Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a72d57-ebe4-4db0-a4c4-fff7925276ef.roa
File: b9a72d57-ebe4-4db0-a4c4-fff7925276ef.roa (raw, json)
Hash identifier: IA9gju04gWXRTeIaD2cVDnDgiaSzCdwafVcm6qYisNg=
Subject key identifier: 58:92:ED:81:78:D0:24:7D:34:4C:7F:C3:5B:BB:D7:35:28:9C:57:B2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 627606BEB5116B48BF69FA5D43709EFC431063D4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a72d57-ebe4-4db0-a4c4-fff7925276ef.roa
Signing time: Wed 05 Nov 2025 00:30:17 +0000
ROA not before: Wed 05 Nov 2025 00:30:17 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 115.176.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:76:06:be:b5:11:6b:48:bf:69:fa:5d:43:70:9e:fc:43:10:63:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:30:17 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=39b705351816cb91d96151f0751961bb431c7f994127a37d7a5a7301ea5a6b20, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4a:27:be:e2:27:f8:52:f1:a3:fc:f5:04:e7:
7f:bd:e9:cb:40:7d:2f:f7:48:c2:1b:92:3d:67:87:
03:b1:15:ee:c4:de:dd:b7:78:dd:42:04:22:e3:40:
b3:84:6a:d0:42:fb:de:ba:0e:b1:bb:1c:58:c0:65:
f3:26:28:28:ed:f8:72:8d:88:1e:a4:98:4a:7f:1b:
5c:12:2c:96:83:d7:37:66:40:90:be:4e:dd:17:92:
5a:f0:b4:f0:21:e0:04:c3:87:49:8c:bf:af:5f:60:
23:5f:d6:8b:7b:98:8e:f2:21:fc:7e:66:d8:ad:8d:
82:3d:1c:9b:4b:3f:52:8c:24:a4:0e:ea:f5:94:c3:
7c:07:cf:2e:55:79:37:ba:3d:0d:8c:57:64:a5:c6:
8e:16:61:71:36:7d:5a:63:e3:fd:97:70:59:4a:2f:
45:41:2e:c2:61:37:60:a0:60:d9:65:0a:93:bb:4d:
8b:07:49:a7:9d:29:83:a9:7c:07:82:5d:10:c5:cf:
fa:f1:ac:78:27:52:9a:7f:0e:90:b8:d1:d1:6c:1d:
a1:33:ef:17:ec:bb:30:7a:43:66:2d:b2:ab:f2:6a:
73:10:4e:1b:dd:04:82:3f:f8:9a:79:a6:0d:1c:65:
19:7c:93:9f:d0:3d:5a:59:1e:98:70:b7:16:fa:05:
b5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:92:ED:81:78:D0:24:7D:34:4C:7F:C3:5B:BB:D7:35:28:9C:57:B2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a72d57-ebe4-4db0-a4c4-fff7925276ef.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
115.176.192.0/18
Signature Algorithm: sha256WithRSAEncryption
1a:bd:99:f6:ed:f7:ad:59:20:30:4b:a9:8f:49:35:65:47:5c:
1d:26:ed:83:4c:39:97:ca:6e:cc:90:c9:29:84:f6:7a:68:59:
ed:61:b0:c4:d2:c2:e1:a7:87:2d:1c:5b:00:f6:3f:ae:c0:e7:
84:42:4a:7a:ef:0f:ea:43:8f:3c:b6:e6:a6:98:6d:c7:74:4d:
ec:e1:f7:e3:97:3d:ee:36:7a:d6:d2:1a:fd:a6:bf:73:86:de:
b4:14:cf:2e:09:d1:bc:f0:41:a2:5a:58:f8:3c:ef:53:6c:e8:
49:b4:5a:6e:63:13:74:34:93:17:5d:ff:75:62:51:2f:f7:aa:
c2:c1:fa:6f:84:a0:85:a2:0c:e4:20:ff:79:6d:b1:ed:9e:14:
1e:16:7a:db:db:3b:ed:1e:96:18:bb:da:4d:d6:6d:5e:33:41:
7e:db:ff:15:2c:8e:be:16:cb:08:1e:42:44:18:67:0c:5c:a0:
33:57:50:09:46:6a:02:c7:0b:62:1a:40:f8:92:9f:04:8b:8a:
e8:05:15:8e:f5:a1:81:56:f4:8b:93:be:10:3d:35:36:81:60:
34:29:44:5c:41:10:d2:71:d2:e2:52:2d:13:5c:19:88:bd:df:
58:15:b0:4e:14:89:3f:9e:78:3a:51:7f:79:b4:f7:4b:5c:b7:
5f:bd:d0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:55:37 2025 by rpki-client