Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa
File: 53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa (raw, json)
Hash identifier: yX4ZBg/gsOqHC2CkMzHQBvA1y2+FBdWGsHLYZbnA/+E=
Subject key identifier: CB:F0:29:47:57:BA:E1:01:82:6B:BA:A1:E0:58:22:EB:A5:4F:B0:CF
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 794048D310249B01FC2F0565BBAA81E97DB7A1B7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa
Signing time: Wed 29 Oct 2025 00:40:31 +0000
ROA not before: Wed 29 Oct 2025 00:40:31 +0000
ROA not after: Wed 03 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 151.148.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:40:48:d3:10:24:9b:01:fc:2f:05:65:bb:aa:81:e9:7d:b7:a1:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 29 00:40:31 2025 GMT
Not After : Dec 3 23:59:59 2025 GMT
Subject: serialNumber=2ba903c2b08ca0a50a15f1c55d6d38bbb380242c4ce1c390cc1672350f13efd1, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:40:c9:8b:63:0c:89:08:5e:19:0e:29:ec:87:
98:2b:4a:c2:54:9d:00:7d:9b:c2:ac:60:9e:10:90:
30:2c:10:85:b3:03:03:eb:21:69:0a:77:7e:17:96:
0c:a0:7d:03:c7:c7:a8:bf:1e:ab:ca:40:db:e5:42:
98:a4:2e:59:6b:b6:72:c2:3a:01:e3:83:09:00:53:
52:61:a9:df:e1:a3:46:28:e3:f9:aa:ab:cf:b5:71:
3f:ed:3c:2d:86:ed:b9:db:d6:fb:3b:85:c0:34:0d:
89:a2:33:53:8b:0b:e6:2b:de:92:8e:b1:48:81:05:
f0:26:b2:b9:61:32:ad:58:72:6c:55:09:9c:3e:c5:
1e:fa:82:bf:d0:27:4a:b6:4c:d9:95:9b:42:7a:2e:
cd:49:91:31:f3:c6:73:09:ce:b8:5d:c4:d4:77:98:
eb:bd:c3:e7:40:4b:90:84:96:95:1a:30:7d:64:42:
79:ad:f9:ed:fc:52:fb:62:d6:7f:ef:22:c9:6c:a6:
08:c9:48:5a:e5:05:80:c0:4c:40:b4:ea:57:4e:f3:
43:32:0e:27:82:3c:3e:96:77:63:0e:32:1c:85:7e:
d3:d1:39:36:85:65:2c:20:ec:11:94:41:95:52:39:
30:52:a5:66:49:f0:f7:1b:92:0a:9c:4d:90:7e:03:
19:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F0:29:47:57:BA:E1:01:82:6B:BA:A1:E0:58:22:EB:A5:4F:B0:CF
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.148.20.0/24
Signature Algorithm: sha256WithRSAEncryption
66:65:65:63:9b:c0:8c:ee:6c:7e:9b:70:50:c8:e7:c5:c4:fe:
22:4f:2d:a1:bc:cc:22:77:b3:19:f7:84:96:43:5b:15:8f:59:
d7:78:c4:6a:06:57:36:a0:a4:e9:5c:69:39:43:14:3b:2d:12:
00:5f:16:51:52:3c:d8:77:6b:b8:7e:a5:58:84:4a:08:91:c6:
0d:9e:16:98:2b:af:5d:36:4b:1d:e6:4b:5b:a4:6a:91:81:f1:
97:08:95:63:e1:17:1f:37:73:8b:38:e8:51:4c:bf:e2:b7:23:
84:d6:fa:ee:c0:ce:10:7e:7a:d4:fc:a4:3c:ac:0f:17:5e:ae:
1b:d0:10:84:e3:2c:15:df:ad:e9:9c:fc:3d:6b:be:d2:f1:8b:
1f:6e:b1:96:86:ba:8e:93:dc:33:89:32:d5:f1:16:dd:78:30:
21:9d:38:1a:e4:5b:53:fe:52:f5:55:6e:0e:ef:c6:e1:78:45:
2b:af:e4:0c:84:56:2e:3c:e0:e0:4a:67:e0:35:a6:ac:9e:f8:
b7:24:13:92:22:3b:04:38:25:b7:15:4f:65:84:3e:bd:78:fb:
6b:80:dd:5f:c0:09:ad:94:98:87:0f:e8:3a:d5:7d:6b:dc:cd:
67:6f:e4:be:ad:66:e6:40:ff:20:89:c7:3e:86:75:64:4b:40:
df:e7:0a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:18:27 2025 by rpki-client