Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55634e39-a8da-4d69-a01a-c448a312369c.roa
File: 55634e39-a8da-4d69-a01a-c448a312369c.roa (raw, json)
Hash identifier: k64s7PsM6/bescVPAWh9Dh4tVE09bY1Okg04CnyhAj8=
Subject key identifier: E2:19:79:BC:AD:AE:C0:D7:05:EC:47:2D:DC:A3:01:6A:E8:F6:3D:24
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3AD49607E7C57571CD42F23F25541FDAD147F687
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55634e39-a8da-4d69-a01a-c448a312369c.roa
Signing time: Fri 31 Oct 2025 21:24:51 +0000
ROA not before: Fri 31 Oct 2025 21:24:51 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.82.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:d4:96:07:e7:c5:75:71:cd:42:f2:3f:25:54:1f:da:d1:47:f6:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 21:24:51 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=a80b2b039af5c82acae4a89200ea4572e942ffb618ac3268f71f46d1cea9e496, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ca:79:86:a8:e5:5d:8f:c0:06:c5:c6:ff:40:
86:02:5f:99:ff:be:d7:0f:b5:0d:dc:48:61:cd:35:
34:43:a0:2a:5d:0c:df:95:92:74:2b:44:fe:e8:30:
be:e4:08:06:a7:ea:39:d8:71:30:73:a0:a2:b8:33:
a1:57:5b:88:c7:1b:69:12:c8:df:68:1b:57:93:99:
55:77:79:3b:2b:fa:5a:99:33:cd:da:ea:c6:aa:20:
37:e1:05:50:6c:d7:68:a3:a7:84:20:ba:07:6d:b9:
74:4c:23:58:6e:6c:b2:c5:ad:ae:58:b0:12:3f:cd:
a3:0c:c3:b0:b8:c0:81:26:30:67:5b:43:4a:f8:ad:
0c:8d:67:93:51:ea:69:b6:27:ba:e3:e0:14:75:f5:
ae:31:24:21:b9:de:7c:0b:88:9d:77:6d:e2:d0:12:
fe:1b:0c:68:92:6c:61:d7:6c:16:4d:df:c5:8e:56:
16:5e:12:66:6f:4f:eb:d1:e5:76:9e:21:1e:38:bf:
94:c5:45:34:0a:25:df:2f:8c:0b:7b:09:6b:05:1f:
e3:e5:a5:3f:4e:e3:7c:8f:4d:52:b7:53:5c:27:f0:
f8:49:b3:c5:4b:b2:51:47:8f:48:96:9c:54:ce:69:
dd:fc:e0:c4:f7:6d:72:b4:3c:69:d0:14:d7:07:a3:
5b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:19:79:BC:AD:AE:C0:D7:05:EC:47:2D:DC:A3:01:6A:E8:F6:3D:24
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55634e39-a8da-4d69-a01a-c448a312369c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.82.156.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:bf:53:c6:aa:65:3b:d7:3b:1f:ce:86:bd:0a:f7:cf:dd:20:
6b:bc:94:30:fe:0e:5a:81:45:b0:cd:6b:53:de:c8:5e:3d:bd:
05:3e:e7:fb:4e:2b:34:e3:c0:ec:02:f2:e1:b2:54:3c:40:e6:
ba:8c:74:1c:b9:ef:dc:a6:6f:df:62:6f:71:32:65:c2:b1:aa:
a2:64:b9:8e:e3:29:8c:49:ba:f5:33:92:74:ee:78:0d:3c:a1:
24:a2:bd:76:ef:7c:91:5c:23:59:f9:5b:af:3a:d5:af:1e:76:
8e:97:40:84:8d:31:1d:e0:84:12:76:32:87:32:99:64:77:dc:
b2:1f:51:7c:f7:ec:b5:16:d1:5d:c4:41:e2:56:cc:a9:36:9e:
df:3f:86:a8:59:87:bd:db:19:8e:48:eb:69:dd:a8:e0:9a:15:
b5:ca:8e:02:aa:a0:27:dc:74:8b:bb:12:dd:7d:2e:0c:b4:f8:
17:f5:04:d4:52:cd:7b:c2:44:8e:c0:5a:dc:94:24:c2:8f:1b:
29:69:39:24:7f:11:24:74:64:5e:37:8b:63:b7:0f:90:0c:a2:
c8:68:2b:5f:e5:57:c9:1b:33:47:69:08:e4:f5:51:59:46:5e:
f5:aa:fc:b7:bc:97:df:61:a9:64:ce:2e:0f:8b:03:90:8c:7a:
4e:3e:5b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:28:02 2025 by rpki-client