Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa
File: 8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa (raw, json)
Hash identifier: 8pjupyzyk5eiLFqT9hCHftRaHMz3Br2vJbvssUjHOOU=
Subject key identifier: A7:F2:88:9A:21:62:B8:80:E7:83:96:44:0C:A1:66:E9:B2:6C:0A:5A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 725118420F46BDA5149EBCA7B5C43F451E4B6439
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa
Signing time: Wed 08 Oct 2025 00:41:37 +0000
ROA not before: Wed 08 Oct 2025 00:41:37 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.156.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:51:18:42:0f:46:bd:a5:14:9e:bc:a7:b5:c4:3f:45:1e:4b:64:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:41:37 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=74039046467b3290110401ac662e3c8956d6a34d46f08355d3556e6ed7ae4f94, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:01:4b:88:e4:e2:bc:09:fa:6e:cc:1e:ce:4b:
c8:8a:08:06:c2:0b:bf:b3:01:88:89:8c:d8:5d:a5:
e0:75:65:aa:3e:3d:9b:9c:e5:2a:4f:56:b3:17:62:
4a:10:b3:89:88:42:3a:cd:57:10:08:4c:31:03:ee:
8c:14:36:c8:a2:f5:48:04:aa:41:39:6a:56:aa:25:
b9:88:24:ed:7b:4c:06:59:9b:63:bf:b9:9c:a4:d6:
f9:b8:f5:38:91:ee:b1:ff:39:78:88:0d:95:b5:a4:
63:74:13:1a:c3:6d:93:68:ec:f5:80:bc:b4:12:a6:
13:b7:45:c3:60:8c:70:18:5e:6e:13:34:2c:58:4a:
82:ca:4c:4d:ce:2a:55:13:8c:61:c9:5f:30:d2:fe:
34:19:55:60:89:09:d3:24:2e:eb:90:b6:18:0a:f8:
70:46:aa:87:72:29:a1:4f:35:96:45:4f:65:fc:7f:
55:45:3a:31:f1:e5:a0:f8:9f:9d:33:ae:20:d4:61:
80:5f:08:59:e6:71:65:3b:af:f9:64:a6:90:25:78:
08:33:2a:4c:6a:2e:2a:c2:8b:cf:32:bb:c1:4a:52:
ee:35:11:32:6c:f7:30:05:8a:1e:58:85:3d:4c:8e:
0c:ad:fd:fe:95:75:98:f7:b0:24:22:c4:96:b9:92:
28:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F2:88:9A:21:62:B8:80:E7:83:96:44:0C:A1:66:E9:B2:6C:0A:5A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.156.0/23
Signature Algorithm: sha256WithRSAEncryption
09:45:1f:1e:e9:71:85:a2:41:7b:ff:42:bb:1d:0c:32:45:3e:
0b:6b:0d:0b:e0:59:52:27:5f:06:4f:62:d6:2c:cf:a8:e2:87:
55:ff:61:bd:cc:be:3b:d0:bd:6f:e4:d7:24:e7:b1:d3:e8:1a:
b5:91:44:ce:e0:4f:9c:02:3d:1e:41:a5:e8:aa:95:f3:a7:be:
b4:10:f4:af:44:13:db:4e:27:1d:4e:89:ba:8a:3c:cc:c9:e5:
7d:45:c4:71:ce:21:b4:7f:d2:0d:4e:62:38:12:77:18:6d:41:
52:91:09:d0:ef:6f:81:c5:70:bd:a1:4f:8c:d4:64:27:ee:f3:
aa:f8:18:f7:03:c4:7a:92:f2:c5:20:c8:59:6c:bf:a6:3e:ef:
4d:d0:66:27:ad:e4:4e:f2:62:d2:4c:cd:e6:02:a2:57:2d:69:
84:45:be:65:ec:ae:7f:90:af:4d:eb:a1:b3:a3:0d:df:8e:d4:
05:07:0b:37:5c:52:c8:69:d8:ab:16:d6:6c:a6:51:77:f9:4c:
c1:08:15:0a:dc:d6:24:4e:40:fd:ed:4a:7d:fe:f0:23:33:9f:
0c:31:95:cf:ea:62:38:24:c9:04:a6:5c:69:d6:dd:31:8d:fb:
83:c1:63:24:73:ec:7c:e7:fc:28:60:89:76:4c:7b:e2:bd:c0:
f4:94:d1:be
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUclEYQg9GvaUUnryntcQ/RR5LZDkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA4MDA0MTM3WhcNMjUxMTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0A3NDAzOTA0NjQ2N2IzMjkwMTEwNDAxYWM2NjJlM2M4OTU2
ZDZhMzRkNDZmMDgzNTVkMzU1NmU2ZWQ3YWU0Zjk0MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCZAUuI5OK8CfpuzB7OS8iKCAbCC7+zAYiJjNhdpeB1Zao+
PZuc5SpPVrMXYkoQs4mIQjrNVxAITDED7owUNsii9UgEqkE5alaqJbmIJO17TAZZ
m2O/uZyk1vm49TiR7rH/OXiIDZW1pGN0ExrDbZNo7PWAvLQSphO3RcNgjHAYXm4T
NCxYSoLKTE3OKlUTjGHJXzDS/jQZVWCJCdMkLuuQthgK+HBGqodyKaFPNZZFT2X8
f1VFOjHx5aD4n50zriDUYYBfCFnmcWU7r/lkppAleAgzKkxqLirCi88yu8FKUu41
ETJs9zAFih5YhT1Mjgyt/f6VdZj3sCQixJa5kigrAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUp/KImiFiuIDng5ZEDKFm6bJsClowHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzg3NTZhYjVhLWMwYjktNDdlNy04NWI5LTExYzdlNzBkMzhkNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFjl5wwDQYJKoZIhvcNAQELBQADggEBAAlFHx7pcYWiQXv/QrsdDDJFPgtr
DQvgWVInXwZPYtYsz6jih1X/Yb3MvjvQvW/k1yTnsdPoGrWRRM7gT5wCPR5Bpeiq
lfOnvrQQ9K9EE9tOJx1OibqKPMzJ5X1FxHHOIbR/0g1OYjgSdxhtQVKRCdDvb4HF
cL2hT4zUZCfu86r4GPcDxHqS8sUgyFlsv6Y+703QZiet5E7yYtJMzeYColctaYRF
vmXsrn+Qr03robOjDd+O1AUHCzdcUshp2KsW1mymUXf5TMEIFQrc1iROQP3tSn3+
8CMznwwxlc/qYjgkyQSmXGnW3TGN+4PBYyRz7Hzn/ChgiXZMe+K9wPSU0b4=
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:03:31 2025 by rpki-client