Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c27bab00-15a2-4f42-b97e-e1f4b6eb830b.roa
File: c27bab00-15a2-4f42-b97e-e1f4b6eb830b.roa (raw, json)
Hash identifier: bjGRn4huFawv48IcGG75rkJSgRe8IWnW4b4zIXpRGHY=
Subject key identifier: 76:AC:7E:ED:BD:3D:A3:19:C6:E6:D3:70:AC:D2:11:9E:9F:F8:AC:E2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 61E0503AF23A968F2259B2B1A467BD2BF8150260
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c27bab00-15a2-4f42-b97e-e1f4b6eb830b.roa
Signing time: Mon 20 Oct 2025 04:10:08 +0000
ROA not before: Mon 20 Oct 2025 04:10:08 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.156.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:e0:50:3a:f2:3a:96:8f:22:59:b2:b1:a4:67:bd:2b:f8:15:02:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 04:10:08 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=c6520a268254416d4fcea8adf173d0309bdb9cf831d6fbb4c6c8bb50f837edba, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:96:64:fa:6d:0c:aa:74:b9:df:7a:30:72:
99:23:8c:da:ed:05:e1:31:e7:70:e7:ac:25:23:45:
e9:af:40:db:9c:38:6c:5a:18:f9:64:99:98:71:07:
b2:3d:20:49:08:2d:ec:ed:51:1a:21:de:7b:87:e4:
b6:4a:d4:15:33:92:9d:c3:59:cb:0c:dc:40:49:04:
a2:5f:91:61:95:38:a8:75:ac:23:b0:35:c6:0f:5d:
97:9d:b2:6e:84:4e:35:56:e0:4d:d5:7c:11:4b:b4:
d9:55:81:d8:47:45:e6:7c:99:55:36:ae:29:82:b8:
de:5a:20:ec:f5:f8:46:c9:5c:25:1a:aa:8b:3d:56:
38:16:79:13:f0:96:2d:d2:a5:5f:00:95:44:4d:d0:
d9:3a:d8:5b:57:63:1e:c9:2d:30:9d:a7:10:11:53:
df:3e:dd:98:4f:a3:03:c5:84:70:26:29:42:f0:ae:
f2:40:4d:a5:27:c4:e8:de:ba:70:9a:b9:d3:7c:5b:
05:8a:08:e5:44:97:5a:54:ce:e6:ba:f8:80:77:a3:
4a:90:dc:eb:a7:5f:51:70:8d:f6:5f:1a:4b:75:ef:
66:f4:87:fb:0a:13:30:b5:1e:29:73:2c:c7:d3:3d:
68:f6:63:44:f6:2d:2b:d7:68:35:0a:ba:06:68:8f:
3d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AC:7E:ED:BD:3D:A3:19:C6:E6:D3:70:AC:D2:11:9E:9F:F8:AC:E2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c27bab00-15a2-4f42-b97e-e1f4b6eb830b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.156.236.0/24
Signature Algorithm: sha256WithRSAEncryption
62:5b:d0:23:da:70:ca:c1:9b:01:af:4a:d1:96:08:9d:c6:3a:
36:c7:b9:6d:a3:f4:28:3c:ef:33:0d:c6:b5:36:0c:f4:69:4f:
4e:98:d7:10:99:21:af:f3:4f:c5:8a:d1:fd:9b:c9:82:b6:a9:
b6:4b:54:e0:c5:1f:8d:2f:c7:df:d2:85:08:67:b8:68:4e:48:
51:93:fb:94:77:ae:df:78:61:77:a8:80:ad:da:2b:96:12:62:
5c:33:44:0e:36:18:c0:14:76:0a:c5:0b:6d:1e:3d:05:b4:19:
9b:d3:c9:77:86:12:ff:51:a4:89:7e:35:06:ff:2e:ab:bc:44:
20:fe:f4:5d:79:56:e6:7c:59:25:5d:ca:f3:b0:72:bd:06:70:
c0:c4:39:20:1b:58:14:93:c6:e7:7a:13:7a:e0:07:5b:d9:7b:
95:8a:66:fb:09:ae:cc:1a:d9:59:e2:b5:e3:55:39:ad:8c:ba:
3d:f7:e0:59:8a:f7:30:c8:98:ea:2b:8d:46:5e:7a:0c:8f:b6:
e3:1b:db:47:cb:f3:26:e1:1c:e3:2f:c7:6d:ff:60:58:44:be:
ae:78:2b:13:9c:b9:51:ba:90:a7:b1:87:a5:b7:49:aa:c2:cc:
94:60:74:ea:52:a7:de:0e:0a:5c:f9:1f:28:3a:11:30:58:01:
59:e1:e9:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:46:46 2025 by rpki-client