Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5162db0c-39ce-421b-bf47-e64189de8c1c.roa
File: 5162db0c-39ce-421b-bf47-e64189de8c1c.roa (raw, json)
Hash identifier: 8Sjn8JGSoU2aDflxAnORMC4LWFeDxWFxOAVjY5GE4PM=
Subject key identifier: 36:DD:34:11:C2:1E:D5:B3:81:03:75:0D:F9:B9:70:17:DE:15:91:47
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5844C08281729DBC296BA6AA86BDB13A33BFEE89
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5162db0c-39ce-421b-bf47-e64189de8c1c.roa
Signing time: Wed 08 Oct 2025 00:42:17 +0000
ROA not before: Wed 08 Oct 2025 00:42:17 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 99.151.184.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:44:c0:82:81:72:9d:bc:29:6b:a6:aa:86:bd:b1:3a:33:bf:ee:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:42:17 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=46c9855eca52216157355876e82d8ef3e8a3df352ec26ce09a0774b4dfb29d8c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:43:97:6f:35:06:03:2e:9a:e6:d7:fe:b0:14:
58:cb:45:3e:ef:f7:a5:94:39:8f:4c:92:25:19:a3:
db:0b:7d:f5:aa:8f:38:84:d4:d8:07:e8:9a:76:0b:
da:25:bd:d6:66:d8:01:ff:df:d2:ff:16:f6:42:e5:
8b:e4:d9:77:d0:70:0f:ae:88:e9:37:e8:93:18:e1:
ee:1a:bd:6f:70:04:f0:d6:90:b7:36:34:04:a7:7a:
ed:59:68:4a:eb:db:d6:44:f3:46:89:b0:2a:43:c0:
db:65:19:d4:2b:de:e2:e3:dc:42:7c:e9:1b:9e:24:
b4:5c:65:47:14:58:94:63:6a:6f:6b:7f:46:90:61:
b6:9f:5e:f6:ab:f3:7d:04:d5:e6:92:91:5f:a5:2f:
d1:dc:18:de:b2:ef:8b:40:c3:48:c7:90:fc:ff:19:
38:07:25:e6:f5:36:92:d4:d3:21:a7:82:e6:20:8c:
33:84:4e:44:54:d9:ea:95:da:09:f3:5b:ef:b7:91:
3e:1f:d5:7b:9b:56:70:0c:49:49:bb:11:af:29:f4:
38:06:47:e0:71:d6:92:c8:2c:2e:da:84:6e:5f:2e:
8b:1d:ce:28:75:2b:46:6e:82:54:9b:f0:93:76:05:
69:f6:18:1f:07:b7:f6:2f:61:e7:74:95:45:6d:6b:
20:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:DD:34:11:C2:1E:D5:B3:81:03:75:0D:F9:B9:70:17:DE:15:91:47
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5162db0c-39ce-421b-bf47-e64189de8c1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.184.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:02:df:89:7b:25:d9:b1:92:36:4c:ad:ab:20:ea:94:10:07:
43:8e:ec:29:97:81:30:50:53:b2:bf:1c:fc:25:93:9e:bb:c1:
95:e9:9f:a1:d8:57:7e:9e:d6:e3:ee:e6:9e:16:fb:e2:bc:a8:
ab:c7:b4:b8:a3:af:56:b2:fa:df:b8:9b:36:61:52:e7:05:22:
32:2f:51:3b:3e:5f:53:58:c0:b3:05:f0:bf:e6:02:ee:72:e8:
63:df:14:51:9a:13:9d:cd:0f:ae:5c:87:41:63:e7:86:05:9d:
7f:f2:02:d9:9b:c9:b5:25:a1:52:a5:6a:c4:8e:d0:ad:1c:83:
8e:90:12:3d:eb:c2:1c:bc:35:77:55:0e:8a:46:68:45:94:62:
e9:0c:f6:b5:d5:68:da:57:3b:4c:a9:fd:d2:d4:a9:89:77:0d:
09:b6:9c:ad:36:79:ce:3a:69:ac:47:a0:a2:ae:9f:cf:ec:e1:
78:b3:d5:05:93:c2:fc:bb:3d:49:52:31:59:3d:93:7d:79:aa:
80:3b:ac:45:02:35:85:e6:34:dc:8b:f4:5e:94:bc:3e:69:82:
4f:4c:d5:53:70:c5:89:79:ed:d9:ba:c2:12:da:5a:3b:44:20:
e7:29:58:36:89:2e:32:79:70:d3:38:dc:03:47:a2:8e:dd:57:
14:54:8a:e6
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUWETAgoFynbwpa6aqhr2xOjO/7okwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA4MDA0MjE3WhcNMjUxMTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0A0NmM5ODU1ZWNhNTIyMTYxNTczNTU4NzZlODJkOGVmM2U4
YTNkZjM1MmVjMjZjZTA5YTA3NzRiNGRmYjI5ZDhjMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCdQ5dvNQYDLprm1/6wFFjLRT7v96WUOY9MkiUZo9sLffWq
jziE1NgH6Jp2C9olvdZm2AH/39L/FvZC5Yvk2XfQcA+uiOk36JMY4e4avW9wBPDW
kLc2NASneu1ZaErr29ZE80aJsCpDwNtlGdQr3uLj3EJ86RueJLRcZUcUWJRjam9r
f0aQYbafXvar830E1eaSkV+lL9HcGN6y74tAw0jHkPz/GTgHJeb1NpLU0yGnguYg
jDOETkRU2eqV2gnzW++3kT4f1XubVnAMSUm7Ea8p9DgGR+Bx1pLILC7ahG5fLosd
zih1K0ZuglSb8JN2BWn2GB8Ht/YvYed0lUVtayDPAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUNt00EcIe1bOBA3UN+blwF94VkUcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzUxNjJkYjBjLTM5Y2UtNDIxYi1iZjQ3LWU2NDE4OWRlOGMxYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFjl7gwDQYJKoZIhvcNAQELBQADggEBAC0C34l7JdmxkjZMrasg6pQQB0OO
7CmXgTBQU7K/HPwlk567wZXpn6HYV36e1uPu5p4W++K8qKvHtLijr1ay+t+4mzZh
UucFIjIvUTs+X1NYwLMF8L/mAu5y6GPfFFGaE53ND65ch0Fj54YFnX/yAtmbybUl
oVKlasSO0K0cg46QEj3rwhy8NXdVDopGaEWUYukM9rXVaNpXO0yp/dLUqYl3DQm2
nK02ec46aaxHoKKun8/s4Xiz1QWTwvy7PUlSMVk9k315qoA7rEUCNYXmNNyL9F6U
vD5pgk9M1VNwxYl57dm6whLaWjtEIOcpWDaJLjJ5cNM43ANHoo7dVxRUiuY=
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:00:43 2025 by rpki-client