Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9295fe51-6fdd-4cae-86c2-3186a119ca85.roa
File: 9295fe51-6fdd-4cae-86c2-3186a119ca85.roa (raw, json)
Hash identifier: aDg6D8uMX84ZaGMCx0cjBKfwMBsz69p+60NkwG1LD8s=
Subject key identifier: 0F:89:12:F2:6E:B0:3E:6D:C8:EC:E3:80:31:3B:39:AC:CA:B9:F3:8D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 75B22C6416273574A57BA0D2B38DE4694BCEDCA8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9295fe51-6fdd-4cae-86c2-3186a119ca85.roa
Signing time: Tue 14 Oct 2025 23:41:15 +0000
ROA not before: Tue 14 Oct 2025 23:41:15 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.86.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:b2:2c:64:16:27:35:74:a5:7b:a0:d2:b3:8d:e4:69:4b:ce:dc:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 23:41:15 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=7b674f822de565464c23a7ae04ee66af44df78ea4a15e797a85657e6a4e3ea3c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:12:57:4f:10:fc:9c:71:1e:c5:54:64:89:65:
60:ed:2e:19:27:0e:fe:92:27:b9:06:01:cd:d6:ce:
68:95:53:f9:b3:f2:c6:18:5e:10:8f:bd:89:22:a4:
d5:4d:d0:7c:36:99:c3:98:2f:9d:0e:1d:86:e3:7b:
af:ee:ac:09:6f:fd:30:f6:7d:38:20:42:5d:a5:ad:
68:31:ec:e0:12:55:d0:5c:84:f5:31:89:0a:73:f5:
a4:58:f0:7a:5d:93:c0:d2:07:fd:8e:db:cf:f2:49:
28:8d:a8:9f:5f:e4:ee:a8:74:3c:f5:59:dc:5b:82:
c6:d9:40:70:35:8d:34:d5:ce:2b:9c:67:bd:05:bb:
fa:3d:53:39:ee:cc:2d:ff:cd:3f:a1:af:de:cf:39:
81:7a:ac:6d:04:07:b9:e6:2c:01:b5:2f:88:cb:23:
3e:c4:40:4c:04:03:94:e8:ad:b5:b9:00:22:30:77:
fd:70:8c:14:ce:36:90:c7:8f:4b:12:ac:6a:36:4a:
4c:50:dc:ab:ca:46:c8:b9:dc:5f:83:e5:c1:8c:b3:
11:e9:ca:1c:3d:3e:23:c8:8d:08:91:f6:15:99:0f:
42:08:88:e8:3e:d5:35:f6:01:2b:48:44:a7:15:08:
02:7d:e2:d5:7f:75:6b:8d:9a:85:40:e9:cb:01:4c:
45:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:89:12:F2:6E:B0:3E:6D:C8:EC:E3:80:31:3B:39:AC:CA:B9:F3:8D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9295fe51-6fdd-4cae-86c2-3186a119ca85.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.86.29.0/24
Signature Algorithm: sha256WithRSAEncryption
32:ff:af:eb:7d:ae:12:cc:3f:62:d6:ef:17:45:49:36:c0:f8:
ba:32:13:5f:d7:ca:81:ab:10:24:70:46:57:e3:87:72:7a:78:
2f:71:2c:a9:78:91:79:2b:31:ff:0c:a7:0a:ae:c1:c5:87:40:
26:94:d7:a2:d7:87:12:31:00:94:ee:18:9d:dc:70:a0:ad:dd:
8a:48:fb:ca:28:89:17:33:bb:6e:03:dc:7e:18:9f:87:11:89:
50:fa:da:00:40:2b:14:61:ba:b4:c0:f1:86:a8:b9:44:ef:e3:
a5:19:c4:b3:bd:be:ec:5a:3a:d8:66:11:10:58:44:18:72:45:
d7:14:eb:2b:db:0e:ac:5a:da:6b:7c:d4:75:ce:ae:af:04:71:
18:ab:aa:77:5e:3d:ae:25:6a:eb:96:2c:26:4d:fb:1a:97:2f:
81:e5:a7:29:a7:3f:e2:24:bf:b4:d1:bd:ea:f5:92:f7:d9:09:
64:d8:ae:49:06:f5:4a:4d:9d:48:45:f6:45:78:e7:86:54:42:
d5:af:6b:1e:7e:b6:c4:ec:ea:d6:48:7d:bd:21:8a:98:8a:41:
70:64:81:20:36:fc:34:da:30:6f:9b:93:e7:07:6a:c8:d8:17:
f8:8b:37:20:12:a1:84:a5:c2:03:a6:7f:47:b7:5b:7a:67:1a:
41:aa:ce:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:28:38 2025 by rpki-client