Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa
File: bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa (raw, json)
Hash identifier: sN127drzopyWhM2Fe6b7xfqwghSF21t8oaIN5bAPqU8=
Subject key identifier: C9:60:20:08:9A:D7:4F:BF:76:E8:70:35:5B:77:DB:1B:4C:9B:FC:13
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 456E667F6E4BAE44D42381C637FB68D05C934F85
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa
Signing time: Sat 11 Oct 2025 00:39:21 +0000
ROA not before: Sat 11 Oct 2025 00:39:21 +0000
ROA not after: Sat 15 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 203.110.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:6e:66:7f:6e:4b:ae:44:d4:23:81:c6:37:fb:68:d0:5c:93:4f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 11 00:39:21 2025 GMT
Not After : Nov 15 23:59:59 2025 GMT
Subject: serialNumber=c2af057ed7fcd708c7f95ec41d913dc69f80840455524d62e2e7ab7e24e2b419, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e7:a0:64:d3:49:17:98:67:bf:2f:1d:64:8e:
fd:c2:3d:4e:ca:19:98:fd:5f:e0:da:43:01:06:82:
f3:4f:75:4a:80:73:0e:43:18:ad:e0:14:75:59:39:
3c:c2:20:75:6f:2f:92:d1:77:21:93:19:e4:4a:ed:
c3:63:46:f6:8d:ae:2d:6c:a3:33:97:cc:03:84:f3:
32:d1:af:83:a9:ad:1a:d3:31:87:93:81:b0:9c:d6:
85:8c:64:2b:d1:e4:03:5d:49:00:5c:a5:bb:2c:2f:
b3:41:a3:de:6c:85:ac:27:c9:53:0b:b6:7a:36:76:
aa:be:bd:10:ef:63:c6:7e:72:32:4e:f2:75:41:46:
4a:8f:88:fa:41:96:38:b7:5e:24:02:45:fc:7e:9b:
c7:db:2d:ee:bc:72:73:32:9d:ae:2e:31:f0:79:9e:
a9:2f:d2:bc:18:6c:11:c8:a8:89:b1:6c:54:29:0a:
73:5d:56:5e:7d:20:3a:ad:1f:cb:cd:bc:73:5e:bc:
df:35:07:ad:26:81:da:40:43:fc:7e:60:81:6d:05:
85:09:7c:e4:49:0c:3b:a6:32:d7:fd:1c:e7:77:5f:
e3:84:4f:bf:8a:6c:d4:d5:9d:71:10:c1:3c:7e:5c:
6b:4d:76:a3:2a:a7:05:7f:e9:b1:88:2b:4e:af:6d:
48:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:60:20:08:9A:D7:4F:BF:76:E8:70:35:5B:77:DB:1B:4C:9B:FC:13
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.110.198.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:f8:60:2b:d2:34:82:48:bc:d3:6c:75:9a:b2:78:29:87:8b:
bd:8a:46:c1:db:cf:c0:32:05:db:56:85:8e:1d:ea:a0:60:92:
7b:59:63:44:cd:f4:d2:35:d4:ee:4b:7a:48:40:c3:e1:32:cc:
a5:f5:d5:c6:9a:50:e8:ef:f1:a2:cd:5c:5f:60:62:d9:1a:05:
65:76:7e:51:73:84:21:8d:ad:63:d0:5d:03:5d:50:c8:fa:88:
a2:e0:15:74:a8:32:64:e9:18:00:a1:de:6a:dc:da:a0:8d:fc:
f2:a3:0e:ee:e0:48:cd:29:1b:c8:25:d3:c9:9e:79:9c:54:f2:
78:a2:8e:be:a9:c3:77:59:70:ed:1b:65:aa:76:22:b7:1c:13:
ea:95:fb:ae:ee:e8:9c:0d:24:de:b5:49:5b:3d:30:6d:a2:73:
0a:e3:6a:9e:d5:fe:f7:ff:3a:2a:cc:fc:a2:b3:41:0f:c3:c8:
d5:d8:7a:2b:5f:6f:f0:68:3a:12:96:7b:ba:a4:95:34:4e:e1:
56:87:ef:c6:5e:04:70:08:32:9e:74:01:15:bb:b9:8d:d5:cf:
27:b3:58:8d:45:79:bc:c6:67:a2:fc:2f:7e:57:c7:3a:c0:22:
5f:7f:92:9e:d0:79:7d:e0:37:23:f3:58:78:96:1c:11:4c:70:
35:8a:bf:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:39:31 2025 by rpki-client