Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1350d094-3c52-4f87-9689-ae680883fc02.roa
File: 1350d094-3c52-4f87-9689-ae680883fc02.roa (raw, json)
Hash identifier: N4833wMWwueHS/GN2UVlOf/JSrKkiQIT4kvnnpgYL1g=
Subject key identifier: 78:0C:14:C3:DA:27:0F:8D:3F:50:7E:4F:0E:24:E5:53:C9:86:A1:89
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 26B649CDD4EA715F48DE0AA06DBB82B0F82312EC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1350d094-3c52-4f87-9689-ae680883fc02.roa
Signing time: Mon 20 Oct 2025 01:42:04 +0000
ROA not before: Mon 20 Oct 2025 01:42:04 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.139.60.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:b6:49:cd:d4:ea:71:5f:48:de:0a:a0:6d:bb:82:b0:f8:23:12:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 01:42:04 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=24a3f38801bbec5d3136e6c648e828892a55c6f0475c1bb094fa96a5fa7e9e90, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c4:f8:24:81:45:97:28:64:ba:c3:23:ce:cf:
e1:45:5c:f8:2f:8f:21:b5:c2:b3:16:17:a9:12:bc:
69:40:a6:76:b5:15:7b:58:82:e7:b1:e7:43:a8:83:
ae:32:62:c6:5f:77:f2:89:eb:6c:77:0d:b7:29:0e:
4c:ae:14:4a:ac:86:90:99:e2:7b:03:51:80:5e:8b:
09:d9:52:44:97:96:8e:fc:43:09:43:46:c7:fd:40:
29:04:b1:fe:8b:eb:e9:13:6e:93:89:4a:f6:28:e1:
1a:80:a7:b0:e4:43:31:f8:6c:28:78:9c:29:e7:33:
9f:31:2b:77:8f:aa:bc:18:d7:9a:b4:20:d9:d9:19:
1a:63:f9:d9:fa:0b:1f:fe:5c:8e:dd:e5:a0:d9:0b:
30:c4:a3:42:dd:12:c8:dc:52:48:1c:6e:61:4f:21:
9a:1b:47:7a:af:7f:73:b7:f6:19:1a:78:e3:80:ce:
a3:87:b2:65:26:44:37:06:65:d8:00:a0:97:e0:ec:
74:c3:4f:ac:07:e4:d3:27:f8:3c:ae:08:45:e0:c9:
a5:fe:f6:22:44:d2:75:f3:07:d6:f9:e8:a6:19:a8:
a4:a5:99:0e:ed:f6:6c:f2:f0:ff:da:23:ff:01:3e:
29:20:6f:3f:37:fb:90:8f:91:a6:7b:7a:ed:58:8f:
27:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:0C:14:C3:DA:27:0F:8D:3F:50:7E:4F:0E:24:E5:53:C9:86:A1:89
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1350d094-3c52-4f87-9689-ae680883fc02.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.139.60.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:f9:eb:e9:80:95:76:c4:fd:fb:ec:96:32:90:84:35:b9:56:
be:14:08:c8:01:e7:80:d5:8f:2e:3b:87:19:0c:4e:49:1a:c2:
ce:cb:25:eb:c6:27:48:e2:73:ad:53:98:6b:69:e5:69:3b:61:
a7:f0:7c:aa:f5:8b:6c:7a:d2:f1:41:77:34:96:72:d6:16:66:
3c:ad:e0:17:9b:9a:b1:a6:67:2c:26:b2:f2:f1:ff:e2:e5:fd:
3f:eb:7f:6b:d9:3d:90:54:81:9c:ff:72:f7:c7:df:f8:db:b6:
3d:5b:8c:29:20:20:6f:63:2e:91:92:b4:b1:38:54:75:ee:04:
e6:f2:af:68:0a:9c:e6:b2:3b:e7:43:35:4d:93:0b:32:ef:7a:
41:59:d4:ff:a7:34:96:62:4f:32:fc:0d:03:31:a9:47:0a:d0:
09:6c:b2:41:e4:19:a7:58:f0:03:92:aa:cd:44:3c:8e:57:83:
71:a0:97:28:3b:bc:f6:36:ab:00:e7:8b:cd:3d:f4:50:18:a5:
92:21:0c:17:08:aa:47:b1:e3:a5:eb:99:57:89:35:4e:59:4f:
08:2f:55:5b:83:f2:b0:98:45:d0:22:0a:b1:e3:c8:c7:5a:3f:
f5:ce:fc:77:34:4b:54:a0:ae:85:e9:90:ba:67:46:f1:1b:70:
60:c9:e4:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:04:37 2025 by rpki-client