Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/483f2df9-9072-424c-ba7a-1b2418d174fb.roa
File: 483f2df9-9072-424c-ba7a-1b2418d174fb.roa (raw, json)
Hash identifier: rKY2P6Y8v39S0OIAh7E/vlsXWjqfMxssQcvE4bFFOIQ=
Subject key identifier: 61:3A:74:3C:DB:2A:05:D7:2E:62:B6:5D:D1:EB:18:0F:CC:FD:E9:C1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7E73F1B3D9A487621D91AF053F80E09741E6C0CF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/483f2df9-9072-424c-ba7a-1b2418d174fb.roa
Signing time: Mon 20 Oct 2025 06:12:05 +0000
ROA not before: Mon 20 Oct 2025 06:12:05 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.156.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:73:f1:b3:d9:a4:87:62:1d:91:af:05:3f:80:e0:97:41:e6:c0:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 06:12:05 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=1f3a227ac62baca3aa60a57951a63becacb7512166bb969f8c1bdcaa6fc24e95, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:02:74:15:c5:fe:a8:57:63:8c:85:f7:72:b6:
74:16:d8:a8:b3:f9:03:a5:70:96:e2:36:3f:94:f2:
c2:f3:c2:8b:5e:55:0a:bd:80:b1:c4:1e:df:3d:b5:
83:ad:c2:71:90:87:d7:b5:ee:26:e1:ce:e7:59:ed:
79:53:60:16:af:50:d1:18:f0:59:68:1f:dd:9f:d8:
65:17:ad:24:b1:4d:7b:df:ef:8a:3c:2f:17:f0:f8:
68:f1:0c:c8:f4:8e:37:f3:97:94:00:7d:77:32:d2:
32:da:8d:7c:4e:3f:ca:4b:39:f8:22:74:43:65:0f:
6b:27:26:57:ff:6b:85:47:3e:6b:31:50:73:21:8e:
17:7c:d3:79:1b:c1:63:72:34:4d:ee:22:c4:7b:52:
ff:ce:69:3b:77:08:7f:29:b4:c4:70:8f:1e:7f:84:
5c:78:63:52:fe:19:4b:f9:a2:15:26:27:51:04:bb:
a5:68:59:61:fd:40:08:07:17:a6:fb:52:3a:b1:f6:
27:57:49:22:34:47:a6:86:fb:fc:72:2c:c2:08:35:
a8:eb:df:fa:58:a4:a2:65:d9:b9:26:85:6c:63:d4:
7a:7b:b5:25:03:49:c0:94:8c:5a:d1:21:89:b1:33:
05:5f:dc:aa:ed:7a:8e:af:7b:b1:db:56:57:33:77:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3A:74:3C:DB:2A:05:D7:2E:62:B6:5D:D1:EB:18:0F:CC:FD:E9:C1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/483f2df9-9072-424c-ba7a-1b2418d174fb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.156.124.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:90:df:d4:c7:b8:34:c5:e6:52:70:3e:9a:c4:af:fa:bc:60:
88:43:ba:e1:19:01:d7:b8:e1:8d:b5:a8:d2:62:27:2d:da:33:
84:95:04:1a:85:86:74:74:e8:1e:87:48:cb:df:26:d2:1b:d3:
9c:47:08:47:52:0c:a1:0f:50:a9:71:9a:87:79:fb:c7:25:87:
5c:c4:df:45:ca:ec:cc:44:40:37:0c:e8:d4:96:11:81:a5:80:
d7:f3:82:11:89:80:a6:f1:d9:68:f2:5f:19:aa:37:b6:10:d9:
ac:0b:d5:b8:05:f8:17:ae:2a:a2:1e:85:f4:ff:db:0a:7f:82:
6f:cb:0a:7f:16:f3:c6:37:34:d6:00:cb:11:11:15:0e:d5:f0:
61:4d:9a:80:f5:06:71:35:3d:e0:fd:3a:6b:89:6c:66:ad:03:
fd:bd:00:7a:c5:3a:4c:2f:3b:e4:14:a1:5d:54:f4:a9:9c:ab:
a9:0b:6c:74:2c:4e:42:fa:7e:1b:4c:0e:7f:a4:76:85:bd:a0:
61:db:d6:e2:c6:a3:10:6a:a9:12:a8:e4:ef:9e:81:df:bb:4f:
62:fa:07:51:8e:39:af:7d:67:58:96:d4:fe:8b:15:95:e4:e8:
49:c3:84:01:0d:d4:c7:2a:ce:27:7f:80:6e:08:96:86:90:71:
fc:a8:28:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:11:49 2025 by rpki-client