Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55569419-374a-41d7-aa19-ec4a90a3a216.roa
File: 55569419-374a-41d7-aa19-ec4a90a3a216.roa (raw, json)
Hash identifier: AtemiaycPXNqjvvv64cftWdLcsteyWIubqzaeQSALYM=
Subject key identifier: BF:0E:C5:14:D4:1F:BC:E3:F6:44:F8:0A:77:70:45:57:C8:C8:84:F6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 45E930295F4F1F1DE3A4C2A5429889FC68F10415
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55569419-374a-41d7-aa19-ec4a90a3a216.roa
Signing time: Mon 20 Oct 2025 05:22:14 +0000
ROA not before: Mon 20 Oct 2025 05:22:14 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.159.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:e9:30:29:5f:4f:1f:1d:e3:a4:c2:a5:42:98:89:fc:68:f1:04:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 05:22:14 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=709a2770804c94ceccd1550b8139111c3311d33c6e12b265b4a0176d99e74197, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:17:79:43:a2:7e:d1:b0:8f:ac:b1:c7:c3:36:
6b:d1:0e:a4:79:d8:63:94:1f:e1:2e:55:81:9a:90:
78:c3:f9:0f:14:a2:ad:1e:5b:93:e6:3a:68:7a:30:
6e:7e:51:6a:76:d4:03:1c:b9:ea:2e:d6:82:67:c1:
f6:cf:c9:56:3c:a5:fd:36:a5:16:4f:f8:44:0c:42:
49:cb:c0:08:df:8a:f3:5e:1e:ac:e7:6d:2c:d9:7e:
44:19:30:64:61:f1:aa:59:82:7c:de:1a:04:b5:0b:
e0:9b:d2:53:3c:be:22:ab:4d:1d:cc:6f:7f:14:b9:
16:4d:0a:84:e3:56:a9:ad:8b:50:6d:e2:01:ef:4a:
fc:98:82:0c:57:91:84:df:ec:29:a8:85:b3:68:a1:
4d:d9:c1:b8:0a:5a:97:e1:25:04:0c:39:e8:c6:8c:
6b:24:ed:2f:e2:a2:2e:9b:88:cf:50:a6:8e:6b:88:
0f:26:a7:40:3f:34:d1:61:60:af:dd:89:84:20:93:
18:1e:69:ef:29:a6:38:23:30:9c:c4:39:2c:86:0c:
d3:a2:f8:d0:16:73:81:5c:73:53:28:98:89:33:ad:
8a:c1:62:16:12:0b:19:13:43:b1:66:0d:d7:2c:92:
cb:95:f5:e3:27:4c:af:4b:b6:2d:c0:34:a5:bd:34:
25:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0E:C5:14:D4:1F:BC:E3:F6:44:F8:0A:77:70:45:57:C8:C8:84:F6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55569419-374a-41d7-aa19-ec4a90a3a216.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.159.3.0/24
Signature Algorithm: sha256WithRSAEncryption
40:19:e1:5e:76:8e:cb:1a:81:ad:a6:71:52:d1:db:ff:b7:05:
e9:b6:9c:77:e1:cd:73:0c:2a:6b:6d:6e:fd:71:3a:f4:73:c8:
b3:1b:09:6a:3f:dc:ed:a4:8c:4a:56:84:87:97:b7:55:9e:83:
f2:62:b7:42:d2:82:71:8b:70:f5:be:3e:19:22:43:d5:fe:bd:
88:9a:97:95:89:c3:75:1e:bc:59:e9:55:cb:51:5e:39:c5:8f:
38:98:ab:95:7d:62:36:41:ba:b7:0d:b8:d6:2a:b1:99:52:7c:
35:14:bb:77:46:ee:35:7a:ce:3c:4e:18:51:a2:37:2d:ce:68:
46:e3:a8:af:6b:0a:a9:78:d8:44:ad:3b:ed:79:fe:b1:2a:22:
5d:c8:8c:b7:f0:95:21:38:ad:31:38:a0:ba:40:9d:a9:1d:3c:
f0:c0:9b:9b:65:1a:48:14:c6:d6:09:94:df:9b:56:36:e1:f4:
a8:10:27:da:f7:37:d2:2b:4b:92:41:2b:e1:59:ca:22:6d:ac:
ae:c8:ce:56:78:93:a6:58:a1:bd:f5:9e:dd:02:99:e5:d9:66:
dd:46:da:44:6b:d7:ed:84:56:2c:aa:f7:ba:29:38:5c:5a:a1:
a6:8a:9e:96:c0:a0:a2:be:16:ea:a4:01:61:e9:81:91:16:c1:
1f:f0:a5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:49:01 2025 by rpki-client