Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14a5a826-4e23-42a8-bf85-ad094f67717e.roa
File: 14a5a826-4e23-42a8-bf85-ad094f67717e.roa (raw, json)
Hash identifier: LxeEPYOI/NgJFE8Dd3yV4SBR17RrTBt/ELQqv7akQLk=
Subject key identifier: BA:78:0F:EE:EC:02:99:7E:CA:AC:0C:B6:B7:D8:7C:55:ED:F9:24:86
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 33E373EA95D6B7F0D0C97AE9B06EC2CB4F602C8C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14a5a826-4e23-42a8-bf85-ad094f67717e.roa
Signing time: Wed 08 Oct 2025 00:51:19 +0000
ROA not before: Wed 08 Oct 2025 00:51:19 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.112.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:e3:73:ea:95:d6:b7:f0:d0:c9:7a:e9:b0:6e:c2:cb:4f:60:2c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:51:19 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=c1a09c5cf63a9ea1cd7ab80bc6aabb34fe5d0040269dfe3eae0a5ae8a3ed261b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:df:d5:d3:26:c1:4b:f8:c8:ca:7c:da:47:d4:
27:48:e9:70:a5:5b:79:0d:80:70:5a:9c:e4:fd:de:
21:18:56:e5:04:60:c6:0c:39:d5:5a:4b:22:27:88:
83:1f:c6:a3:13:fb:7a:8f:2b:f7:3a:61:5b:9b:6f:
f9:b9:45:c0:83:f3:cf:29:43:b2:11:1e:94:06:9a:
57:4c:70:01:1b:77:1a:0d:6c:f5:60:b6:ef:b5:d1:
d1:7d:1f:b9:fc:19:91:55:d8:93:b0:cb:35:e1:fa:
c4:0c:d2:ba:50:4f:56:1c:11:bb:f2:95:d8:3f:f2:
80:23:c3:79:5c:5a:f6:42:a9:0d:7d:c5:48:50:14:
f0:3a:74:88:88:0d:c9:4d:71:fe:b9:c9:d1:50:72:
50:dc:66:9b:0a:66:ab:b9:08:84:fd:ee:4e:2c:0d:
1b:bf:df:12:60:0c:41:0b:19:e4:d3:4d:9c:c7:e8:
68:4d:11:f1:bd:64:7d:26:b5:95:3b:80:c6:a0:9f:
c0:4c:6b:d7:8e:99:e0:cd:40:bd:6c:04:e0:98:17:
91:24:df:55:90:15:86:f1:92:1d:dc:3d:1d:4f:35:
88:2b:52:a1:34:f4:74:eb:5b:78:85:63:22:b6:c0:
ad:a2:e9:4c:90:0c:42:0f:31:94:1a:04:f3:c8:38:
00:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:78:0F:EE:EC:02:99:7E:CA:AC:0C:B6:B7:D8:7C:55:ED:F9:24:86
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14a5a826-4e23-42a8-bf85-ad094f67717e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.112.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:b5:17:33:62:55:76:bb:37:78:a2:68:5d:6c:aa:ac:c7:d7:
5a:fc:30:f6:df:78:ed:7e:a0:7a:71:69:26:9c:09:dc:60:4f:
36:21:9e:27:e4:c3:05:3d:e9:a7:34:63:e2:1c:a2:5e:71:ac:
cf:f8:48:3f:a2:5c:35:3c:76:9a:ce:24:1e:a5:68:c0:a2:05:
41:34:58:d9:b0:b8:b0:0a:ff:a0:9f:df:9b:00:90:b9:0d:b1:
08:f3:68:30:ba:ea:f1:cc:3b:4e:1e:e0:08:49:aa:33:e2:2c:
eb:e5:8b:b7:95:89:0f:7e:1e:c8:f8:45:f0:ae:20:7d:f7:3f:
09:f4:db:7e:9a:d3:2d:70:93:20:9c:81:db:c5:17:16:9a:5e:
5b:75:69:36:ae:04:6c:b6:e5:8a:ae:4a:c6:15:71:4a:fa:ed:
36:6b:b9:82:7d:ff:69:49:ca:e3:9f:28:43:6d:10:3e:3b:30:
a9:c1:3c:b7:ef:54:dd:52:64:7a:76:cc:eb:b2:b5:2c:c0:17:
89:84:b1:bc:94:61:48:dd:cf:b1:cd:ec:f4:2f:c2:47:e9:06:
cc:b0:9f:fa:ca:67:28:ff:1e:97:e4:f8:b0:09:08:c1:87:64:
4c:a2:06:9a:13:86:bc:95:20:8f:b0:f2:e2:57:2c:8c:73:cf:
43:3b:81:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:43:31 2025 by rpki-client