Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91f64723-3e76-4b11-8f43-0a8fde10d676.roa
File: 91f64723-3e76-4b11-8f43-0a8fde10d676.roa (raw, json)
Hash identifier: J5tSGxw0AjrtdY3DAkmCI6GggKvBa0n5GEQQXp/Msxs=
Subject key identifier: 2F:C9:6E:F8:29:95:50:07:C2:A7:82:AA:13:5F:86:0D:29:50:A3:C0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2CC77810B64A8A1AEF033077B35649426AEB5E3B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91f64723-3e76-4b11-8f43-0a8fde10d676.roa
Signing time: Wed 08 Oct 2025 00:42:09 +0000
ROA not before: Wed 08 Oct 2025 00:42:09 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:c7:78:10:b6:4a:8a:1a:ef:03:30:77:b3:56:49:42:6a:eb:5e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:42:09 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=e7d6a5eeda731f2eb0479d1f54e4f5cadc6e27dad4fd691a1907c79bba4cbaaf, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0f:8e:26:35:32:01:86:28:12:f9:ab:26:c6:
ee:96:5c:c4:fd:88:10:76:1c:b7:87:06:ba:2a:8b:
d1:2a:35:b0:8e:53:ad:25:cb:33:1a:84:71:20:74:
9a:0a:1b:be:57:56:fc:8a:0d:66:31:a4:f0:35:a4:
66:84:3b:2a:91:61:02:4e:6a:9e:89:c7:f9:94:59:
b5:07:6c:24:f2:64:8d:44:5d:15:8a:d2:1d:b7:01:
aa:de:1e:2e:f5:9a:8b:c8:5b:43:8f:d2:5f:fc:bf:
0e:87:06:3e:8f:94:74:3c:6f:6b:0e:e9:86:42:02:
35:89:01:e6:af:89:71:b6:d8:cd:00:92:60:bc:09:
ce:15:dd:8e:a4:cc:d9:2b:da:67:69:ed:72:fb:fa:
5d:af:63:32:9f:2f:b6:28:ee:49:77:8d:b5:6d:6b:
10:ed:f4:af:23:d8:30:34:3d:1f:a8:d6:33:74:c6:
e4:d0:79:6d:1b:d9:8a:1c:34:1c:7a:7f:29:5a:b4:
12:47:a0:76:42:d3:3c:4d:3d:70:29:41:63:5f:da:
24:57:d4:ac:a4:0f:5c:ac:05:db:bc:bd:5d:1e:f7:
05:ad:73:19:f7:48:5d:f0:75:13:6b:e9:0b:1c:00:
d7:fa:48:fd:8c:c6:79:61:85:ef:f2:b7:3a:e9:19:
94:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C9:6E:F8:29:95:50:07:C2:A7:82:AA:13:5F:86:0D:29:50:A3:C0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91f64723-3e76-4b11-8f43-0a8fde10d676.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.190.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f8:b3:af:59:23:b2:35:04:e9:b9:7f:e5:f3:6c:3b:8e:30:
8d:05:60:b7:64:f9:14:9e:0d:00:cb:66:e3:48:d7:12:64:b5:
8d:ac:07:07:f5:05:96:3b:4b:9d:3f:7f:9d:e4:1b:8f:1a:fe:
d3:07:d8:aa:d1:39:82:49:08:77:09:22:ce:56:2e:e6:71:fc:
e8:d5:71:e5:7a:89:08:68:06:6b:35:35:76:e6:45:e8:19:04:
a8:85:f5:d9:7f:35:17:55:cf:06:e5:07:cb:31:94:23:f0:52:
e7:ac:00:39:14:7a:00:d2:45:1c:66:1c:9f:99:da:1b:6c:e5:
95:01:74:fe:68:53:cb:1a:c6:8a:a0:1d:51:ae:33:f3:dd:fc:
5e:fa:5d:ad:b1:93:03:ef:7f:4d:91:a5:f5:8f:fa:3f:b7:86:
c4:7d:ce:34:90:01:04:b5:2e:d6:21:89:a4:b1:ca:b0:40:16:
f3:1c:d8:51:82:5f:8d:68:63:a7:0e:ec:bb:44:09:57:ee:63:
56:a6:54:3d:9e:95:ce:fd:55:81:ac:41:d0:d5:29:7a:37:7a:
8a:57:0e:94:68:7f:a1:ee:16:96:4f:ef:ff:82:85:22:a9:a0:
3d:8e:a0:b8:f9:66:1c:9c:45:89:e5:28:3c:88:7e:0c:fa:e5:
40:e6:ec:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:07:06 2025 by rpki-client