Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a757271-95e4-47fb-a54a-e2edf0864ceb.roa
File: 9a757271-95e4-47fb-a54a-e2edf0864ceb.roa (raw, json)
Hash identifier: 5zejQ1AREKxixFmwFWjSz5IZpUD6aJE4WXdOdm/3zd4=
Subject key identifier: 31:9A:5A:C1:39:F0:43:7E:2E:37:0D:8B:44:99:25:75:D5:17:CC:82
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1FD1BA7AD9D927F1E09CE3D5178AC22A8C9D06CC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a757271-95e4-47fb-a54a-e2edf0864ceb.roa
Signing time: Fri 03 Oct 2025 00:43:01 +0000
ROA not before: Fri 03 Oct 2025 00:43:01 +0000
ROA not after: Fri 07 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.77.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:d1:ba:7a:d9:d9:27:f1:e0:9c:e3:d5:17:8a:c2:2a:8c:9d:06:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 3 00:43:01 2025 GMT
Not After : Nov 7 23:59:59 2025 GMT
Subject: serialNumber=bee6f04bafb3f9ea009bdb2acedbee5aeffe5b6f4c99a21ae974ba89f45131e0, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:10:30:8b:63:08:29:63:08:79:ac:d8:e0:42:
be:76:99:d6:d3:26:ec:34:fa:21:f5:28:c3:fc:6c:
aa:5d:c9:ad:66:ed:72:67:ae:91:a4:bf:94:a1:b7:
9c:b7:b4:f3:4a:f6:ef:18:c1:db:47:73:cf:a1:38:
e3:69:5e:be:ac:cb:f8:43:84:8c:2d:b0:0a:2c:76:
0e:2a:54:98:65:7e:63:ff:c1:d6:de:52:db:70:72:
da:f5:7f:ce:42:8f:3c:95:3a:6a:67:8d:a9:4f:b8:
c8:1e:86:32:d3:2a:e1:eb:af:a3:a0:40:74:23:89:
93:a3:e8:86:8c:9d:91:1c:ee:09:ac:b0:53:76:68:
1c:77:21:31:64:ad:40:1e:e7:cf:4f:01:41:40:6a:
f0:27:20:76:bf:3c:23:f8:dc:15:ce:bf:92:3b:db:
5d:34:8f:11:7e:20:ed:ba:fa:a9:a4:1b:80:db:79:
dd:a5:03:4d:0c:ed:7e:35:ff:8c:15:99:d3:9e:21:
97:f8:51:6c:45:5f:9f:cc:80:e4:63:a9:ad:1f:50:
14:09:70:7c:9e:64:a3:03:f0:81:45:68:d5:7b:25:
07:b7:d8:b7:fb:00:88:3a:33:64:c0:45:1a:1e:de:
e5:ce:92:d2:3b:75:a2:6a:5a:27:ea:6a:c6:5e:7e:
fc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:9A:5A:C1:39:F0:43:7E:2E:37:0D:8B:44:99:25:75:D5:17:CC:82
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a757271-95e4-47fb-a54a-e2edf0864ceb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.77.0.0/18
Signature Algorithm: sha256WithRSAEncryption
06:d4:b7:7d:a8:48:96:1f:92:a6:88:1e:16:9e:0b:23:6d:e0:
d0:92:b5:ec:6f:6b:f4:f0:d4:de:36:ec:d9:b6:a1:02:64:74:
c7:82:2e:9e:01:55:de:15:d3:04:b5:d6:eb:95:33:26:c0:55:
10:13:4f:03:3c:e7:85:b3:d1:04:23:96:44:d2:0e:a7:2a:01:
88:04:26:48:be:a7:a1:6e:ce:9c:c4:98:46:a3:5e:f6:d2:1f:
5b:ec:b6:47:47:3d:93:92:11:da:a7:cd:9c:d1:d1:a2:6f:bc:
40:ff:e8:41:ea:8d:c9:58:41:e4:41:49:2d:fc:cd:a6:8b:12:
70:f0:49:69:85:39:a6:01:61:3a:f0:02:0e:38:c8:1f:05:72:
48:d8:6d:a0:14:d6:aa:b5:7a:38:f7:9e:4e:62:c2:eb:df:56:
fd:bd:13:e6:f5:ee:9a:7a:e3:b0:5e:3d:3e:54:8c:0a:11:8c:
4e:ef:0d:2c:2d:5d:0a:9b:43:cf:8f:60:3b:1f:5a:1d:27:65:
71:54:4c:ac:9c:48:47:71:69:f7:39:15:de:41:49:78:63:13:
8d:41:ea:e0:84:72:08:cd:bd:76:60:af:53:9c:4f:6f:b1:45:
ad:d9:a7:fc:71:19:6b:ff:53:28:d5:6a:00:d0:36:62:bf:94:
5a:18:fd:89
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUH9G6etnZJ/HgnOPVF4rCKoydBswwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDAzMDA0MzAxWhcNMjUxMTA3MjM1OTU5
WjB6MUkwRwYDVQQFE0BiZWU2ZjA0YmFmYjNmOWVhMDA5YmRiMmFjZWRiZWU1YWVm
ZmU1YjZmNGM5OWEyMWFlOTc0YmE4OWY0NTEzMWUwMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCpEDCLYwgpYwh5rNjgQr52mdbTJuw0+iH1KMP8bKpdya1m
7XJnrpGkv5Sht5y3tPNK9u8YwdtHc8+hOONpXr6sy/hDhIwtsAosdg4qVJhlfmP/
wdbeUttwctr1f85CjzyVOmpnjalPuMgehjLTKuHrr6OgQHQjiZOj6IaMnZEc7gms
sFN2aBx3ITFkrUAe589PAUFAavAnIHa/PCP43BXOv5I72100jxF+IO26+qmkG4Db
ed2lA00M7X41/4wVmdOeIZf4UWxFX5/MgORjqa0fUBQJcHyeZKMD8IFFaNV7JQe3
2Lf7AIg6M2TARRoe3uXOktI7daJqWifqasZefvy1AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUMZpawTnwQ34uNw2LRJklddUXzIIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzlhNzU3MjcxLTk1ZTQtNDdmYi1hNTRhLWUyZWRmMDg2NGNlYi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAZjTQAwDQYJKoZIhvcNAQELBQADggEBAAbUt32oSJYfkqaIHhaeCyNt4NCS
texva/Tw1N427Nm2oQJkdMeCLp4BVd4V0wS11uuVMybAVRATTwM854Wz0QQjlkTS
DqcqAYgEJki+p6FuzpzEmEajXvbSH1vstkdHPZOSEdqnzZzR0aJvvED/6EHqjclY
QeRBSS38zaaLEnDwSWmFOaYBYTrwAg44yB8FckjYbaAU1qq1ejj3nk5iwuvfVv29
E+b17pp647BePT5UjAoRjE7vDSwtXQqbQ8+PYDsfWh0nZXFUTKycSEdxafc5Fd5B
SXhjE41B6uCEcgjNvXZgr1OcT2+xRa3Zp/xxGWv/UyjVagDQNmK/lFoY/Yk=
-----END CERTIFICATE-----
Generated at Tue Oct 14 06:45:20 2025 by rpki-client