Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e7416a4-4897-401e-b597-780bb34b5685.roa
File: 0e7416a4-4897-401e-b597-780bb34b5685.roa (raw, json)
Hash identifier: eg9jTSIpumovyggKm6wQgYRYAYMjAuvhm7zck237Ao4=
Subject key identifier: F5:DD:86:46:CA:BB:CC:88:94:2E:76:54:C3:E2:56:2C:7F:3E:74:C4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5A262F85050AF599BE88E7515A5D49FB11C16D4B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e7416a4-4897-401e-b597-780bb34b5685.roa
Signing time: Tue 07 Oct 2025 00:21:39 +0000
ROA not before: Tue 07 Oct 2025 00:21:39 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 155.50.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:26:2f:85:05:0a:f5:99:be:88:e7:51:5a:5d:49:fb:11:c1:6d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:21:39 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=b29b864f8f00adb55cc5c37ddcd7ae24fcf1c21660eee6c35c2d1f0eaeec24b6, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9f:9b:68:7e:f1:92:a9:17:fd:aa:b1:52:2f:
e8:58:d8:84:a4:5b:48:c7:b1:5b:8a:19:ec:c6:3c:
3d:24:38:ef:48:96:69:75:0c:b7:5f:01:83:df:c2:
1f:c2:3e:99:ce:2f:09:d0:8b:20:b4:a2:a7:36:ae:
93:5f:ca:94:6f:a7:e3:0f:b6:35:84:5a:ce:36:f8:
64:db:f0:8c:26:09:10:f1:02:e9:d3:c3:7a:87:b1:
a7:2e:6e:a6:77:33:f9:c9:5e:a9:4e:8a:32:45:65:
50:42:db:20:15:28:d9:07:0a:a3:3c:70:83:f2:94:
c6:aa:68:63:02:f9:9d:14:1c:16:3b:47:bd:d5:32:
1c:0f:8d:cb:db:f9:6e:a4:a2:df:d6:51:2b:1a:44:
ff:12:06:64:06:21:d9:42:79:0d:46:66:b6:4c:36:
4e:d6:ae:c6:1a:62:5d:8b:68:fb:27:b3:6b:74:03:
c2:08:70:42:25:cc:ba:76:cb:e7:34:3d:12:31:3f:
e9:bb:37:98:90:9e:89:8a:2e:b6:ed:9f:7b:ad:b5:
a5:92:60:4f:88:ed:ac:8d:e1:7b:14:d5:85:49:69:
43:bb:69:60:4c:0a:4d:52:22:c3:11:9c:02:66:19:
32:cf:79:d9:d9:e7:ef:13:55:3f:28:4b:7e:f2:cc:
cd:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DD:86:46:CA:BB:CC:88:94:2E:76:54:C3:E2:56:2C:7F:3E:74:C4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e7416a4-4897-401e-b597-780bb34b5685.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.50.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1a:04:f1:d1:94:4e:25:29:27:9b:32:be:69:2b:3d:12:e3:0d:
db:4b:38:84:3a:6b:4b:2a:ed:f8:7d:db:2d:a2:c0:9b:0f:43:
49:fd:81:50:f0:eb:2d:3f:9a:ab:ae:e1:65:a3:42:92:7b:ff:
99:d0:2e:cf:e5:51:0b:d9:5e:e7:fa:84:d4:76:76:08:a8:2c:
b0:d0:f3:d3:82:7b:dc:ea:8c:52:08:54:9c:08:23:7a:84:4d:
3e:1e:b2:f0:b9:a1:95:9b:dd:65:81:5d:ee:51:78:48:9b:0e:
c6:d8:0f:3b:f7:82:c2:88:1b:0f:21:e4:84:87:33:ec:88:dd:
a7:45:54:b7:d1:9c:bc:83:47:e0:9d:3c:cb:e0:58:8d:61:7d:
3e:95:c2:b5:b0:a4:9c:d7:24:5e:0e:4d:0a:fb:82:78:e7:12:
c4:35:e7:eb:bd:e0:a1:13:5a:3f:3d:34:15:fb:35:04:46:45:
5c:65:ed:1d:e3:6e:81:c7:bd:81:19:2b:74:65:23:b0:a3:f6:
88:d6:54:b0:55:11:51:c8:5c:f2:ef:e5:80:47:88:6b:9b:63:
5b:c7:90:23:e7:d6:ab:f4:df:69:aa:fc:79:20:e2:04:16:c3:
6b:32:a0:99:49:5e:29:e3:f2:d4:d1:52:67:d3:c1:69:b0:ce:
80:20:02:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:13:26 2025 by rpki-client