Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e7107bd-0c89-4c28-a2d4-a1a3d65c9d4f.roa
File: 8e7107bd-0c89-4c28-a2d4-a1a3d65c9d4f.roa (raw, json)
Hash identifier: o8Pc1Ugk4rivBovsG1j8XYDg/MY76cV3OatKhWd+5Og=
Subject key identifier: F8:2B:0E:96:63:3B:E9:6B:0A:34:5F:F1:23:53:9D:64:C3:53:80:D2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4B3C1C08F16C5853EAB0837DE8692C3FDD438E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e7107bd-0c89-4c28-a2d4-a1a3d65c9d4f.roa
Signing time: Mon 20 Oct 2025 05:52:07 +0000
ROA not before: Mon 20 Oct 2025 05:52:07 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.159.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:3c:1c:08:f1:6c:58:53:ea:b0:83:7d:e8:69:2c:3f:dd:43:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 05:52:07 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=7e516eb311b12723f2cb60d382e78b0e433f0774386f13660f61eb01995fba94, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:de:f1:25:23:ec:15:27:98:cc:b5:fa:5d:b1:
ec:93:86:6b:61:e1:66:72:23:de:07:94:13:0b:97:
a7:d0:fb:2c:99:73:a6:8d:2c:54:4e:f7:d6:dc:23:
da:ff:2c:02:fd:0e:4d:23:41:e7:d5:d0:45:3a:0f:
01:5c:6c:89:fb:b0:f9:0c:2e:d3:1b:7f:69:38:0a:
a1:9c:cc:03:bd:32:5a:e7:68:1b:af:30:10:d8:a7:
f7:b3:cb:36:5d:1f:0a:be:b4:3d:e2:e0:a9:da:d6:
4c:66:d4:46:f0:24:e9:2f:f9:7f:eb:15:58:7b:b9:
43:c5:63:a2:25:62:da:4b:7d:3a:4b:7c:a4:12:a4:
34:28:67:02:3c:d4:64:98:51:e1:e5:07:eb:47:21:
08:26:d7:92:79:35:96:7f:f7:34:2d:f9:50:f3:98:
ae:d1:70:f5:c9:6b:03:ba:38:9b:5f:47:a4:b5:03:
07:2a:08:b3:89:60:ef:cd:4c:7b:f0:54:10:89:c7:
7a:2b:f3:65:33:57:81:d6:f2:7e:bd:d8:77:cc:35:
08:7b:37:da:9a:35:40:4b:b5:b8:18:0a:71:b8:ff:
d2:48:67:2b:e2:67:65:cb:cd:20:86:96:49:e3:79:
5d:80:24:6d:9e:66:c2:a0:99:db:4c:aa:c6:cb:60:
b9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2B:0E:96:63:3B:E9:6B:0A:34:5F:F1:23:53:9D:64:C3:53:80:D2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e7107bd-0c89-4c28-a2d4-a1a3d65c9d4f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.159.212.0/22
Signature Algorithm: sha256WithRSAEncryption
80:d9:66:e6:81:ec:8d:a7:e1:11:a9:e5:03:5e:8e:f2:6d:4b:
e8:2b:38:50:e4:d4:d7:18:5f:2d:cf:8c:7c:79:a5:a5:c2:ee:
1d:f8:8a:ec:59:9a:29:75:5c:46:7f:f7:a3:b8:6b:e8:b8:2c:
df:02:e0:10:61:10:70:c0:03:b1:f1:b2:f2:23:f6:73:ed:f2:
d2:bf:02:bc:ae:4b:c8:37:b6:68:d7:2e:72:54:d8:77:24:d0:
35:e0:4a:d3:b4:53:46:91:60:e1:bf:ff:46:37:ce:7a:e6:01:
1b:bf:c0:e0:33:0e:d7:92:da:aa:9c:06:65:68:e8:a0:b4:3a:
6b:ae:f6:02:99:73:f4:72:77:54:db:4c:c1:c3:dc:02:04:45:
98:80:a4:29:af:68:b7:82:ec:22:f8:4a:d7:b9:ef:92:ef:85:
e7:69:71:a9:33:7c:10:5b:80:8d:9f:cd:ed:a3:fb:26:97:a5:
ef:ae:88:09:c7:f9:17:c6:c6:88:a0:85:22:75:10:10:dd:d0:
ac:fe:8c:72:1a:19:4b:f1:1c:5b:01:34:f7:1c:df:29:ec:90:
25:9a:02:71:a7:fd:6e:ab:e0:d7:7a:27:e1:aa:4b:b3:61:17:
ef:6f:5d:43:e2:b4:cf:7a:d0:61:83:ff:4c:df:e0:3d:62:c0:
a2:cb:35:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:48:54 2025 by rpki-client