Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d75cd08-0c7d-4f94-95c0-fecefa49530a.roa
File: 0d75cd08-0c7d-4f94-95c0-fecefa49530a.roa (raw, json)
Hash identifier: I5k1PSwy332wt/E6LKaLcKFUqeBSDK1E3iafjkq7kWc=
Subject key identifier: 89:1E:81:57:09:1F:BE:CF:16:81:3A:EE:4F:86:D6:CA:61:5B:AA:6D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 18D1EE2C863EA35CDD492BC61F5431018E5BDAA1
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d75cd08-0c7d-4f94-95c0-fecefa49530a.roa
Signing time: Sat 27 Sep 2025 00:01:17 +0000
ROA not before: Sat 27 Sep 2025 00:01:17 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 203.88.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:d1:ee:2c:86:3e:a3:5c:dd:49:2b:c6:1f:54:31:01:8e:5b:da:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:01:17 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=b97a47fdb3013af1653d8fcfafaf079ff4c4558120e3b39f047b641d99e21741, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5f:df:46:5d:a6:03:9e:cb:9f:17:95:5d:d0:
0a:1d:15:b6:0b:cd:92:cb:a7:ce:2b:b4:68:7d:fc:
5c:43:63:eb:c1:6f:05:a9:58:aa:a8:55:9d:af:3f:
f0:26:93:4b:db:55:d4:f0:85:55:89:9d:40:f0:ee:
c3:24:06:88:ad:13:d7:03:77:fb:42:9f:88:68:61:
dd:cf:00:7e:90:13:f5:9d:1e:ad:87:97:87:a7:2a:
64:45:8b:03:f5:b2:b4:70:fd:15:26:68:0b:a0:f5:
5d:44:b5:5d:f4:b0:f5:b0:db:66:d0:86:85:eb:6a:
c9:f1:f2:17:82:1d:5e:8f:dd:12:fb:54:7b:56:3e:
c7:5c:23:39:5a:ed:50:bb:8c:8b:20:71:69:5f:97:
6a:a1:20:56:f5:17:65:d5:01:21:b9:2d:8c:00:01:
2a:84:4a:ef:e4:17:07:7e:59:b7:66:4a:8a:78:cb:
a0:0d:cc:64:1b:7c:fe:40:02:10:db:5c:35:be:a4:
8c:75:0c:68:1e:c5:2b:67:64:a3:5e:89:34:a7:87:
de:49:f1:11:d4:67:97:cb:d0:58:e4:0f:02:c5:86:
de:e0:28:81:38:58:af:b7:68:6e:ee:ef:84:c5:ec:
a5:57:e5:86:5c:ec:cc:f9:fe:79:43:65:09:97:29:
3f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:1E:81:57:09:1F:BE:CF:16:81:3A:EE:4F:86:D6:CA:61:5B:AA:6D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d75cd08-0c7d-4f94-95c0-fecefa49530a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.88.91.0/24
Signature Algorithm: sha256WithRSAEncryption
65:02:52:ee:51:2c:ed:4f:b1:58:7c:3b:b4:68:7a:87:28:ff:
6d:46:83:82:d5:e7:24:f5:2d:04:c8:39:3e:d1:22:fb:34:6b:
2d:dc:15:97:81:bf:9f:e5:6b:9f:c0:36:40:91:7c:6f:54:09:
17:ee:18:c4:9b:7f:60:84:56:61:56:92:5c:59:e6:10:06:94:
be:97:af:51:f7:3f:ee:e2:06:fe:e8:27:ee:98:c9:df:ff:39:
f4:de:55:8b:30:72:50:10:83:67:4f:3d:bb:d2:c8:05:9b:4e:
5a:5e:9c:27:45:5e:c1:b7:56:a5:c8:86:1a:4c:26:ce:f0:47:
5f:4d:93:e4:80:67:6a:a8:63:05:b8:9b:1b:77:2c:94:b9:f5:
67:b3:1c:0a:c6:68:a2:16:ba:93:f9:1e:a1:f9:e6:8c:c5:32:
eb:2f:9c:65:02:d4:77:62:05:1b:ee:10:c2:17:d4:b5:b8:0f:
fb:6a:50:3a:a4:16:26:d0:a2:2c:90:9a:f8:8f:77:02:04:f8:
4a:a9:98:7a:04:bd:89:7f:53:b6:54:3a:db:41:40:79:7a:63:
9c:1a:79:19:46:b7:3d:4d:5f:7f:a8:94:6c:24:8f:e9:b2:a5:
4b:e6:1c:26:f5:a0:67:7e:86:c3:da:98:d4:62:12:3b:64:c3:
9b:a1:57:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:42:57 2025 by rpki-client