Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f208e7a-b24d-456e-85cf-2aa22b4a2fef.roa
File: 1f208e7a-b24d-456e-85cf-2aa22b4a2fef.roa (raw, json)
Hash identifier: N889cnVfUr4QtrrvDvf/wKfSNSxbBZVyyC1ITzg5v7Y=
Subject key identifier: 65:D7:8D:52:7A:A0:E2:5F:46:93:BE:FD:FC:0A:6F:3E:A6:85:31:8D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 240B542C957FDA5E54607BF33A6D4FB5653D1870
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f208e7a-b24d-456e-85cf-2aa22b4a2fef.roa
Signing time: Sun 19 Oct 2025 01:50:06 +0000
ROA not before: Sun 19 Oct 2025 01:50:06 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.139.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:0b:54:2c:95:7f:da:5e:54:60:7b:f3:3a:6d:4f:b5:65:3d:18:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 01:50:06 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=3b251693c41b25d6c5cd86f141e3ea7f4cacef9037ae9f9db2066e11206de342, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f3:72:0e:80:7d:64:7e:bf:67:e3:43:58:b5:
d6:ae:7f:13:aa:ab:29:32:36:d6:e5:7a:fe:2b:c3:
d7:1c:24:50:49:82:c1:95:56:ec:48:8c:9a:2e:f0:
87:f4:17:3c:8d:26:cd:64:70:1b:c0:a1:9f:75:ee:
8b:15:4c:a0:24:13:68:6a:9a:6f:3b:ba:77:aa:82:
0d:01:d2:6b:7a:f9:cb:f3:cc:1b:e1:e0:94:76:75:
3b:d9:5e:b0:46:94:c3:ff:2c:6b:dc:43:ea:fd:34:
5d:79:21:9d:a2:03:a1:4d:11:0c:89:36:50:8c:e0:
2b:46:6a:8e:d0:64:68:bd:de:39:5d:28:23:48:05:
4c:a0:a5:5a:41:e9:6c:0f:59:f4:1e:7e:91:fd:a7:
2a:56:4b:9a:bc:2f:fe:32:05:e9:bc:67:40:8b:cc:
b4:62:9c:44:fd:31:96:95:35:78:23:f5:ad:68:5c:
0c:a8:22:b1:4f:cf:6f:0e:32:62:70:0b:bb:5c:22:
41:da:8e:4b:5a:61:0e:49:d5:61:90:b6:ae:6a:02:
a4:ed:c7:74:d1:c3:9c:3c:ae:ea:40:5b:59:cb:9e:
80:65:c8:ba:fd:51:df:2b:c0:f8:2e:f4:ba:bb:a5:
0a:36:d5:cd:77:a0:ce:03:c9:5a:11:aa:4a:71:d5:
59:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D7:8D:52:7A:A0:E2:5F:46:93:BE:FD:FC:0A:6F:3E:A6:85:31:8D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f208e7a-b24d-456e-85cf-2aa22b4a2fef.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.139.202.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:cd:d5:8f:93:f9:0a:70:84:56:f5:86:cd:6d:1f:dd:5c:48:
73:de:a8:d7:1d:8b:27:c3:96:3d:18:d0:1b:9e:ba:b0:74:72:
51:f1:00:82:cd:f7:9a:37:7b:b7:22:97:b1:d8:44:00:74:ca:
8a:2c:e1:f5:9c:2c:9d:42:60:89:cf:a6:9f:e5:98:0c:2d:7b:
e4:1e:0b:73:39:3e:59:a0:6e:3a:d8:58:0d:a8:e3:7a:20:4c:
53:00:98:33:f2:e7:95:ef:4d:6a:fd:fe:dd:f2:5b:6d:a1:11:
13:1d:16:2c:54:db:73:03:b9:1d:fe:87:b5:b3:1f:ee:c4:a4:
d5:d6:e3:8c:67:c0:4d:2c:58:ad:5f:cd:0a:c3:eb:46:34:46:
df:33:0a:06:18:25:e4:26:85:f7:83:84:e6:4d:26:0c:69:64:
62:af:3d:86:c8:e2:96:f7:6d:57:50:71:20:de:66:14:48:43:
36:7f:25:98:6f:d4:31:76:66:b0:54:e0:50:24:a6:8c:be:a6:
5b:9b:4d:0a:1f:b3:9b:0a:83:46:33:69:5c:4f:17:d6:aa:f9:
d8:e5:93:30:de:c2:bf:3a:4b:15:9f:c2:28:51:66:f6:46:c5:
dd:86:4c:54:00:a1:16:28:22:9d:2c:fe:67:ac:a8:bb:68:1a:
bc:fa:f7:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:48:15 2025 by rpki-client