Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa
File: 3d387ff7-fed8-4308-a990-1ea058fcb160.roa (raw, json)
Hash identifier: M+CRX+kOTsD+AD72KttqbvgYyEbSnmCRP43QV9PoomU=
Subject key identifier: CC:13:BA:D7:D3:6C:70:09:37:5A:47:02:B7:C4:44:50:C6:9E:99:B7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3D99B3861E99F64C4514FB214AB81A240455716C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa
Signing time: Wed 08 Oct 2025 00:42:58 +0000
ROA not before: Wed 08 Oct 2025 00:42:58 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:99:b3:86:1e:99:f6:4c:45:14:fb:21:4a:b8:1a:24:04:55:71:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:42:58 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=41448c243524e9de4b7402f3bf3f96dacf84399a1d71ff5c318a69179021a303, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8a:3a:96:62:97:08:e9:00:b8:9c:1d:08:ce:
fe:82:fa:46:96:2a:da:4d:70:fb:51:4b:95:ac:8b:
13:cd:16:b2:4a:b5:db:6e:89:a3:20:17:14:42:34:
6c:d0:c7:5d:e1:f7:3c:bd:fb:42:07:af:75:f5:4e:
98:ec:89:2e:38:f9:06:04:dd:51:c7:46:a0:1c:de:
4d:22:fa:89:4f:fe:ce:f4:82:6f:8c:02:0e:b3:d2:
f1:2e:e6:e2:fe:ba:7a:30:10:cc:16:f1:5a:6f:b1:
b6:a5:ef:54:7e:98:4a:87:47:b5:82:70:ae:ae:95:
16:aa:28:89:b6:d2:bc:22:85:34:e7:b9:7c:78:50:
c0:9d:48:ea:63:f6:13:23:91:4f:51:1d:76:cb:64:
2a:54:b5:1c:65:77:99:25:53:9f:97:3d:bd:83:77:
54:eb:bd:66:b8:64:4b:00:44:20:58:cc:58:93:28:
4e:27:e1:de:5d:03:41:ed:7e:ea:fa:54:c6:e0:a0:
f1:8f:a2:d1:3c:8f:ad:76:3b:9b:02:03:c8:d2:c8:
6d:db:47:0a:34:ff:eb:d1:9e:9c:ba:10:e7:6f:ae:
e2:be:1d:b9:8f:aa:f6:fb:e6:d8:92:a6:a0:d8:fd:
0e:82:3b:04:5e:11:46:f2:fa:9b:ae:83:b9:b7:b0:
45:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:13:BA:D7:D3:6C:70:09:37:5A:47:02:B7:C4:44:50:C6:9E:99:B7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.82.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c0:ab:6b:7f:a1:78:4c:0c:d9:8c:5b:11:3a:4b:42:6a:61:
e3:54:2c:95:37:8d:af:ad:82:65:1f:49:38:83:5f:a7:8a:39:
e7:e5:e0:36:58:25:f6:a6:df:e5:a4:2e:69:99:ab:e2:a0:08:
28:ad:1b:9f:0c:52:2b:5a:ca:33:4a:a6:1a:be:cd:b6:9a:d0:
84:c4:b5:36:0d:22:31:ac:fb:84:1c:62:45:94:07:2c:d3:14:
83:fc:90:ef:ed:21:91:c3:16:9d:53:e2:ac:66:7d:24:92:bc:
02:6a:f6:86:88:fb:dc:73:d8:92:8c:17:3f:9e:7f:a9:36:46:
62:91:5e:97:e5:9b:6a:7b:5e:0a:2a:ca:9b:bb:31:e4:73:fb:
80:a2:79:42:38:d1:c4:d3:d7:74:90:3d:2f:a7:7a:86:c5:c9:
41:ce:be:a3:1b:27:fa:a0:05:f5:ec:28:6d:70:0e:19:df:35:
8f:0b:3c:87:a1:54:69:71:3f:b3:9d:e2:09:44:2b:cd:d4:a2:
e4:31:da:80:77:02:13:5c:5c:e5:42:78:9f:48:55:6b:aa:11:
d3:d3:fa:7a:3d:7c:52:91:37:f0:89:de:83:00:bb:31:62:a3:
26:b3:d3:8d:93:61:ea:fa:2e:3a:42:56:1e:0a:44:c9:50:e4:
d1:58:18:8f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUPZmzhh6Z9kxFFPshSrgaJARVcWwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA4MDA0MjU4WhcNMjUxMTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0A0MTQ0OGMyNDM1MjRlOWRlNGI3NDAyZjNiZjNmOTZkYWNm
ODQzOTlhMWQ3MWZmNWMzMThhNjkxNzkwMjFhMzAzMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC3ijqWYpcI6QC4nB0Izv6C+kaWKtpNcPtRS5WsixPNFrJK
tdtuiaMgFxRCNGzQx13h9zy9+0IHr3X1TpjsiS44+QYE3VHHRqAc3k0i+olP/s70
gm+MAg6z0vEu5uL+unowEMwW8Vpvsbal71R+mEqHR7WCcK6ulRaqKIm20rwihTTn
uXx4UMCdSOpj9hMjkU9RHXbLZCpUtRxld5klU5+XPb2Dd1TrvWa4ZEsARCBYzFiT
KE4n4d5dA0Htfur6VMbgoPGPotE8j612O5sCA8jSyG3bRwo0/+vRnpy6EOdvruK+
HbmPqvb75tiSpqDY/Q6COwReEUby+puug7m3sEVnAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUzBO619NscAk3WkcCt8REUMaembcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzNkMzg3ZmY3LWZlZDgtNDMwOC1hOTkwLTFlYTA1OGZjYjE2MC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABjl1IwDQYJKoZIhvcNAQELBQADggEBABzAq2t/oXhMDNmMWxE6S0JqYeNU
LJU3ja+tgmUfSTiDX6eKOefl4DZYJfam3+WkLmmZq+KgCCitG58MUitayjNKphq+
zbaa0ITEtTYNIjGs+4QcYkWUByzTFIP8kO/tIZHDFp1T4qxmfSSSvAJq9oaI+9xz
2JKMFz+ef6k2RmKRXpflm2p7Xgoqypu7MeRz+4CieUI40cTT13SQPS+neobFyUHO
vqMbJ/qgBfXsKG1wDhnfNY8LPIehVGlxP7Od4glEK83UouQx2oB3AhNcXOVCeJ9I
VWuqEdPT+no9fFKRN/CJ3oMAuzFioyaz042TYer6LjpCVh4KRMlQ5NFYGI8=
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:13:06 2025 by rpki-client