Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db8edcd-2022-4c36-b3e1-96ec2e01c1ed.roa
File: 5db8edcd-2022-4c36-b3e1-96ec2e01c1ed.roa (raw, json)
Hash identifier: iXwp0Bn5xQbBG60ci4VsZ/Yr9PA9KI+YT0iGvWGqi70=
Subject key identifier: 63:D0:D9:11:75:C6:06:8A:EE:E4:16:1F:F0:F2:E5:28:73:2B:C6:EE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 20AFF0CB061B44EBC1C9855F322795C9251C2630
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db8edcd-2022-4c36-b3e1-96ec2e01c1ed.roa
Signing time: Tue 14 Oct 2025 17:42:07 +0000
ROA not before: Tue 14 Oct 2025 17:42:07 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 71.152.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:af:f0:cb:06:1b:44:eb:c1:c9:85:5f:32:27:95:c9:25:1c:26:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 17:42:07 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=2efae6fbe27bcebac7879bbf857f9dee6c2f506c85b113b23325b10bc2eb42d5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0a:65:55:71:53:9c:7a:30:40:d3:53:b1:33:
3c:47:fb:72:2a:ff:05:8b:43:ef:33:23:e5:d4:62:
d0:47:31:29:88:bd:10:73:15:48:2d:9d:b3:b4:8f:
de:1b:4d:68:30:3e:f4:72:38:ec:60:fc:4a:be:2b:
d3:6c:92:c5:94:06:f7:e1:4a:52:4f:b8:c2:b4:eb:
59:9c:5c:4f:bb:f9:2b:d0:f9:d6:99:0c:c5:d6:9c:
23:a2:07:88:fe:fc:02:e3:5c:a0:55:8a:96:7a:11:
6d:58:84:37:58:e9:16:35:74:0c:f4:47:a9:cd:67:
ee:1b:f4:76:82:41:30:3d:63:7b:49:df:9a:8c:fc:
28:67:37:e2:61:f8:46:11:13:1a:61:63:28:a6:ba:
a6:21:45:1a:91:8b:78:8d:67:5b:5f:a7:81:e7:4a:
77:34:c1:8e:26:c1:71:e8:82:b0:5a:ba:40:f2:40:
cb:49:32:45:fd:8b:4f:58:ba:c8:2e:83:1e:b5:31:
65:43:c9:9b:2a:09:02:75:0a:34:20:f4:85:15:46:
4b:ed:b3:11:fc:fe:73:e7:c8:ca:c2:1a:81:df:43:
fb:45:8e:72:cf:1c:a5:da:98:9c:fa:3d:f2:6a:80:
c5:b3:1f:4f:cc:d4:7b:e0:76:36:4b:c2:9f:a9:1d:
6d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D0:D9:11:75:C6:06:8A:EE:E4:16:1F:F0:F2:E5:28:73:2B:C6:EE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db8edcd-2022-4c36-b3e1-96ec2e01c1ed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
71.152.36.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b9:0e:ff:64:0e:c0:8f:7c:e6:e8:03:3a:bb:51:b7:47:fd:
99:83:24:f5:d5:80:a2:d6:63:eb:88:84:7d:43:79:0f:cf:dc:
f6:24:61:d3:fa:99:f5:37:e0:07:58:11:b0:61:e2:ff:97:a0:
80:d5:c1:4e:d8:12:28:aa:45:24:52:6e:3a:f2:1c:90:8b:ff:
b7:8f:5c:cc:d0:f7:95:7a:5d:96:a4:61:64:a8:62:d5:63:1c:
ba:f5:52:a9:05:c2:06:e8:1c:23:46:43:6a:9d:9b:6a:4d:1c:
55:ab:ae:a5:ed:f4:bf:e0:7a:9a:b1:30:62:b6:6d:45:16:f5:
9d:cc:19:e9:9c:ed:7e:49:95:52:19:0f:ea:ab:92:38:00:81:
61:87:c8:3d:0f:8f:23:db:db:a8:73:c5:3e:11:4a:6c:74:b7:
59:63:ac:17:d7:45:21:d5:9b:44:18:1c:d6:36:de:73:88:d6:
49:88:46:a6:f6:66:c6:11:f4:78:c3:46:3b:ea:27:74:b2:74:
ae:89:a6:f7:7f:0e:2a:ac:89:20:6a:96:d1:bb:f2:bd:9f:73:
a4:85:35:c5:53:28:2a:71:44:24:28:7f:a1:11:90:ae:9e:c1:
aa:97:24:96:72:04:47:16:f2:06:7a:21:7d:6c:e5:ad:fc:92:
af:63:55:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:25:38 2025 by rpki-client