Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5463aea-d087-4710-97eb-30bb5ffa528b.roa
File: a5463aea-d087-4710-97eb-30bb5ffa528b.roa (raw, json)
Hash identifier: JReax089LMncDayfGFPEldc+JKuZHIVxI7Lza3Kgw+E=
Subject key identifier: AF:EC:FF:C9:85:A2:77:C2:46:6D:12:AF:C8:61:9B:3C:C4:17:E0:12
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 62551F749FC0D933E38648F149757194560B165E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5463aea-d087-4710-97eb-30bb5ffa528b.roa
Signing time: Mon 06 Oct 2025 16:12:57 +0000
ROA not before: Mon 06 Oct 2025 16:12:57 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 7224
IP address blocks: 31.220.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:55:1f:74:9f:c0:d9:33:e3:86:48:f1:49:75:71:94:56:0b:16:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 16:12:57 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=a2b0aca51ee867f0acaf3579a357791399bcf550b2acaa0f294293e2c4ffee9d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ce:48:e1:95:5d:61:fe:d8:f5:47:8d:cd:b4:
8e:a4:75:09:27:24:df:28:9d:5b:a8:d0:a4:ce:5b:
2c:27:4e:de:5d:6c:d8:0e:e0:4e:51:45:68:f2:91:
a5:2a:bc:52:98:f5:46:9f:20:cf:87:90:a6:b1:b6:
67:dd:a6:f4:9a:e4:36:a2:ef:d2:6f:26:db:8a:a1:
18:a0:93:0f:be:b1:eb:07:8b:67:89:a8:1e:77:d7:
54:7c:76:28:f9:80:64:74:f3:b4:f8:ce:37:48:ba:
2c:f9:e0:71:45:cd:68:af:26:21:49:b4:8d:05:b6:
7c:eb:43:0e:54:97:c8:bf:66:27:e3:0f:75:71:23:
b0:6c:d3:85:8e:77:1a:46:83:c2:f4:db:8d:24:b6:
f0:bb:5f:49:58:ab:f4:b1:dc:72:a0:05:ee:1f:28:
06:43:3e:1e:3e:6b:5a:03:03:fa:ec:0c:31:8e:84:
fc:e1:26:d3:62:1a:5e:14:2a:c7:37:6b:89:e5:b8:
af:6d:fa:92:89:26:09:ef:70:d5:7c:b2:b1:34:63:
4d:6f:09:2f:da:5f:fd:2b:97:3d:bc:53:d4:56:8e:
c2:c4:c8:5c:8b:72:f1:ed:6b:bf:ae:bc:c8:64:d0:
e2:13:01:9d:e6:f1:70:8a:8b:c1:83:d3:a1:15:7c:
af:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:EC:FF:C9:85:A2:77:C2:46:6D:12:AF:C8:61:9B:3C:C4:17:E0:12
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5463aea-d087-4710-97eb-30bb5ffa528b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.216.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:17:51:46:74:59:d7:20:c1:ed:88:0d:bd:41:2f:b9:db:51:
41:75:4d:f5:61:2e:b5:a1:8c:8c:57:f0:29:3c:bf:df:46:90:
0b:f3:a7:e6:2c:7d:f5:3a:30:79:bc:6b:40:e8:ae:e8:50:55:
5b:70:65:b6:e7:ff:08:8c:1d:09:c0:71:75:7d:6c:77:15:3c:
6c:5d:a2:f8:2d:21:8e:78:a9:e3:4d:51:06:74:e3:c9:44:66:
11:27:ea:fc:63:c0:37:7d:7d:44:02:9d:a8:70:90:50:ef:4e:
1e:61:4f:8e:91:5a:91:dd:5a:4d:04:df:4e:42:86:a9:c9:0a:
ad:24:55:87:e2:85:f1:db:e2:b0:5b:0c:8d:69:54:cd:b3:a6:
74:91:98:b0:ce:bc:14:7f:9d:b6:46:dc:ae:9e:cb:81:22:98:
67:0f:54:a0:9f:d3:8d:34:81:0e:b7:7d:41:1a:02:eb:d3:4c:
54:eb:89:fb:b1:11:84:c2:f8:18:3d:ce:34:9f:91:43:8c:3a:
17:77:22:60:a2:7e:88:05:24:54:1c:fa:24:3a:62:81:ac:8a:
fb:d8:fa:d8:b5:8d:60:c7:06:df:ea:48:8b:3d:bd:5f:56:a6:
5c:ec:4f:8d:49:a5:f3:3c:1f:26:29:9e:01:23:8d:f5:43:a8:
22:9e:50:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:17:30 2025 by rpki-client