Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b82a05f8-7035-4832-b5c1-778e1090f3af.roa
File: b82a05f8-7035-4832-b5c1-778e1090f3af.roa (raw, json)
Hash identifier: yxm/z0pcMBbUzmB1fzR/y8a5CtaJH1qCCTRHQN/u66c=
Subject key identifier: 68:AA:C8:6D:DF:83:BA:04:6F:77:5D:21:79:F9:D3:B8:85:0A:B9:D5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4C8E4DEFED00AA27E2D2CC43E588E44B12AA09EB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b82a05f8-7035-4832-b5c1-778e1090f3af.roa
Signing time: Wed 15 Oct 2025 16:42:42 +0000
ROA not before: Wed 15 Oct 2025 16:42:42 +0000
ROA not after: Wed 19 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.86.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:8e:4d:ef:ed:00:aa:27:e2:d2:cc:43:e5:88:e4:4b:12:aa:09:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 15 16:42:42 2025 GMT
Not After : Nov 19 23:59:59 2025 GMT
Subject: serialNumber=1e8b27f3d805d959c0fb8de6bc695157a3faf3f1d6e96b920491e31bb0a4c29e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:1a:63:41:94:46:a5:08:a6:53:f8:f5:05:
c9:87:fa:1c:65:e0:65:dc:f1:70:01:ba:da:45:f2:
e0:12:14:a3:b8:a3:1b:77:e1:5c:f5:2a:fd:99:40:
e4:02:0c:d0:44:84:87:3b:d5:da:57:64:b4:69:5b:
cc:b2:cf:dc:5b:c9:1b:e8:c5:c8:e4:1d:92:1c:f9:
19:45:66:4a:76:6b:90:cf:12:16:66:7f:ab:5c:57:
19:93:e3:28:51:e1:24:e3:53:3f:91:89:2a:27:60:
ba:a5:b7:73:09:3a:a2:08:48:d9:fe:f5:67:d5:a1:
5c:2b:49:e4:d6:8f:01:24:77:cf:f1:8d:1b:42:3e:
7f:d5:de:26:c2:bc:9d:89:b5:70:84:f5:83:38:54:
67:b3:91:63:8a:b1:81:2b:c2:99:3a:e1:57:2b:73:
fe:e9:95:b5:ca:1b:35:e7:93:78:ea:e3:f9:22:d3:
2b:85:7e:b1:78:c2:be:30:f3:69:aa:7a:bc:94:9a:
6f:d6:fb:f3:69:27:16:d1:92:6f:09:69:28:fd:5a:
8e:58:ab:66:25:55:23:dd:76:2d:50:02:b4:13:95:
f1:b2:59:5e:a5:42:bb:7e:42:26:4e:9a:d3:a2:f5:
d8:8e:8d:a8:47:92:2e:00:d7:49:ec:33:91:12:76:
00:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:AA:C8:6D:DF:83:BA:04:6F:77:5D:21:79:F9:D3:B8:85:0A:B9:D5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b82a05f8-7035-4832-b5c1-778e1090f3af.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.86.58.0/24
Signature Algorithm: sha256WithRSAEncryption
22:45:46:63:de:29:83:ca:30:a0:e2:5e:c9:4a:02:2e:43:3e:
bc:cc:2a:6f:2f:02:3b:09:09:7b:2f:d9:5e:e7:6b:1c:0a:6a:
05:8a:26:dd:dd:e1:a5:78:10:e9:7b:27:08:1b:2b:e8:e0:f2:
8b:c0:4c:d4:56:04:32:31:07:7d:81:bf:d7:42:87:3c:4c:ee:
40:3e:39:67:8f:88:7d:b5:db:25:da:41:dd:dd:72:3c:45:b9:
c6:ed:fd:f5:55:52:48:39:9e:a1:44:4d:ba:da:15:cc:02:d6:
09:a1:a4:44:0b:d0:fd:07:03:61:98:89:bd:44:d6:d5:a4:a1:
d8:ab:35:22:56:03:bf:dd:a0:c6:cb:49:29:61:68:cb:30:4c:
24:e7:c5:94:a9:e4:54:b1:36:df:4d:f9:30:50:47:60:1e:f4:
48:e7:fc:12:83:87:77:1e:de:97:01:52:96:b0:a3:23:87:85:
b4:bf:cb:09:a1:6a:cd:ee:55:0e:54:43:83:29:bf:18:7c:31:
3a:56:ff:a0:d9:6c:83:f4:88:39:98:8e:21:53:19:83:8b:9b:
86:27:5b:cf:c2:32:f6:18:c9:c4:30:16:26:e7:27:29:25:c0:
bf:01:59:31:b6:dd:02:bb:aa:29:b2:b8:af:f1:26:b3:c4:87:
d1:de:16:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:04:51 2025 by rpki-client