Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b050e21b-38ce-445b-9e45-ef4e4384cc13.roa
File: b050e21b-38ce-445b-9e45-ef4e4384cc13.roa (raw, json)
Hash identifier: m0LJy+YGkgvBHYNG57lXiyI/DuFxWMiRM/jZmGlu2lc=
Subject key identifier: 3D:3B:25:A2:90:0B:FF:0D:BD:A4:9D:83:93:EB:2D:E8:BC:E8:D6:22
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1CF501F95337BDB0FADF6E3FF737941E360893
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b050e21b-38ce-445b-9e45-ef4e4384cc13.roa
Signing time: Wed 08 Oct 2025 00:40:09 +0000
ROA not before: Wed 08 Oct 2025 00:40:09 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.150.64.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:f5:01:f9:53:37:bd:b0:fa:df:6e:3f:f7:37:94:1e:36:08:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:40:09 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=956d2cf84b6123f53058bc58a6989f4ed3ca9a76830b6b1cb545b17837894d32, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4d:aa:4e:48:32:ba:21:3e:24:4c:a5:9d:a9:
9f:1d:d5:b2:87:9c:8e:a4:2f:fa:13:32:63:54:69:
4b:32:25:dd:25:9f:30:b8:b1:68:f9:e7:86:06:0a:
c4:a9:59:56:2e:21:71:bd:b2:11:9d:30:9a:01:c4:
da:dd:9f:48:bd:e6:9d:5d:95:e9:b7:cc:4b:94:c2:
e0:fc:77:cc:51:ca:ce:b7:f2:ef:cc:bc:09:01:29:
14:e1:48:9e:47:39:c8:ed:fa:32:25:63:7d:cd:ee:
7b:ac:71:aa:a1:e2:36:0d:47:80:0b:81:7d:05:a2:
fa:fa:82:22:65:60:97:90:60:64:ca:ac:70:e4:e8:
d0:b2:7f:f5:99:6f:d7:a5:c9:ef:6c:9c:fb:2e:40:
50:63:52:0f:84:29:bc:26:f0:31:ec:56:5a:ca:8c:
31:ec:ac:bf:67:f2:08:e9:9e:ba:c9:25:a3:49:d4:
19:51:1d:11:65:c1:78:9c:68:36:dd:33:75:f5:d0:
78:71:cf:84:44:1f:95:2d:e7:07:11:16:d5:f5:11:
18:78:ad:25:57:34:65:1c:c4:39:8f:48:fd:5b:32:
72:01:ec:97:8e:ae:ef:85:82:0a:3d:6f:72:16:b4:
e5:79:18:54:c4:cc:5c:87:7b:f5:35:d2:12:0a:28:
6e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3B:25:A2:90:0B:FF:0D:BD:A4:9D:83:93:EB:2D:E8:BC:E8:D6:22
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b050e21b-38ce-445b-9e45-ef4e4384cc13.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.150.64.0/21
Signature Algorithm: sha256WithRSAEncryption
68:3f:bc:bc:08:b0:ae:c2:ce:2d:be:6e:fb:8d:85:b3:ca:f3:
10:ef:3d:53:56:bf:fb:90:f6:47:d8:20:e4:32:b1:6e:44:62:
ab:3f:d0:78:8c:19:c1:d6:53:b4:a8:b8:1a:32:16:26:3f:96:
b4:5c:ca:49:61:25:ae:c7:1e:8e:7a:17:e5:8f:ee:fe:1d:be:
f0:13:23:8e:1e:0b:63:a9:53:ee:98:a1:21:8b:38:15:08:e0:
c4:f8:19:49:4a:77:6c:1f:1c:a9:23:05:89:61:50:f5:0e:f9:
65:c4:c0:fe:7f:de:c5:f8:e5:ff:0f:fe:2f:06:b4:16:50:cc:
ef:a4:6a:de:2e:48:f8:be:c2:fb:cb:e5:f4:c9:1d:25:55:3b:
df:b4:47:83:b4:1a:77:4c:2c:05:cb:e0:49:29:54:4b:00:b1:
18:ea:c2:e9:de:85:80:dd:ea:51:f3:28:d5:6f:c6:ae:3a:36:
3a:f2:95:01:2c:66:56:c9:46:9a:ba:ab:90:6c:b2:a9:95:42:
83:71:14:68:1d:53:df:1b:31:9f:00:f4:56:c1:3f:b8:6a:ef:
e0:58:a6:d9:70:5b:43:7f:ac:bb:c2:ee:d2:fd:d2:81:68:a4:
a7:69:01:de:2b:19:5e:dd:c1:a0:9e:ca:d5:ec:f3:da:af:30:
c7:54:31:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:18:50 2025 by rpki-client