Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2086ff20-82be-45e0-94d8-903cbdc322cf.roa
File: 2086ff20-82be-45e0-94d8-903cbdc322cf.roa (raw, json)
Hash identifier: 3Y7vofjs56/CqyoA2TocdLJeMAiF/GQivVuUOkJis6Q=
Subject key identifier: AB:9E:9E:7A:FD:4F:28:34:66:95:14:A5:F3:72:1B:DB:2C:EF:48:25
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3590DE9BD30A14AB6ADE5DB21A4EA73EE7E31247
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2086ff20-82be-45e0-94d8-903cbdc322cf.roa
Signing time: Tue 14 Oct 2025 22:22:00 +0000
ROA not before: Tue 14 Oct 2025 22:22:00 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.84.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:90:de:9b:d3:0a:14:ab:6a:de:5d:b2:1a:4e:a7:3e:e7:e3:12:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 22:22:00 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=7b83342c6eedc0c0872185084901578bd03a9b447d8ab0982cf34ed363e2fb50, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4c:7e:a6:78:8e:c4:0f:6e:16:6b:30:34:09:
67:8e:28:c4:4b:58:65:c7:8b:ea:6b:4b:55:86:1c:
7a:a3:08:54:44:e1:10:b8:97:23:bd:b4:89:12:53:
2f:05:e5:b1:f0:be:0b:b6:e8:50:da:3b:0b:85:59:
e2:33:aa:36:45:dd:c3:af:57:44:8f:db:db:be:cf:
c9:3d:c9:a3:fc:26:67:9a:15:09:91:e5:fc:8a:88:
64:8e:d1:be:ef:47:da:c9:d1:db:2a:a8:16:cb:88:
70:d8:65:e5:62:50:cb:a2:9d:f4:45:12:d9:09:d2:
89:c2:88:94:a7:69:6c:03:a0:aa:17:22:8f:e7:2f:
ea:53:03:f0:a2:a1:ef:96:d5:30:97:1a:cc:b1:2d:
a3:ad:8e:d4:4e:1b:8e:47:11:94:54:b0:18:8b:48:
39:58:46:62:c8:3e:bf:3d:70:9a:2d:1f:ae:2f:9e:
98:4c:bc:2d:ee:df:9f:f7:99:34:70:01:79:79:6f:
da:2e:0d:aa:08:7a:e3:e0:15:2c:ef:14:a4:20:54:
4f:bd:13:25:94:f0:8d:db:e5:ee:4a:ee:86:5e:ec:
f8:f2:a4:f3:cf:f5:8e:39:d3:61:6d:b4:14:39:4a:
e5:7e:fc:ce:6c:e8:1c:a1:6f:77:e9:85:23:39:d0:
89:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9E:9E:7A:FD:4F:28:34:66:95:14:A5:F3:72:1B:DB:2C:EF:48:25
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2086ff20-82be-45e0-94d8-903cbdc322cf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.84.24.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:5a:1a:f7:24:e4:3d:d9:29:97:87:87:73:81:f8:0e:52:0d:
4c:9e:cc:3b:68:0b:03:3f:89:ba:c5:7e:57:51:a3:28:10:fd:
40:d9:9a:02:14:8d:04:b1:96:4d:53:c9:1a:59:6a:6f:e5:df:
16:63:fd:cf:7c:26:49:a5:55:42:7b:1a:46:66:31:57:f8:c8:
d9:af:34:c4:42:e1:e4:73:9f:c7:04:d4:a4:de:99:9a:b6:00:
9c:04:6c:62:c8:18:89:71:9c:d4:bf:9f:8c:e6:0d:18:cc:62:
39:ed:f8:62:b2:f7:40:79:45:97:6a:95:59:9e:d3:0f:c3:1d:
83:4f:60:44:66:24:42:52:db:8a:2d:d7:58:af:ee:2a:cf:1a:
90:be:17:12:96:3f:c9:b5:38:01:8c:4f:d4:74:4d:73:e4:18:
22:ab:5f:88:40:5d:4a:e3:64:bf:12:b4:b4:fa:2d:20:38:a9:
b1:48:e4:7c:35:f6:a2:c4:e1:3b:3a:df:10:11:ca:ac:5c:07:
a4:d6:74:3c:7b:d2:c0:75:c3:ae:f3:82:52:5e:3c:75:3e:60:
2a:31:d2:a1:cc:31:f6:3d:54:94:f1:6a:25:da:59:e5:b4:3c:
3b:51:40:47:a6:01:0d:7c:34:05:5a:c5:f0:cc:c4:44:a6:94:
41:9d:d3:08
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUNZDem9MKFKtq3l2yGk6nPufjEkcwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE0MjIyMjAwWhcNMjUxMTE4MjM1OTU5
WjB6MUkwRwYDVQQFE0A3YjgzMzQyYzZlZWRjMGMwODcyMTg1MDg0OTAxNTc4YmQw
M2E5YjQ0N2Q4YWIwOTgyY2YzNGVkMzYzZTJmYjUwMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCdTH6meI7ED24WazA0CWeOKMRLWGXHi+prS1WGHHqjCFRE
4RC4lyO9tIkSUy8F5bHwvgu26FDaOwuFWeIzqjZF3cOvV0SP29u+z8k9yaP8Jmea
FQmR5fyKiGSO0b7vR9rJ0dsqqBbLiHDYZeViUMuinfRFEtkJ0onCiJSnaWwDoKoX
Io/nL+pTA/Cioe+W1TCXGsyxLaOtjtROG45HEZRUsBiLSDlYRmLIPr89cJotH64v
nphMvC3u35/3mTRwAXl5b9ouDaoIeuPgFSzvFKQgVE+9EyWU8I3b5e5K7oZe7Pjy
pPPP9Y4502FttBQ5SuV+/M5s6Byhb3fphSM50IlZAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUq56eev1PKDRmlRSl83Ib2yzvSCUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzIwODZmZjIwLTgyYmUtNDVlMC05NGQ4LTkwM2NiZGMzMjJjZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBANjVBgwDQYJKoZIhvcNAQELBQADggEBAKJaGvck5D3ZKZeHh3OB+A5SDUye
zDtoCwM/ibrFfldRoygQ/UDZmgIUjQSxlk1TyRpZam/l3xZj/c98JkmlVUJ7GkZm
MVf4yNmvNMRC4eRzn8cE1KTemZq2AJwEbGLIGIlxnNS/n4zmDRjMYjnt+GKy90B5
RZdqlVme0w/DHYNPYERmJEJS24ot11iv7irPGpC+FxKWP8m1OAGMT9R0TXPkGCKr
X4hAXUrjZL8StLT6LSA4qbFI5Hw19qLE4Ts63xARyqxcB6TWdDx70sB1w67zglJe
PHU+YCox0qHMMfY9VJTxaiXaWeW0PDtRQEemAQ18NAVaxfDMxESmlEGd0wg=
-----END CERTIFICATE-----
Generated at Mon Oct 20 16:11:07 2025 by rpki-client