Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa
File: cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa (raw, json)
Hash identifier: m2TO8u8EAqKw3f29Yc5Lk6FXIoNglqKx52ec6l2KqSc=
Subject key identifier: 82:A3:E8:5B:BF:6F:5B:07:F2:8C:30:80:B1:B1:B5:F4:84:34:2C:3C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7649773A9DFA0FF24AC58B454D636C93CEAD5AC4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa
Signing time: Wed 08 Oct 2025 00:40:48 +0000
ROA not before: Wed 08 Oct 2025 00:40:48 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.150.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:49:77:3a:9d:fa:0f:f2:4a:c5:8b:45:4d:63:6c:93:ce:ad:5a:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:40:48 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=ecec0e4ffe7383af0d2d35d2c4f4a4f4c0f2183b66ab9a7efb4b9feb1c0853e3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e4:50:de:00:e0:b2:02:0c:61:33:a3:36:f9:
86:0d:3f:3e:c1:74:9e:4c:28:e0:05:ba:e8:82:ef:
c8:14:c3:5e:de:11:93:10:d0:af:5f:37:d2:d6:e1:
9e:b3:26:2c:cd:2b:77:5a:a8:b3:9f:05:76:52:42:
91:b5:23:68:82:f9:5d:25:32:7e:25:de:3f:3e:a7:
ec:0e:68:5a:88:61:46:8a:21:8e:95:69:17:28:6c:
41:85:42:b0:d8:6c:c1:f0:d9:cf:0a:d6:93:6a:c6:
c4:cb:8f:62:7b:37:d9:bb:fd:39:c1:d8:b2:8c:44:
18:32:c4:a5:c0:e5:62:af:07:9e:43:0b:39:fd:6f:
04:39:2d:ec:63:38:6a:5a:ed:15:c5:24:08:dc:39:
70:fd:0a:7f:e6:de:05:2d:7c:ad:6f:03:06:04:e1:
00:d0:d9:be:64:f1:53:ff:42:c0:d9:62:9e:dd:c5:
8c:34:a9:98:1c:2f:2b:02:28:34:b2:35:73:a5:fc:
b1:d9:90:e4:8f:f0:f2:1c:62:cb:d1:e5:09:93:d9:
0f:17:74:4f:ad:a5:12:1d:1a:f8:7f:cc:5f:87:55:
e0:10:1b:f2:67:ee:fe:8d:bd:62:20:4e:9a:82:2b:
f3:e4:9c:ed:90:4b:e8:37:69:bd:9a:ca:40:3d:30:
c3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A3:E8:5B:BF:6F:5B:07:F2:8C:30:80:B1:B1:B5:F4:84:34:2C:3C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.150.0.0/17
Signature Algorithm: sha256WithRSAEncryption
c3:21:4f:b7:0f:1c:dc:d1:6a:b4:54:12:d1:60:fb:e8:7f:cd:
f9:cf:19:cb:2f:73:b4:aa:7a:43:f2:bd:45:70:77:71:61:f2:
9a:af:c6:62:3c:de:c7:29:14:84:ae:2a:5f:10:14:f6:e1:31:
23:38:b5:68:16:81:33:3f:85:eb:55:ee:dc:3c:f2:ba:d6:95:
24:f1:b4:c7:50:72:d1:5e:c3:15:9a:7f:e3:09:3a:46:5a:7f:
e3:ea:2b:95:6c:9b:64:2c:c0:89:42:97:11:fb:98:25:85:10:
12:65:aa:4a:7b:75:ba:3a:ac:53:e8:ae:92:9d:6b:52:52:31:
6e:b7:28:be:2a:11:37:c9:a8:0a:69:29:88:10:59:e3:2a:fc:
fb:5a:cd:b9:e2:31:75:38:30:00:dd:1b:c5:d6:4b:51:21:f7:
78:33:65:cb:3a:fc:f0:d7:11:63:a8:f7:ca:18:53:73:07:7b:
5b:27:00:8a:92:94:2f:13:39:9c:9e:17:bf:2f:67:d9:bc:78:
68:0a:14:9d:47:19:5b:63:e6:d6:a9:73:63:23:25:69:67:4f:
40:97:54:b9:8c:af:81:3f:b2:28:3f:6b:cb:b1:7c:ee:cc:d3:
e9:69:07:e5:95:42:f0:ec:c0:83:48:1a:c5:22:a4:9f:04:78:
8d:98:d5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:45:37 2025 by rpki-client