Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa
File: 53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa (raw, json)
Hash identifier: hIMyUiWWFRT0SDZaax0vy5cdHKdrXcM9/RyYq24u8O8=
Subject key identifier: 45:30:C3:30:8A:B9:50:88:3D:A0:A1:D5:7C:7C:60:FC:84:95:82:4D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 308CE12B8A7BC5916A4BAF10CBA23A03E7F5B7CC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa
Signing time: Sat 04 Oct 2025 00:37:37 +0000
ROA not before: Sat 04 Oct 2025 00:37:37 +0000
ROA not after: Sat 08 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 151.148.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:8c:e1:2b:8a:7b:c5:91:6a:4b:af:10:cb:a2:3a:03:e7:f5:b7:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 4 00:37:37 2025 GMT
Not After : Nov 8 23:59:59 2025 GMT
Subject: serialNumber=8aa225c717a21ed8f9f66c4ca9fbe9aa703384214122cbb691620cac890030a5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1e:c6:98:d5:a2:5d:bc:8d:6c:f0:85:e0:3e:
33:66:b0:8d:a6:d8:e8:6a:7a:93:66:c2:f7:11:63:
cc:ab:36:b9:7e:16:89:b2:9e:ac:f3:26:75:6f:dd:
42:93:de:4f:d6:2e:17:6d:55:95:fb:9e:d1:1e:d8:
d8:d7:ca:37:7f:e3:01:d5:e8:ee:bd:33:79:4a:23:
7b:65:f1:b9:62:f6:13:c6:0d:33:12:16:40:18:86:
bf:4c:99:8d:09:3d:f6:d4:1b:7f:70:1b:b7:12:76:
d4:e1:31:86:99:36:ed:df:18:e7:86:5f:4a:f3:35:
7f:0a:43:05:98:63:1f:4c:98:6b:e4:f6:c8:24:7c:
6e:1e:77:ac:3b:1c:fd:bd:51:1d:28:d8:1e:42:cb:
69:e7:5c:61:c3:2a:b4:68:34:18:90:43:df:84:59:
ca:6f:0c:ae:fd:cf:38:50:30:e9:6c:6d:ef:14:50:
6a:63:fc:70:f8:ab:4a:04:30:db:7a:e5:ba:c2:5a:
06:64:f1:11:0f:92:51:d6:6e:c0:74:5e:de:88:b2:
fb:80:aa:75:c4:bf:81:8e:fb:56:74:37:a5:82:bf:
ea:1b:ea:40:43:d7:40:0b:54:5c:16:0f:04:d5:71:
84:9e:d2:9c:a9:b8:fe:1a:fd:f5:fb:49:e6:a0:f8:
ff:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:30:C3:30:8A:B9:50:88:3D:A0:A1:D5:7C:7C:60:FC:84:95:82:4D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.148.20.0/24
Signature Algorithm: sha256WithRSAEncryption
30:23:18:0e:9b:bf:1a:c2:16:81:b1:dd:c9:be:c5:da:ea:72:
c1:3a:b8:ae:6a:b0:bf:13:31:51:91:03:a0:7d:13:01:22:4c:
02:a4:63:51:3c:d6:74:d1:20:ae:eb:27:59:72:2b:86:73:43:
17:5f:89:72:ed:e2:96:87:6d:29:f2:42:ec:1e:97:4a:92:df:
e9:32:3b:a6:fa:3c:3d:0d:a9:b2:e9:8a:e5:e0:af:1d:18:49:
8f:c1:33:c5:fc:40:c9:d3:0a:2d:e4:f2:42:01:18:b7:26:c7:
c5:3d:bd:89:e3:c8:93:c5:33:77:ac:3f:d2:59:a3:30:22:34:
66:41:34:22:b5:17:c8:c7:55:65:a4:4e:06:d2:5c:6e:1b:10:
39:e5:23:82:07:21:bb:5e:e1:0e:9a:e4:6a:4d:68:e3:54:3f:
49:1e:21:11:2f:e4:8e:f0:c1:b6:61:05:c4:18:d2:3a:51:7c:
5f:91:e2:d3:f8:7f:14:94:3c:e6:06:23:9d:08:84:f3:f6:ed:
fc:73:81:0e:5b:8f:29:7f:fd:29:38:4d:99:01:19:0b:95:f0:
4a:95:f3:da:18:58:cf:32:ac:4b:73:b0:7f:6c:05:f3:7c:98:
29:ad:73:fd:b6:74:04:1f:ae:30:d4:a5:37:83:6a:16:98:e9:
7f:10:37:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 01:57:39 2025 by rpki-client