Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa
File: 669c6dd1-8211-4cb9-b776-33c71b14ac40.roa (raw, json)
Hash identifier: T4nrcKwcI7tosMp0bMUIyXvvQPi4Oi68YJzXxJEkdtc=
Subject key identifier: F3:80:BF:50:B3:90:03:49:B5:4F:8A:63:0C:A0:3E:73:B1:57:BF:FC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3132C8FAD7390C9A865DD7EB243838CFA38798AD
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa
Signing time: Wed 08 Oct 2025 00:51:24 +0000
ROA not before: Wed 08 Oct 2025 00:51:24 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.72.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:32:c8:fa:d7:39:0c:9a:86:5d:d7:eb:24:38:38:cf:a3:87:98:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:51:24 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=594adeda892b1af7bb7db68fc743bd6f600d69af22d47bbd25003fc17013e70f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2d:99:25:21:83:ac:d7:72:6e:a1:c3:99:3c:
86:b3:99:d6:66:e1:92:98:da:07:8b:83:aa:eb:e3:
f3:96:d0:a6:47:b4:b8:c6:3a:93:76:c8:7b:c0:4f:
19:c7:ec:f0:7e:99:6b:5a:75:06:45:db:cc:5f:9d:
09:7b:8b:23:71:e9:6a:ea:aa:21:5c:ae:8d:00:d9:
15:cb:71:9b:c7:b9:7f:f0:11:6b:33:ed:dd:7a:d8:
01:2a:33:31:24:7d:d3:58:e3:a9:fa:17:af:7a:44:
af:7e:32:3c:dc:55:89:d2:78:b8:b9:ec:d0:39:6a:
93:34:da:30:1d:1f:49:c5:0b:17:b2:f0:43:43:18:
c5:b2:ae:42:33:ad:00:53:84:e2:7f:77:74:59:1c:
07:12:51:42:f0:0e:ee:57:e3:03:0f:d8:7f:2a:12:
3d:89:f8:f7:1b:ae:aa:95:8a:bc:3a:04:40:9e:95:
1b:87:87:5e:f2:8a:7b:85:7c:a2:39:65:89:74:e3:
83:f1:6f:c7:4f:74:a3:75:3f:c3:6b:01:74:0c:c7:
fd:e1:7f:f6:21:45:16:1a:60:f3:ad:c4:ac:b9:6d:
3a:68:3d:92:00:9a:b3:19:a2:a3:45:9e:43:bf:53:
5f:02:3a:79:d7:58:c5:3f:f9:96:5f:d1:69:9a:94:
48:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:80:BF:50:B3:90:03:49:B5:4F:8A:63:0C:A0:3E:73:B1:57:BF:FC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.72.0/23
Signature Algorithm: sha256WithRSAEncryption
34:bc:9e:08:7c:da:66:ed:49:ed:f7:fb:32:29:c7:c3:a1:06:
c6:d0:ae:f8:c5:22:9f:e8:8c:31:44:14:79:cb:c0:5c:1d:f7:
20:e0:90:0d:7d:74:64:10:7e:d2:ec:a7:3c:17:70:d3:92:23:
d8:44:35:ca:b3:8e:0d:82:56:3c:84:64:32:d1:ba:fc:f5:db:
8e:14:f6:44:09:d1:90:7e:d7:dc:8c:66:1a:20:86:5e:17:0b:
6a:96:c8:61:d4:de:fc:43:8a:fd:42:1d:9b:b4:ea:11:8b:07:
24:a6:28:67:c8:ae:74:c1:b9:a0:83:92:67:62:bb:e9:39:2e:
09:a4:0f:df:c8:63:6f:8f:01:52:71:72:69:43:a0:9f:87:73:
c1:fd:88:8e:35:8f:ff:4c:24:63:6d:ea:92:02:45:f5:e3:73:
f4:77:85:af:47:8f:7a:88:8c:07:7b:1a:8c:d8:2e:db:21:93:
f5:a7:2f:0b:50:c0:e4:fd:be:53:49:83:e6:e2:8b:52:22:54:
f6:5b:55:30:25:84:32:69:bc:2c:ac:e3:47:90:ed:45:6d:d2:
c9:00:a2:65:ae:21:ba:ae:fa:72:e2:b3:fe:e6:47:33:ba:c5:
52:3f:07:7c:48:68:d0:4b:66:93:39:5f:93:d7:a7:0e:44:72:
59:b9:f7:fc
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUMTLI+tc5DJqGXdfrJDg4z6OHmK0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA4MDA1MTI0WhcNMjUxMTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0A1OTRhZGVkYTg5MmIxYWY3YmI3ZGI2OGZjNzQzYmQ2ZjYw
MGQ2OWFmMjJkNDdiYmQyNTAwM2ZjMTcwMTNlNzBmMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDILZklIYOs13JuocOZPIazmdZm4ZKY2geLg6rr4/OW0KZH
tLjGOpN2yHvATxnH7PB+mWtadQZF28xfnQl7iyNx6WrqqiFcro0A2RXLcZvHuX/w
EWsz7d162AEqMzEkfdNY46n6F696RK9+MjzcVYnSeLi57NA5apM02jAdH0nFCxey
8ENDGMWyrkIzrQBThOJ/d3RZHAcSUULwDu5X4wMP2H8qEj2J+PcbrqqVirw6BECe
lRuHh17yinuFfKI5ZYl044Pxb8dPdKN1P8NrAXQMx/3hf/YhRRYaYPOtxKy5bTpo
PZIAmrMZoqNFnkO/U18COnnXWMU/+ZZf0WmalEiDAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU84C/ULOQA0m1T4pjDKA+c7FXv/wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzY2OWM2ZGQxLTgyMTEtNGNiOS1iNzc2LTMzYzcxYjE0YWM0MC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFjl0gwDQYJKoZIhvcNAQELBQADggEBADS8ngh82mbtSe33+zIpx8OhBsbQ
rvjFIp/ojDFEFHnLwFwd9yDgkA19dGQQftLspzwXcNOSI9hENcqzjg2CVjyEZDLR
uvz1244U9kQJ0ZB+19yMZhoghl4XC2qWyGHU3vxDiv1CHZu06hGLBySmKGfIrnTB
uaCDkmdiu+k5LgmkD9/IY2+PAVJxcmlDoJ+Hc8H9iI41j/9MJGNt6pICRfXjc/R3
ha9Hj3qIjAd7GozYLtshk/WnLwtQwOT9vlNJg+bii1IiVPZbVTAlhDJpvCys40eQ
7UVt0skAomWuIbqu+nLis/7mRzO6xVI/B3xIaNBLZpM5X5PXpw5Eclm59/w=
-----END CERTIFICATE-----
Generated at Mon Oct 20 16:13:34 2025 by rpki-client