Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2cd4340-f8db-4c6e-a844-f4a2db0f0021.roa
File: d2cd4340-f8db-4c6e-a844-f4a2db0f0021.roa (raw, json)
Hash identifier: PjCpaSmEmZbJnCdUB/TJRrmkMcDJvkwoMg/Ma4JGm4M=
Subject key identifier: 3D:EB:5C:2C:8E:5B:D8:8D:8A:02:E5:EF:A0:FC:2D:CF:B1:02:38:58
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 718C51C95C140023AE815908F6870EE9C052D144
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2cd4340-f8db-4c6e-a844-f4a2db0f0021.roa
Signing time: Wed 05 Nov 2025 00:20:49 +0000
ROA not before: Wed 05 Nov 2025 00:20:49 +0000
ROA not after: Wed 10 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 203.110.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:8c:51:c9:5c:14:00:23:ae:81:59:08:f6:87:0e:e9:c0:52:d1:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 5 00:20:49 2025 GMT
Not After : Dec 10 23:59:59 2025 GMT
Subject: serialNumber=56e66ebedffabefc6ead606037acd06aa815cc33320adbfb00fa28fbb2ea54b9, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:44:66:bb:5b:5a:ef:f6:eb:7f:62:1c:1b:ad:
d3:63:af:1b:4c:e3:0c:82:fe:b9:d1:4e:87:59:79:
08:82:13:6d:9e:8b:1c:e7:78:de:d0:47:39:5b:33:
20:26:7f:a8:a0:27:65:7d:a9:b3:6f:2c:c9:06:a5:
f0:6a:d7:eb:2f:7d:01:6e:f8:5a:dc:0a:e3:60:2e:
fd:e7:e4:e9:2a:69:b7:13:80:f6:a9:e2:f1:b3:9f:
57:15:f1:18:1d:90:8d:b9:08:d4:7c:91:a7:f2:be:
28:30:9f:b8:f1:36:f4:61:fe:6f:df:5b:e2:d7:35:
5e:18:90:2a:03:66:ef:d7:62:9f:64:60:db:18:84:
ba:fe:0d:5e:cc:e5:f0:07:18:e9:c0:70:f5:ed:96:
89:ae:1c:ef:d9:8c:fb:29:3f:cd:16:dd:c1:ba:37:
60:6c:c6:79:ea:72:fc:bd:27:7a:75:da:ce:16:cf:
bc:34:d6:8a:b0:dc:e8:66:0f:0f:c4:91:68:1e:5d:
1a:da:2c:05:fa:02:4e:70:e8:2b:de:27:12:3b:11:
2c:6c:43:e3:4a:77:8c:35:6a:dd:9c:3a:e0:00:d5:
8b:5f:5f:5f:10:86:bc:2a:e4:10:68:df:31:4b:a2:
85:19:0b:69:c9:cb:1f:20:f0:e3:6d:f4:ce:bc:f5:
f0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:EB:5C:2C:8E:5B:D8:8D:8A:02:E5:EF:A0:FC:2D:CF:B1:02:38:58
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2cd4340-f8db-4c6e-a844-f4a2db0f0021.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.110.192.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:43:77:e0:54:62:a7:8c:14:f6:05:54:45:50:cc:83:cb:f0:
49:28:53:86:6d:39:9b:6a:38:fa:8a:d8:d8:82:bc:d9:dc:15:
60:ba:b9:49:ea:17:ee:b7:c1:f2:db:b4:85:ad:fc:1c:4b:a0:
73:58:78:01:d2:a7:5c:2d:35:43:4c:85:df:26:00:4b:bc:ed:
6b:bf:e9:dd:2e:77:79:46:8a:92:ed:78:86:ef:2b:f7:33:92:
b3:9b:24:68:01:b4:f6:bb:41:0b:53:da:56:07:18:02:85:ba:
33:b1:79:64:43:2d:92:61:ac:8e:0d:7c:89:50:8f:8d:8d:25:
f3:89:42:ce:aa:7a:9e:4e:dd:67:91:ba:b1:34:1b:04:b5:c6:
97:58:2a:2a:06:12:3f:3a:34:7a:98:07:e7:1a:01:c3:11:a3:
de:17:cc:15:39:dc:23:df:8c:6c:97:b4:32:db:9a:30:0d:bc:
9e:d2:9e:96:c1:c1:83:58:46:a8:29:9a:1b:9f:30:68:8e:68:
44:5c:df:07:60:fe:ad:b5:18:b9:72:89:86:79:75:d8:a8:4f:
b8:2b:54:ab:e3:96:52:ff:c2:0d:88:91:87:c2:06:a4:29:a0:
fc:99:57:d3:c0:a0:2d:4c:dd:87:5d:d3:32:ee:52:37:3a:42:
7e:d5:ba:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:44:14 2025 by rpki-client