Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32656124-2fdb-4e9a-86de-449faa590690.roa
File: 32656124-2fdb-4e9a-86de-449faa590690.roa (raw, json)
Hash identifier: QkTCmHi+whCGCGrAkzWQMP/jo6sGRUtaB1f5wVxW/Po=
Subject key identifier: F2:9E:A6:9E:63:A1:CA:99:B0:7C:45:2F:86:0D:97:9B:90:38:9B:19
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 09F41AE6846C77BE3838ACACBE17C3851D11D8FD
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32656124-2fdb-4e9a-86de-449faa590690.roa
Signing time: Sun 19 Oct 2025 00:50:46 +0000
ROA not before: Sun 19 Oct 2025 00:50:46 +0000
ROA not after: Sun 23 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.138.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:f4:1a:e6:84:6c:77:be:38:38:ac:ac:be:17:c3:85:1d:11:d8:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 19 00:50:46 2025 GMT
Not After : Nov 23 23:59:59 2025 GMT
Subject: serialNumber=92cbb714303c6f2c65846b78977198fe480abcc79b2fbbd6734db2ebd5de8ea5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:a4:04:e0:62:d1:35:c4:e3:ff:0a:a1:6b:
c7:8a:50:22:1c:31:36:07:e0:05:56:19:fc:51:d4:
f9:d3:00:b9:28:58:3a:1f:cd:fc:34:b2:5c:dc:12:
e5:16:47:df:71:e0:ff:e6:d5:f4:8b:c1:f6:03:bf:
3b:87:05:f9:6f:18:cc:1f:4b:67:df:de:0d:63:35:
75:56:5b:34:68:2c:f1:dc:e5:7f:be:3b:37:27:75:
e5:ff:82:f4:50:38:9c:b5:77:c7:7a:3b:c7:1f:16:
e0:80:f6:1d:8f:09:35:be:85:c0:0b:73:8f:a8:c4:
79:10:1c:62:f1:6d:f9:84:16:65:5c:3d:76:54:2c:
93:ce:e9:0a:be:23:97:c7:7f:2d:1d:f3:06:7b:76:
e6:8c:fd:79:61:c7:1c:5b:e6:50:7c:2b:41:85:81:
dc:ab:4e:89:2f:e0:eb:3e:18:34:e3:53:af:e1:a2:
1b:4f:91:6b:3e:14:2d:bc:09:34:56:76:ee:89:8e:
fe:63:de:0b:b3:57:6c:a5:9e:85:de:03:bb:e1:2a:
0a:df:b7:bc:da:18:c2:1f:be:d2:6d:5c:10:37:f4:
ae:6f:0a:78:47:9e:df:d9:df:fe:89:cc:3e:a6:5b:
0c:68:36:e8:bd:73:b5:6d:98:ae:dc:b8:60:97:38:
f9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9E:A6:9E:63:A1:CA:99:B0:7C:45:2F:86:0D:97:9B:90:38:9B:19
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32656124-2fdb-4e9a-86de-449faa590690.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.138.83.0/24
Signature Algorithm: sha256WithRSAEncryption
af:01:e5:fc:b4:fa:ed:34:14:75:9f:55:f7:0e:e3:af:69:c2:
9c:e5:20:ba:3b:5b:bb:36:a1:a2:9c:2c:54:e7:92:cb:67:34:
99:86:cd:0b:32:71:c2:15:23:68:95:c2:ae:8d:85:14:24:35:
5d:af:f3:cf:a2:b9:77:ea:38:34:46:c8:ee:9e:20:2b:50:3a:
a0:12:6b:ff:4e:76:2f:66:d3:3f:f0:e5:a9:ac:0a:8a:68:23:
17:f7:2f:94:ef:ae:b3:8e:da:13:49:7b:fe:e2:3a:c0:90:d9:
79:52:47:f9:88:7b:72:f0:14:ad:b1:0f:dd:a5:d0:8a:ee:0e:
80:ad:1e:af:a0:7e:bd:e9:48:a0:32:3a:99:c6:94:8d:36:e0:
3e:da:96:dd:8e:d4:98:f4:e3:d3:46:80:ce:ce:51:d4:62:e5:
cf:33:82:c8:25:b3:5f:64:12:0e:75:2f:21:ee:d7:8d:ad:8f:
d6:ab:62:23:75:e1:b3:bb:b1:e6:a2:7e:c7:55:89:07:cd:aa:
0a:e9:e5:6a:f1:cc:5e:91:98:57:73:88:07:37:08:c2:04:5f:
72:66:49:5e:85:e9:41:40:a7:ca:2a:85:d5:64:0c:65:47:62:
41:32:1d:fd:95:1a:d4:da:13:6f:dc:c2:8a:e3:bc:72:66:83:
ff:a9:06:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:06:11 2025 by rpki-client