Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef11e81e-6730-44cf-90d6-2c76fd9404dd.roa
File: ef11e81e-6730-44cf-90d6-2c76fd9404dd.roa (raw, json)
Hash identifier: KG3p1ZnKTSCCPMl2K4cMGru34CY8Z/t52YbP33qfVZU=
Subject key identifier: 7C:27:23:9B:98:95:72:E0:82:2B:8F:DF:D7:FB:1A:16:47:54:F4:38
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1A4495DB56B7EF8DABDFE228D5F9F553DBA6C337
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef11e81e-6730-44cf-90d6-2c76fd9404dd.roa
Signing time: Mon 20 Oct 2025 06:32:19 +0000
ROA not before: Mon 20 Oct 2025 06:32:19 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.157.214.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:44:95:db:56:b7:ef:8d:ab:df:e2:28:d5:f9:f5:53:db:a6:c3:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 06:32:19 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=a10c6990d494463fe4c9aaed26683f4944787ab5c2812a013d2fd51521240ada, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:90:ad:5d:40:4b:86:83:8e:f9:c4:49:d1:3e:
f6:95:14:77:06:4f:ac:50:30:f6:48:26:a9:f7:f2:
1e:fc:ee:0d:00:05:bb:43:e3:02:af:2d:ec:45:a9:
64:5d:25:d5:a7:35:78:a2:fc:11:a2:5d:0d:5f:36:
39:25:d3:bd:e8:74:2d:00:2f:eb:b2:5b:d0:12:d2:
59:2b:3a:2a:94:e6:b4:fd:6b:12:9b:69:f7:31:fe:
af:f6:cc:df:f9:87:f4:4d:35:0f:de:98:7c:4f:20:
52:18:48:fe:12:7f:46:c8:fb:c1:fb:15:17:63:af:
22:71:22:e0:c2:d5:c9:4e:fe:6f:a5:fa:c5:f1:3d:
8e:90:3a:ae:73:8d:7b:fb:9d:46:f1:2c:23:59:11:
3c:33:2f:a8:12:38:fd:fe:47:11:85:36:cd:a8:29:
26:0d:c2:56:6d:de:7b:f0:0f:17:09:5d:bf:91:cb:
e5:ec:88:07:4b:c2:67:87:1d:e8:0f:b5:87:1f:87:
7b:69:f6:16:52:7a:e7:9f:5f:40:0f:da:b6:6e:f8:
3a:7a:70:2d:9c:89:c8:b3:65:1c:ca:a4:e9:dd:15:
74:36:0f:98:05:ac:9c:6e:0f:62:f3:60:f6:5a:02:
51:4d:27:3e:7f:9b:32:3d:05:f6:f6:16:30:cc:23:
a8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:27:23:9B:98:95:72:E0:82:2B:8F:DF:D7:FB:1A:16:47:54:F4:38
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef11e81e-6730-44cf-90d6-2c76fd9404dd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.157.214.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:e1:8f:58:4f:95:aa:9a:34:7f:37:37:2d:2c:99:4c:ff:55:
af:75:d3:ad:bf:b5:e0:bc:00:fa:01:41:ee:2e:73:3d:6c:f4:
05:78:be:e9:9a:0f:0b:0b:fd:64:d6:62:76:a7:fa:57:44:d6:
7c:db:37:5e:c7:10:22:d2:5f:ba:e7:50:ca:73:02:77:7c:22:
21:72:9e:7b:db:59:1b:af:4d:43:68:ee:88:a8:00:bf:07:a6:
50:2a:f8:65:56:ed:0c:c9:64:71:f0:4e:f4:b8:a6:46:36:95:
bb:40:9b:c2:3a:8f:9f:5c:21:52:30:2e:3a:6b:b4:90:36:48:
aa:bf:3a:ab:5e:e8:ff:10:52:57:f6:47:2c:a4:39:d7:04:ca:
b6:35:a9:64:34:27:68:f9:5e:e6:ce:66:0f:21:bb:3c:88:4a:
62:e9:68:e1:bd:ba:04:35:6d:92:c6:2f:c7:e4:25:3f:e5:da:
6e:af:26:82:04:30:3b:a6:18:e1:de:b5:6a:a2:15:1e:01:90:
25:8f:1f:68:57:4a:ad:91:74:ac:75:8d:67:da:04:b0:84:8c:
19:a7:ce:00:a7:48:cc:53:ba:a8:19:ab:16:23:35:fe:98:f6:
d1:09:c9:e5:82:aa:1c:3b:8f:62:bf:20:6e:cc:3d:66:4d:30:
4f:3b:4a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:18:18 2025 by rpki-client