
9c:62:a0:57:f5:ec:c5:a4:8c:25:6b:2a:cc:ba:d2:
bf:1f:6b:5b:16:3b:9e:3c:33:f3:d2:24:27:e5:c1:
c7:6e:86:e3:b8:2e:f9:28:d8:7e:d5:c0:e2:42:c8:
69:45:5b:9d:bf:74:2c:5d:8b:92:67:4c:9c:7a:29:
06:e8:13:c2:72:df:b0:8b:a9:c4:4b:de:53:23:ba:
33:eb:a9:37:81:dc:2f:51:96:14:54:f5:f9:40:b6:
40:3d:2e:9f:c6:f0:a1:89:c8:14:74:05:74:16:20:
b7:4b:cc:a5:66:ea:d3:01:5c:a5:f8:8c:e0:8e:8d:
a9:c7:4c:5a:dd:92:65:b1:47:1a:68:84:3a:02:a2:
eb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:27:06:F7:34:71:BB:24:94:63:8F:63:C4:33:CB:78:95:28:36:E5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.73.144.0/21
Signature Algorithm: sha256WithRSAEncryption
cc:20:a3:84:49:7d:4a:97:f6:92:54:d7:ea:2e:ee:e1:55:eb:
3d:2f:1e:ac:f4:74:ce:1e:1c:38:08:9d:79:65:31:e0:8a:db:
bc:40:88:dd:c6:d9:b6:58:85:60:79:8c:03:00:7d:1c:a4:9e:
46:38:bc:0e:d1:28:65:67:42:5f:fa:b4:f3:ee:07:68:80:08:
70:41:f5:b8:0f:cb:48:59:86:20:07:69:d3:01:b7:e4:76:66:
b7:dd:b3:11:ec:00:da:cc:6d:0e:3b:e6:d7:2e:a1:7f:c6:22:
62:14:d8:b0:d6:7c:2b:7f:a6:f3:4b:91:cc:1a:20:e2:96:a5:
e7:af:f5:99:51:8c:cc:6a:7b:32:f2:51:4f:7a:58:c6:76:e1:
31:42:0e:2b:d3:c4:2c:b5:62:48:da:07:40:e6:cd:4e:ea:72:
ee:f1:3c:e1:da:c4:07:ed:01:c8:e3:a3:7a:89:89:8c:16:ce:
71:41:dd:35:36:ad:4d:6a:1c:db:64:e8:eb:89:d7:05:fe:f5:
29:e3:f0:2c:63:65:84:a5:8a:a5:db:6c:23:71:24:b5:b9:be:
db:f4:a4:a8:dd:06:8c:63:5e:39:d7:e0:a2:77:0b:0b:d0:28:
a6:83:0c:a4:09:cb:a9:e2:cc:47:85:0a:cd:24:9e:85:1d:fb:
f3:84:ac:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:49:18 2025 by rpki-client