Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4c4795-22e8-4d68-ae7d-e133fada7905.roa
File: 0e4c4795-22e8-4d68-ae7d-e133fada7905.roa (raw, json)
Hash identifier: 7DR4hy8fqCM/k/M8zTsIb1OOzIUSj1TJUTiZKQmhS7g=
Subject key identifier: E1:0B:F5:61:E7:A2:AB:3E:BA:82:D0:20:27:E7:05:65:39:4B:8B:C4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 56F0EFE506CF0E050DF87D25221A4E3AB66DF3C5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4c4795-22e8-4d68-ae7d-e133fada7905.roa
Signing time: Tue 14 Oct 2025 17:51:55 +0000
ROA not before: Tue 14 Oct 2025 17:51:55 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 71.152.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:f0:ef:e5:06:cf:0e:05:0d:f8:7d:25:22:1a:4e:3a:b6:6d:f3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 17:51:55 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=6835be9fb222f1d2bd2a042061c33d2204ce7d04b24454aa062f9f97719e48b2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f2:fd:df:9a:cb:31:4e:b2:25:21:c1:55:08:
88:42:f7:9b:a6:9c:2f:9c:56:0e:24:01:27:55:5e:
b1:20:e9:42:54:fd:b8:c6:1c:a3:52:46:66:7e:6b:
97:2a:20:fd:29:06:b5:f1:14:cd:e6:69:4a:77:11:
87:d8:20:60:10:d1:10:31:a3:ba:eb:f3:58:de:d3:
76:2b:0e:53:ca:e5:ea:54:fa:0f:59:19:f8:26:b3:
f9:0a:89:bb:42:33:6d:04:d4:1e:90:03:e0:38:65:
24:63:2f:59:da:30:1a:89:ae:d0:4b:45:51:e0:1c:
1e:ff:bb:9f:cb:e0:75:ac:9f:4a:dc:1d:ea:81:d0:
f1:35:e6:01:a6:f7:2f:6a:66:08:10:65:5d:2f:dc:
b6:37:3c:31:28:8d:cc:43:6b:0c:5d:9d:d4:c1:66:
cd:78:4e:77:cf:14:d0:60:98:de:77:8c:2d:e3:31:
bb:1d:8b:47:ed:c7:5a:27:2a:8d:e0:9b:43:18:64:
05:02:43:3d:39:87:27:69:3c:a7:35:c1:ed:05:27:
62:c6:ac:ce:1b:8f:b9:58:d9:29:10:e5:1c:22:64:
2c:33:39:11:96:88:8b:a4:e8:e8:9b:5c:2e:da:d1:
48:cf:be:e1:63:38:f5:5b:ab:3b:b4:27:bd:6c:f3:
97:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0B:F5:61:E7:A2:AB:3E:BA:82:D0:20:27:E7:05:65:39:4B:8B:C4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4c4795-22e8-4d68-ae7d-e133fada7905.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
71.152.23.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:00:7c:f5:5c:ba:49:5c:e7:e7:4d:04:61:0d:45:1c:45:94:
0c:82:d6:af:d9:dc:c2:1c:3b:4c:a6:79:01:d6:ad:3f:28:3c:
a4:58:04:79:6c:b8:da:61:61:77:40:e8:78:51:28:1e:fa:03:
cb:01:55:29:d7:c9:a0:39:07:ab:af:ce:9e:b7:89:37:64:0a:
29:6f:dd:15:2b:c7:71:c4:07:ff:8e:d9:70:5e:69:7e:32:a0:
34:ed:b1:b8:0e:db:44:30:81:2d:e4:fb:0e:80:ef:8d:f9:a3:
70:bf:68:3a:fd:60:83:50:95:41:b6:9a:d4:ef:f8:c3:98:8e:
ab:04:b6:46:21:da:12:1e:00:f8:d1:3d:69:40:4b:54:0d:87:
f1:40:23:e1:bb:2f:45:1c:e4:5f:f5:71:ef:4f:1e:c2:e1:f7:
1c:2d:f9:da:3e:60:e7:24:a7:b5:3d:a7:44:e3:4b:30:5e:b5:
da:bd:ca:e6:ea:90:7c:6d:71:ae:5d:05:c9:f0:7b:7d:4b:83:
ca:3e:7c:6f:d3:64:f2:3f:c4:20:60:aa:5e:45:a2:27:66:4e:
fb:7a:a4:be:2b:24:dd:dd:8e:51:b3:17:be:c2:53:3e:07:8a:
ec:ff:fd:b9:d0:c9:13:a4:fa:a8:1c:ef:84:ec:c6:58:a5:ab:
58:f9:68:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:11:20 2025 by rpki-client