Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa
File: dd78fb58-81b2-482f-a731-59203ab98f30.roa (raw, json)
Hash identifier: fhGGmt79WhHwQs6ubF/YMo+zLYUnLA4jwWiLWWZSGqk=
Subject key identifier: E2:35:BA:DE:D2:51:56:10:E4:67:08:B7:48:8B:50:38:4B:8D:D4:98
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4C2218611FE1FD513E7CAF0968B0CEADB4887086
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa
Signing time: Mon 06 Oct 2025 16:41:53 +0000
ROA not before: Mon 06 Oct 2025 16:41:53 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:22:18:61:1f:e1:fd:51:3e:7c:af:09:68:b0:ce:ad:b4:88:70:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 16:41:53 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=7680ed155f26bf484a06f7ffaba99aaa29da3e90e9274cf28f8586721def6052, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1b:bf:ce:b1:a1:b8:55:ff:1c:85:d0:73:8e:
ba:a8:e5:35:6a:eb:2c:66:0e:05:04:14:43:bc:3b:
06:94:b8:e9:c0:ec:e9:bc:81:7b:75:67:ec:46:bb:
bf:cb:1d:56:9a:ca:66:3a:9a:ea:d5:b2:5d:48:75:
ea:a9:c6:03:c9:b4:be:43:5f:56:72:22:d1:d8:cf:
b0:90:d8:5e:e0:fe:56:05:b8:46:21:76:68:3b:4d:
be:2b:2e:af:11:78:44:86:26:0c:65:0e:b8:1f:33:
6e:05:70:a7:cb:e3:15:b7:58:f7:58:a4:c3:24:99:
a9:04:75:ed:79:4b:dc:da:1c:97:25:99:c1:4c:73:
9f:8e:4b:c0:8c:89:15:c8:3f:95:ed:5e:e2:64:da:
39:fd:b9:f8:92:fe:3c:c6:e8:31:07:7a:f0:f2:25:
85:e8:a8:1e:cc:a1:1c:44:e8:c6:bb:08:02:0f:42:
68:20:e6:39:35:50:7c:2c:d4:6e:85:d8:73:73:a3:
ac:74:aa:1f:49:4b:83:2c:73:11:15:c5:49:78:20:
98:ec:a7:ac:bd:37:70:59:5c:6d:1c:61:9c:c3:90:
e6:25:29:a4:6a:f2:86:b3:d2:78:9d:5d:fc:b0:02:
de:31:44:29:83:b8:5f:9b:40:e9:24:aa:70:68:b6:
40:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:35:BA:DE:D2:51:56:10:E4:67:08:B7:48:8B:50:38:4B:8D:D4:98
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.184.0/24
Signature Algorithm: sha256WithRSAEncryption
12:4a:57:cb:e6:d4:f7:03:92:73:9b:42:76:82:be:ce:f6:d8:
2c:af:66:0b:4f:61:f7:26:42:01:2d:17:69:fa:9f:f0:11:c9:
00:35:22:84:0f:05:2c:17:1a:d7:56:de:70:f6:be:dd:7f:20:
b3:f2:01:10:9e:c8:ff:d2:17:3b:18:eb:70:31:ec:84:ed:94:
9c:3b:26:e9:16:74:36:88:39:7e:c7:74:73:e6:b5:e5:05:5f:
fd:c1:b1:7c:08:92:97:eb:03:de:f3:90:20:63:47:03:44:dd:
ef:4c:c9:dd:11:b0:94:9b:f8:1b:bb:24:d6:2a:a5:2c:8d:4f:
cd:51:49:ae:0c:6e:76:f9:44:7c:66:f5:38:d6:dd:20:cc:cb:
b7:65:e8:4c:81:14:ae:86:b7:66:c4:f0:fe:d8:8e:61:ec:72:
d0:9b:f2:29:04:7a:b8:1b:c3:ec:99:26:a6:03:00:b6:3d:20:
b3:33:24:14:be:5a:bd:a4:fb:08:03:7f:09:56:02:d6:af:3c:
f1:18:86:7e:50:95:67:6b:ad:6e:91:f8:ce:87:de:09:3d:bc:
06:14:c8:02:57:a7:36:cf:d4:ee:0b:9b:16:f5:b9:cb:f4:b2:
2f:26:27:30:da:11:1f:a5:59:83:70:78:a5:b7:68:21:9d:93:
b5:d6:1c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:52:56 2025 by rpki-client