Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a7e86b3-fb12-430e-b4db-8d9f6251dcb4.roa
File: 1a7e86b3-fb12-430e-b4db-8d9f6251dcb4.roa (raw, json)
Hash identifier: 5ejhXNl6TuQnIvfrOSJM3HxgLe/iYROmTvBh1ptop1w=
Subject key identifier: BC:A7:4E:33:96:B8:AC:78:33:2F:01:A0:29:E5:84:CC:94:C8:9D:5A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5EE8CB529523AFC47A028CD68157538E224F056B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a7e86b3-fb12-430e-b4db-8d9f6251dcb4.roa
Signing time: Mon 20 Oct 2025 04:30:20 +0000
ROA not before: Mon 20 Oct 2025 04:30:20 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.159.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:e8:cb:52:95:23:af:c4:7a:02:8c:d6:81:57:53:8e:22:4f:05:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 04:30:20 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=f70c19134cab1a31c7ecd1f22da3d7c300c011a4d51cef1bbacdeb63151c4a99, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:43:78:44:f4:9b:d9:0d:9e:ae:93:84:d5:b2:
14:0f:d2:2b:ab:f9:a8:2c:87:64:7c:69:f1:19:28:
d1:ed:6a:f5:b5:4d:2e:50:43:d3:1b:27:37:1e:7c:
d8:df:54:de:87:fe:8b:5c:37:07:77:7c:37:ae:30:
5a:9c:69:77:1d:ff:c6:37:06:dc:28:cb:f1:31:42:
56:21:8f:19:71:1f:cd:a4:85:e0:51:1a:74:76:ee:
17:ba:e7:ba:b1:fe:d4:36:00:19:0b:1c:f5:da:a3:
05:dc:2b:e9:b1:37:17:ef:60:7d:c6:77:ee:00:97:
95:13:14:72:35:b4:b1:be:c3:89:83:7b:a9:cc:3b:
46:a0:de:c4:14:10:01:ac:30:9f:dc:a7:26:38:d0:
db:2d:77:80:fa:35:fe:f5:5c:ba:62:ad:d7:31:5b:
f2:0e:66:ba:7a:1c:cd:2f:d1:de:39:5e:1a:8d:56:
80:21:eb:cd:98:0e:eb:95:43:cc:88:70:c4:0e:59:
89:6d:f7:6a:31:af:1f:71:a4:43:29:79:2e:12:58:
c4:21:6e:fe:56:7d:15:b3:20:6f:78:64:df:93:24:
6c:5c:14:7e:2e:3e:8d:ff:07:2a:c7:23:50:5d:d3:
72:6f:43:2d:47:2c:92:08:81:3c:09:3b:96:b6:56:
55:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A7:4E:33:96:B8:AC:78:33:2F:01:A0:29:E5:84:CC:94:C8:9D:5A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a7e86b3-fb12-430e-b4db-8d9f6251dcb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.159.74.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b8:c1:3d:6a:73:d0:01:0f:6a:f0:c4:f4:18:b7:fa:53:b8:
6e:4a:f9:48:9a:b0:f3:8b:59:7a:87:e1:64:9c:c8:f8:2b:30:
d4:49:6a:46:bf:a2:9a:55:34:d9:8a:c5:ca:4d:8c:f3:8a:ea:
f8:e7:a1:e2:ef:fe:5f:c8:89:e1:25:07:43:35:f0:4a:93:72:
67:1b:b2:cd:25:5c:df:72:2f:40:69:9c:b8:a5:62:5a:16:32:
d4:9f:3b:ab:d7:48:fc:4a:ea:78:57:af:ab:50:d5:8d:1f:8f:
f4:b6:34:2e:b3:da:b2:10:e3:27:5c:e5:45:0f:d7:3f:50:6e:
a8:3d:17:bb:f5:82:ca:1c:e1:a7:a4:53:20:1c:99:8c:a3:f9:
0e:16:33:a4:98:db:d5:ae:c8:c5:9d:5a:62:d7:a3:8c:50:2f:
ba:d8:ee:a8:ac:ba:44:52:32:ad:41:0b:05:b4:e1:e2:81:65:
6b:1a:0a:c7:eb:07:d6:f0:16:45:f5:85:61:96:c7:ed:c8:97:
bc:09:73:63:18:eb:da:85:28:85:60:0e:84:35:e6:c8:41:1b:
9a:ea:44:56:8a:a3:54:3c:25:d9:80:e5:19:c2:70:ed:d4:21:
f6:9c:a6:39:6c:b0:70:16:18:cc:9b:23:6c:c4:03:bf:d2:64:
4f:bb:c8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 03:50:11 2025 by rpki-client