Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55bded14-b92c-456c-8b35-00e1c490d1c4.roa
File: 55bded14-b92c-456c-8b35-00e1c490d1c4.roa (raw, json)
Hash identifier: uPgMI15etE8y7pzCAbuMLqBM2AHDnQdBZ33pwn2Hgtw=
Subject key identifier: 74:AA:59:68:68:D3:6E:23:E6:D6:69:C1:E6:65:6E:A7:5D:62:27:A5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4F7197B921FF4CD6ACD65075A9FD75EEAF3313
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55bded14-b92c-456c-8b35-00e1c490d1c4.roa
Signing time: Fri 17 Oct 2025 00:42:01 +0000
ROA not before: Fri 17 Oct 2025 00:42:01 +0000
ROA not after: Fri 21 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 121.91.16.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:71:97:b9:21:ff:4c:d6:ac:d6:50:75:a9:fd:75:ee:af:33:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 17 00:42:01 2025 GMT
Not After : Nov 21 23:59:59 2025 GMT
Subject: serialNumber=9588e7c69b7e633262ccbb24eb278d1b079c7c9cd2bb6449681d1e815bdfe4df, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:58:7e:69:3d:cb:ea:10:cd:9a:f4:50:0f:8f:
b5:14:72:3a:6c:c5:5c:3b:bb:8f:82:1b:fd:55:79:
bf:47:0d:4d:7d:75:a1:b5:f4:02:29:51:12:d0:ba:
b9:8c:7f:e5:ac:ee:55:05:f4:82:14:c1:30:59:88:
af:9e:05:74:e9:fc:3b:6e:cb:66:59:1f:cb:55:76:
80:4a:89:96:96:6f:ab:9c:f8:a4:cd:db:9b:eb:d5:
ae:b2:62:fc:27:c2:40:05:e8:4b:a2:73:5e:e1:82:
88:39:04:d4:6d:c7:93:c2:97:65:c6:04:37:14:85:
f0:e8:23:93:1f:39:a9:bd:81:8c:4a:64:c1:a3:87:
84:92:6f:7c:83:0e:64:37:d4:1e:24:e5:39:30:35:
31:6e:6a:6f:1e:1f:fc:9d:f7:ef:86:00:90:e5:82:
1d:85:7a:48:51:47:8d:e8:01:29:3e:9a:97:23:27:
39:80:9b:64:e3:17:5f:37:77:2a:c0:0c:57:25:f2:
94:73:58:03:7e:74:81:75:d2:f0:13:1d:79:cd:d8:
ee:03:4e:6a:f6:16:20:4b:94:82:3d:bc:5f:60:2d:
95:54:bf:a3:54:9b:f3:b8:45:d1:a5:58:47:cd:26:
30:1b:cf:ec:41:fb:0d:e1:f0:e2:d4:5b:82:71:89:
0e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AA:59:68:68:D3:6E:23:E6:D6:69:C1:E6:65:6E:A7:5D:62:27:A5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55bded14-b92c-456c-8b35-00e1c490d1c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.91.16.0/20
Signature Algorithm: sha256WithRSAEncryption
46:02:eb:da:cf:ad:c7:00:6d:db:69:02:98:7e:be:76:c2:cc:
bc:73:ef:0f:97:ec:23:cc:c6:f8:26:bc:32:61:c1:1e:f9:67:
1e:e4:6a:27:60:a1:10:ff:b5:a7:97:ec:45:4b:2c:09:6a:3e:
11:47:de:bc:87:05:d4:c7:4e:31:c2:49:ba:ba:6a:c0:89:cb:
49:f5:bf:e5:93:c2:98:49:78:7f:60:64:d1:28:37:23:7b:76:
ef:eb:b5:33:72:72:f7:02:c0:16:0d:0e:c3:9e:64:ab:3b:6f:
2c:c1:a9:e7:22:a6:6f:55:e6:3f:94:ac:a3:b0:0a:06:61:a1:
36:8a:ab:38:31:c6:79:a2:29:23:9b:a8:e3:4e:fd:7d:a6:14:
90:ab:3e:7e:fe:1c:f5:c2:92:9b:18:01:5e:66:1b:12:73:01:
6e:18:8c:39:3f:5b:7a:f4:a4:e8:6e:ca:c4:13:f0:e7:0f:53:
3e:61:0c:8b:57:9c:d1:69:4e:61:fc:8c:4b:02:19:1d:2b:d6:
3d:63:d1:4c:63:f2:6c:b5:35:78:0b:17:c3:9a:c7:e9:d6:1b:
a4:bb:04:4c:4b:c6:40:a0:d0:8d:b2:0a:e0:e2:66:ff:1c:cc:
14:5d:cc:aa:09:74:1b:bf:42:69:e5:0d:da:7f:3f:3c:71:c6:
64:83:ba:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:19:08 2025 by rpki-client