Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa
File: 3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa (raw, json)
Hash identifier: nnN3EpiXWKWFL/qNjFiqTlA8gtPZgNeXqgiISvtgArE=
Subject key identifier: 50:FE:A8:73:5E:23:9B:7A:E8:A1:0D:98:00:C7:52:B2:79:36:21:CA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 51556ED229330A6DF5A4605CB4D6455573CA3FED
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa
Signing time: Wed 08 Oct 2025 00:41:42 +0000
ROA not before: Wed 08 Oct 2025 00:41:42 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.168.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:55:6e:d2:29:33:0a:6d:f5:a4:60:5c:b4:d6:45:55:73:ca:3f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:41:42 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=bfdd82746b3fa6ea2d7e136687d272d44b597ac4a6d0a5214f42b56e1591c232, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:34:18:1b:ce:2e:46:6d:fe:74:52:2d:eb:06:
8a:fa:f7:cc:08:9b:98:e1:51:e9:cd:81:2c:88:8c:
a4:8d:e2:ef:9b:8b:b0:d6:cf:e6:6d:05:ba:26:a7:
1b:6e:e4:9f:96:27:1c:07:e8:76:16:b8:5e:cb:0a:
6c:c2:18:59:70:6a:e2:de:a2:02:bb:80:5d:1b:c0:
46:5f:17:45:65:ad:c1:65:39:1d:0b:59:f3:0c:5c:
18:90:7e:59:6d:95:18:48:9e:5b:39:26:db:c8:fa:
6a:d7:2c:eb:b5:f4:71:19:ba:72:3c:c1:6e:db:d9:
ce:a8:bc:f5:97:4a:7b:cc:ba:0d:c9:92:ee:fc:58:
20:07:ae:35:b3:e3:e3:96:5d:0b:18:e9:ef:c9:ce:
12:ed:5b:40:37:c5:5e:52:87:58:6e:3f:c2:2d:d8:
e1:6d:3e:fe:79:37:b1:04:60:9e:45:f2:05:18:ce:
03:eb:f3:b1:d5:f3:98:ed:0e:a7:65:fe:69:ed:91:
46:ff:ff:e7:58:e1:48:e2:35:63:2b:c4:84:20:65:
6c:75:d5:2d:5f:e5:93:7a:75:d9:f7:c3:10:65:04:
49:3e:ed:71:bf:e4:6d:ba:92:37:f0:69:6c:c4:16:
ca:1c:d8:9c:f7:8c:54:2c:82:3c:ad:41:8b:23:80:
48:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FE:A8:73:5E:23:9B:7A:E8:A1:0D:98:00:C7:52:B2:79:36:21:CA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.168.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:d9:68:80:51:fb:6c:e4:c8:06:72:5c:71:2f:e6:b5:be:ce:
1b:cd:8f:7d:d4:b4:9a:ef:1f:ee:a3:92:36:f8:a2:81:94:ab:
7b:61:7c:29:db:bb:6c:6e:35:0b:04:e4:7a:2c:10:d4:0e:70:
18:44:bc:fe:3f:e1:4d:1e:1c:01:9d:8e:b3:1d:89:da:f6:c8:
01:5f:14:6a:7b:b7:2e:a2:30:81:15:50:a8:9c:84:82:31:f8:
08:14:f9:92:96:b7:97:69:2d:f6:df:5d:f9:21:16:a3:0c:20:
29:d1:03:0e:fa:d4:58:14:7d:42:29:4f:63:de:4f:94:57:51:
48:42:b4:99:92:39:e9:9b:9d:0d:ed:a2:ec:fa:ab:a2:66:ce:
6c:87:50:66:43:f3:aa:30:10:69:f5:1c:e3:51:d6:e4:af:fc:
ef:bb:f2:5d:88:ff:d4:d3:50:58:ad:22:c0:94:37:fb:d9:e2:
6c:15:52:a7:f9:b0:26:8f:fb:5f:7f:a0:bf:ce:1e:1c:fb:d9:
3f:fa:a5:ca:3c:e7:82:06:c1:4d:c4:d8:c6:69:f5:20:1b:95:
dc:3f:da:27:ab:90:a1:81:14:87:ca:1a:5d:44:9f:54:55:d2:
ba:fe:0e:2c:6e:12:bf:f9:db:44:9a:0a:93:23:87:a3:df:31:
16:cf:10:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:01:30 2025 by rpki-client