Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fb406ba-3e23-4b9f-896a-a4e706f37126.roa
File: 6fb406ba-3e23-4b9f-896a-a4e706f37126.roa (raw, json)
Hash identifier: RQTMPH8EHMT8kr5awb8Bf/wR8oKMBA7gRtIPiwK5Mkk=
Subject key identifier: 12:5F:A5:F0:50:A4:C9:E0:F7:2B:02:39:27:1F:FC:4D:8D:16:76:ED
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 595A40BC44EC90A72AFE05E9607B9263E833C809
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fb406ba-3e23-4b9f-896a-a4e706f37126.roa
Signing time: Tue 11 Nov 2025 02:11:08 +0000
ROA not before: Tue 11 Nov 2025 02:11:08 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.136.32.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:5a:40:bc:44:ec:90:a7:2a:fe:05:e9:60:7b:92:63:e8:33:c8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 02:11:08 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=0bb7937affd5c8be2318f02be993b2c53e6a132bbd0b8df383faf96aac356c8f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a7:5b:7c:4e:b5:c7:c4:cc:0e:4b:23:b2:11:
91:79:fb:ad:89:a4:1e:b3:6c:50:2e:5e:2a:e7:c7:
a6:57:1d:3a:41:9d:a0:70:72:65:be:57:7a:e3:a4:
7a:ee:8a:a6:55:02:6d:c6:fb:d3:c3:24:81:4a:0c:
69:88:4a:c0:a5:ed:86:f3:a5:26:f9:c5:4d:00:3a:
c6:13:b0:cb:d9:24:8a:67:3a:d1:f6:5b:1b:c7:13:
e6:38:e9:bb:84:0c:de:83:14:b9:fd:ac:83:fe:96:
3e:06:5f:f2:13:6a:e2:b7:d9:70:60:63:71:99:95:
82:b5:3f:1b:7c:3d:fb:45:85:ee:39:00:df:57:4e:
7b:a7:de:5d:41:8e:00:fa:b4:67:c9:06:f9:86:5d:
27:04:96:8e:0c:6f:0b:5a:25:26:3e:92:dc:04:a0:
32:6b:96:4d:10:3a:48:2e:2a:55:00:43:5a:9a:f6:
6c:a0:b3:92:d4:0f:63:31:e7:70:bb:5e:a4:32:14:
b3:89:0a:00:6a:2f:a6:85:5d:61:10:47:60:8a:dc:
b4:fa:eb:7c:c5:14:05:0c:b9:d8:f0:97:3c:9b:cc:
83:c2:1d:09:9b:fe:de:8f:0b:b5:74:c2:8e:da:e1:
a4:16:47:4c:26:3a:eb:95:f3:f9:86:83:33:b2:b7:
c5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5F:A5:F0:50:A4:C9:E0:F7:2B:02:39:27:1F:FC:4D:8D:16:76:ED
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fb406ba-3e23-4b9f-896a-a4e706f37126.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.136.32.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:25:ee:55:5c:7d:b7:33:11:8d:58:14:43:61:bc:75:ac:e1:
9d:b4:33:b8:04:57:1b:8e:ff:54:8c:c3:68:51:9c:ac:20:13:
8e:cf:bf:da:96:92:ff:a4:0f:ea:8c:e0:83:a5:c2:8c:b9:28:
c7:e4:dc:f1:2a:12:a2:73:d1:32:99:dd:5c:a3:1d:c6:0a:4d:
36:82:4c:d4:58:dc:af:bc:24:a2:f2:82:da:4a:30:31:2e:7a:
ae:d4:de:e7:20:f7:8f:a9:c9:aa:fa:fe:54:17:33:ca:0a:71:
11:c1:50:87:00:2a:dd:46:c2:d8:18:bc:f4:79:aa:87:96:34:
2b:46:99:81:bb:0a:a6:d5:c9:3a:18:6c:9f:04:c9:95:d1:57:
06:e0:90:39:06:2f:ca:2e:53:d2:d3:54:4c:ea:8c:0a:32:4e:
ec:d1:3a:51:97:59:f3:7b:c5:d7:58:2a:be:1a:e1:b2:fb:72:
9d:03:e9:da:c6:b6:5b:0d:dc:12:94:85:35:c9:7c:9c:e0:94:
99:fb:45:64:ea:b4:b0:00:de:80:db:d8:60:36:4f:65:c7:41:
82:d0:e3:bb:5c:1c:f2:7c:bf:88:23:eb:d6:73:ca:e5:67:78:
b9:49:da:2c:79:34:22:21:af:68:7a:ca:a1:29:a5:75:f3:43:
79:39:9e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 18 05:50:41 2025 by rpki-client