Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa
File: eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa (raw, json)
Hash identifier: hq5TGJaXIuAPyj0eQEu2tdaARmDRxTjzRZGPHoPkHZc=
Subject key identifier: 41:26:4F:24:FE:62:6B:D5:DD:27:86:FD:A9:22:7C:E2:BC:F4:88:EA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 122507DBCA125DA5159CDEB1B33A549EE71D6B97
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa
Signing time: Wed 08 Oct 2025 00:21:15 +0000
ROA not before: Wed 08 Oct 2025 00:21:15 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.150.16.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:25:07:db:ca:12:5d:a5:15:9c:de:b1:b3:3a:54:9e:e7:1d:6b:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:21:15 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=45bdeb041600aa596c28eeb740c84b43e2cb83f5a3949dee35f416147fc8a908, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4a:ec:ff:10:3f:a5:34:10:c3:81:c2:0a:ad:
a8:70:8b:cc:f3:b8:ad:d3:fc:c0:a0:84:fb:d7:d0:
c7:81:90:57:c7:bf:9c:4f:12:de:59:d1:b4:fb:53:
68:17:43:4e:51:42:19:5d:fe:f2:40:05:1d:dc:dc:
57:e8:5d:1d:7f:45:4c:b5:f2:d3:96:5a:8f:fa:2a:
1b:a2:27:36:d7:cd:a2:c7:54:d4:a4:ce:30:40:9e:
4a:d2:2b:2b:4d:c9:00:74:48:24:bf:9b:54:ab:e4:
20:1f:e2:c0:aa:0e:26:2e:49:ca:76:84:8b:bc:c2:
2b:a9:89:96:53:9d:22:69:7b:93:73:dd:ca:cb:70:
a8:57:ef:73:1f:f3:50:84:1f:99:7f:39:ab:61:1e:
3a:67:a9:b1:68:ac:6f:5d:a2:83:37:fc:f8:77:5c:
1a:4b:67:1e:6d:9b:ec:64:40:e2:00:ca:60:b0:f6:
e9:ca:97:a5:f9:40:4e:da:15:7e:fe:b1:45:c3:c0:
35:e4:17:9b:82:7a:ca:c6:c3:4e:2c:3c:c9:cc:93:
ef:42:91:70:d5:7d:46:3c:a8:ba:02:76:a9:95:17:
3d:f5:de:0e:c3:7f:66:a1:b0:e8:19:89:35:fb:82:
47:a9:23:fb:ed:bb:75:93:22:08:95:d2:2f:63:61:
25:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:26:4F:24:FE:62:6B:D5:DD:27:86:FD:A9:22:7C:E2:BC:F4:88:EA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.150.16.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:ba:5d:85:10:17:f8:5b:92:69:f4:8c:50:3b:9a:e5:e2:1e:
33:f0:b9:b7:27:3e:18:93:75:b5:27:6a:49:72:2d:47:ad:f3:
ce:18:55:63:3f:5b:35:55:0e:e8:a9:b5:08:99:d9:d3:7f:ee:
0d:3b:5a:a5:d8:7c:f6:a9:44:d8:65:73:12:2e:de:53:24:ea:
ab:d8:f4:a4:f6:23:99:96:f6:b3:fc:27:8d:a7:ee:fa:20:08:
e7:63:bc:2f:9b:ec:67:0c:ab:50:cb:56:8b:cc:05:cc:86:df:
3d:fb:3c:b7:85:94:06:cd:f2:9e:7e:34:c4:9d:1f:77:e9:11:
b8:80:3f:ee:ac:ef:d0:7b:71:81:43:ae:bd:be:e7:f0:83:b2:
d2:63:80:4e:5c:f5:26:d9:46:46:14:56:fa:2c:b8:19:69:33:
d5:e8:9c:50:91:4a:e2:07:ba:f8:c4:5a:65:42:9d:7e:cc:81:
53:11:7b:ea:b3:1a:8e:a5:a0:6e:63:ae:fb:ea:e2:e5:b2:dc:
10:d5:ed:3d:cc:2c:ea:ab:3c:3a:76:32:c2:ab:94:fb:a1:04:
1b:ed:a7:e2:dd:d5:13:eb:b3:fa:e8:f6:b2:2a:65:77:92:5f:
2a:1b:4b:a8:72:e0:64:2f:77:1e:78:40:8c:63:bf:e5:0c:c8:
89:0d:a1:8d
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUEiUH28oSXaUVnN6xszpUnucda5cwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA4MDAyMTE1WhcNMjUxMTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0A0NWJkZWIwNDE2MDBhYTU5NmMyOGVlYjc0MGM4NGI0M2Uy
Y2I4M2Y1YTM5NDlkZWUzNWY0MTYxNDdmYzhhOTA4MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC8Suz/ED+lNBDDgcIKrahwi8zzuK3T/MCghPvX0MeBkFfH
v5xPEt5Z0bT7U2gXQ05RQhld/vJABR3c3FfoXR1/RUy18tOWWo/6KhuiJzbXzaLH
VNSkzjBAnkrSKytNyQB0SCS/m1Sr5CAf4sCqDiYuScp2hIu8wiupiZZTnSJpe5Nz
3crLcKhX73Mf81CEH5l/OathHjpnqbForG9dooM3/Ph3XBpLZx5tm+xkQOIAymCw
9unKl6X5QE7aFX7+sUXDwDXkF5uCesrGw04sPMnMk+9CkXDVfUY8qLoCdqmVFz31
3g7Df2ahsOgZiTX7gkepI/vtu3WTIgiV0i9jYSX7AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUQSZPJP5ia9XdJ4b9qSJ84rz0iOowHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2VhY2ExMGVkLWY3NjUtNGE3Ni05ZWE1LTMyZjM5YjE5YzM2Yi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBANjlhAwDQYJKoZIhvcNAQELBQADggEBAC26XYUQF/hbkmn0jFA7muXiHjPw
ubcnPhiTdbUnaklyLUet884YVWM/WzVVDuiptQiZ2dN/7g07WqXYfPapRNhlcxIu
3lMk6qvY9KT2I5mW9rP8J42n7vogCOdjvC+b7GcMq1DLVovMBcyG3z37PLeFlAbN
8p5+NMSdH3fpEbiAP+6s79B7cYFDrr2+5/CDstJjgE5c9SbZRkYUVvosuBlpM9Xo
nFCRSuIHuvjEWmVCnX7MgVMRe+qzGo6loG5jrvvq4uWy3BDV7T3MLOqrPDp2MsKr
lPuhBBvtp+Ld1RPrs/ro9rIqZXeSXyobS6hy4GQvdx54QIxjv+UMyIkNoY0=
-----END CERTIFICATE-----
Generated at Mon Oct 20 20:43:47 2025 by rpki-client