Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa
File: 203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa (raw, json)
Hash identifier: BLkBkWmuoFlnpFf6x8Qio5o95ZXwGdYq2IoeYgqRlts=
Subject key identifier: D0:47:D6:D0:C3:8D:71:17:0A:FD:88:E9:12:FE:6C:FF:7A:E0:CC:DC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6B4C812F874B4113C6839DD9EEC22B9339A38B4B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa
Signing time: Tue 28 Oct 2025 01:01:58 +0000
ROA not before: Tue 28 Oct 2025 01:01:58 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.77.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:4c:81:2f:87:4b:41:13:c6:83:9d:d9:ee:c2:2b:93:39:a3:8b:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 01:01:58 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=ef5eabbc9ac17b9252a24ea715d99876fb6e452c9f11185d03e53451f733f0dd, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2d:59:96:8e:8c:d2:d5:76:1e:a8:df:12:01:
44:98:0f:a1:4c:85:eb:ec:f4:fe:ff:b4:fe:11:11:
f4:5d:1c:88:42:6a:1d:09:0a:4f:15:2b:75:f3:b2:
a2:78:15:9c:60:4f:95:05:f6:17:af:b8:70:06:31:
cb:37:31:83:e6:45:48:e7:47:fc:69:a9:bf:9b:c9:
0c:3a:38:57:23:4c:50:a1:e5:8c:5b:bb:61:0b:aa:
0f:43:ed:83:57:33:57:61:8b:20:e7:91:2c:4f:1b:
6b:ea:ac:b4:56:b4:9a:db:98:45:b8:09:31:e5:91:
c2:a4:32:e6:4b:8f:6b:b5:d5:52:67:ca:38:2a:de:
94:63:f0:bc:29:41:2c:14:cb:cd:b0:43:a2:6c:c4:
4e:03:ff:3e:b8:41:b2:4f:35:d4:d6:ef:1a:4d:40:
6f:ba:d3:9d:60:31:6b:e4:1d:17:fd:86:2e:9a:09:
87:bf:34:e2:92:98:37:cc:e6:f1:2c:78:38:82:1b:
e8:53:5f:f7:ec:57:52:1a:3e:82:d8:6d:7a:84:d4:
2a:4a:42:f6:9f:b1:ff:c8:da:7f:3a:0b:53:05:d1:
bb:45:5f:a0:34:cf:cc:f0:cc:44:1e:4a:5e:61:2f:
22:ea:d8:20:b7:63:ea:f0:ac:4b:08:a8:48:98:15:
f8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:47:D6:D0:C3:8D:71:17:0A:FD:88:E9:12:FE:6C:FF:7A:E0:CC:DC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.77.132.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:aa:de:73:4c:28:7d:b3:de:7d:39:3f:c8:cb:5e:ca:ef:9d:
ed:a6:c2:a7:4e:05:ff:e4:86:92:29:f8:15:a5:65:c4:67:92:
6c:ae:4e:fe:05:f4:00:6c:05:b1:bd:e9:36:d3:e4:a5:b9:12:
7a:dc:7a:2d:6d:70:72:d2:ce:63:58:1a:25:ee:b8:7e:c7:45:
10:35:a4:a6:64:e0:29:bc:09:51:a8:d6:98:03:d4:83:d6:40:
f1:69:1a:d5:a0:b8:ef:0a:a1:e7:e4:ee:c1:e9:5f:02:96:1b:
02:24:92:29:f3:4b:49:ec:20:72:ab:c8:c9:bc:2a:75:8e:57:
c7:5c:46:e8:ab:04:71:28:bb:90:90:8a:21:40:2e:2e:b5:5a:
7d:ea:e0:01:7c:a4:9a:b1:70:d4:ab:2a:85:0c:4d:4c:42:61:
7c:29:c8:8f:80:25:ac:eb:79:29:9d:37:07:70:0b:95:2a:2f:
53:04:5a:39:db:25:7e:a4:cf:38:89:77:bb:af:1d:a5:e0:7c:
ff:cc:71:04:87:94:98:ee:46:dd:9e:be:5f:7e:4b:16:b5:f8:
9f:e1:fc:34:18:37:ab:51:38:fd:89:af:e3:d2:fe:36:48:30:
bd:5d:de:bd:43:dc:66:c7:f9:25:1b:ab:1a:34:e6:96:8d:0c:
bc:0a:1a:2b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUa0yBL4dLQRPGg53Z7sIrkzmji0swDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDI4MDEwMTU4WhcNMjUxMjAyMjM1OTU5
WjB6MUkwRwYDVQQFE0BlZjVlYWJiYzlhYzE3YjkyNTJhMjRlYTcxNWQ5OTg3NmZi
NmU0NTJjOWYxMTE4NWQwM2U1MzQ1MWY3MzNmMGRkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCzLVmWjozS1XYeqN8SAUSYD6FMhevs9P7/tP4REfRdHIhC
ah0JCk8VK3XzsqJ4FZxgT5UF9hevuHAGMcs3MYPmRUjnR/xpqb+byQw6OFcjTFCh
5Yxbu2ELqg9D7YNXM1dhiyDnkSxPG2vqrLRWtJrbmEW4CTHlkcKkMuZLj2u11VJn
yjgq3pRj8LwpQSwUy82wQ6JsxE4D/z64QbJPNdTW7xpNQG+6051gMWvkHRf9hi6a
CYe/NOKSmDfM5vEseDiCG+hTX/fsV1IaPoLYbXqE1CpKQvafsf/I2n86C1MF0btF
X6A0z8zwzEQeSl5hLyLq2CC3Y+rwrEsIqEiYFfhLAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU0EfW0MONcRcK/YjpEv5s/3rgzNwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzIwM2ZhOTdlLWJjZjQtNDljNy05ZTMwLWFkM2NiNWNlNzU1ZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABjTYQwDQYJKoZIhvcNAQELBQADggEBAEuq3nNMKH2z3n05P8jLXsrvne2m
wqdOBf/khpIp+BWlZcRnkmyuTv4F9ABsBbG96TbT5KW5Enrcei1tcHLSzmNYGiXu
uH7HRRA1pKZk4Cm8CVGo1pgD1IPWQPFpGtWguO8Koefk7sHpXwKWGwIkkinzS0ns
IHKryMm8KnWOV8dcRuirBHEou5CQiiFALi61Wn3q4AF8pJqxcNSrKoUMTUxCYXwp
yI+AJazreSmdNwdwC5UqL1MEWjnbJX6kzziJd7uvHaXgfP/McQSHlJjuRt2evl9+
Sxa1+J/h/DQYN6tROP2Jr+PS/jZIML1d3r1D3GbH+SUbqxo05paNDLwKGis=
-----END CERTIFICATE-----
Generated at Wed Nov 5 07:49:02 2025 by rpki-client