Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9d0e16e-bce5-4522-b44e-614362edb054.roa
File: e9d0e16e-bce5-4522-b44e-614362edb054.roa (raw, json)
Hash identifier: jFtTtYw/LvJVimbu+5bvtJhC986PBI5lPteESthbr3s=
Subject key identifier: 2F:45:BA:03:23:A3:AB:A1:37:B9:6C:AD:4B:D2:2E:2B:FE:7E:7E:B7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 54EE00B2CC40291C1C88AF936AEE4E78C98A0F01
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9d0e16e-bce5-4522-b44e-614362edb054.roa
Signing time: Sun 02 Nov 2025 00:11:16 +0000
ROA not before: Sun 02 Nov 2025 00:11:16 +0000
ROA not after: Sun 07 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:ee:00:b2:cc:40:29:1c:1c:88:af:93:6a:ee:4e:78:c9:8a:0f:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 2 00:11:16 2025 GMT
Not After : Dec 7 23:59:59 2025 GMT
Subject: serialNumber=9e15fffc4b814ade05b641dac70ed451d15c922409070991cbb7b304a9f0c97e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4c:bf:e0:4f:e6:b8:a2:39:77:48:ab:52:33:
86:aa:90:5e:59:06:99:ea:72:6d:6b:e8:de:8c:a7:
79:ab:0d:e2:18:d3:6e:28:c4:e5:6b:6d:f9:5d:1b:
60:1b:d9:bd:58:ac:68:3d:52:d5:50:21:4d:7c:08:
80:4b:87:28:c5:c2:78:0f:aa:c2:e0:fa:52:7b:0a:
e2:96:5a:61:3e:f2:a0:78:4b:d3:6f:2b:d6:8f:9f:
fe:62:36:f8:63:81:c6:24:34:ff:57:92:42:41:14:
58:60:fc:6c:25:e7:85:86:ba:04:3c:5a:00:06:b1:
3c:ae:07:d1:ba:14:c3:9e:55:1d:ff:3d:ab:58:b4:
7f:df:cc:45:37:73:c8:55:6f:c8:34:74:4c:ac:70:
9d:73:ea:48:c9:47:df:da:c1:7f:34:ed:62:28:2d:
11:db:c3:16:cb:39:35:23:e8:9b:66:05:04:87:6f:
2c:84:a9:27:31:f0:29:b3:45:9b:be:4d:5b:78:47:
ef:f6:a4:12:45:51:2c:f1:5d:6d:b9:98:57:11:f5:
33:88:0d:45:8d:37:55:5f:c3:28:80:26:14:f6:05:
e6:12:01:ef:e2:6a:6e:3e:37:18:e7:18:67:c9:fb:
b9:d5:56:72:37:4a:c1:76:0c:43:93:1f:8d:39:9c:
53:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:45:BA:03:23:A3:AB:A1:37:B9:6C:AD:4B:D2:2E:2B:FE:7E:7E:B7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9d0e16e-bce5-4522-b44e-614362edb054.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.74.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:d6:76:19:bd:9b:af:62:01:78:dd:69:f7:1c:5b:e1:11:05:
0d:07:cf:80:ff:69:6e:c0:66:07:35:d9:fe:9b:f0:e3:d9:3b:
03:08:d8:2f:8a:96:7f:ca:df:45:69:e8:b4:4a:f1:af:57:50:
16:31:49:be:fb:1d:f2:18:2a:65:f1:f4:19:b4:10:c3:33:34:
35:37:8f:c0:da:57:9a:62:42:9b:b3:3c:0a:0e:b7:0c:c7:ae:
79:fa:71:79:af:3e:6a:26:27:11:88:70:b6:68:46:8e:27:39:
82:ab:23:25:df:35:b0:9f:0c:a5:fa:f0:d1:2c:0e:c3:6a:06:
c9:f5:3c:fd:4a:54:b1:5f:76:b5:67:73:09:0b:df:b3:fb:09:
38:99:a5:60:50:bc:e0:9a:14:be:14:f2:25:ac:aa:88:09:df:
69:40:12:b6:f2:77:6e:5b:02:3c:47:d4:a6:55:6a:4c:fa:44:
ad:f9:57:54:aa:19:0c:9c:77:39:90:2e:7c:47:f0:e7:9e:b2:
4d:86:a1:f7:59:1a:6a:ff:98:11:2e:c1:5a:0f:eb:85:e6:30:
79:06:14:94:fd:aa:36:76:b8:ff:7b:05:b5:0e:f1:23:85:65:
1b:47:15:30:6a:77:37:5f:8e:3b:68:3f:84:3f:bb:fe:13:a1:
59:30:ba:45
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUVO4AssxAKRwciK+Tau5OeMmKDwEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTAyMDAxMTE2WhcNMjUxMjA3MjM1OTU5
WjB6MUkwRwYDVQQFE0A5ZTE1ZmZmYzRiODE0YWRlMDViNjQxZGFjNzBlZDQ1MWQx
NWM5MjI0MDkwNzA5OTFjYmI3YjMwNGE5ZjBjOTdlMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCPTL/gT+a4ojl3SKtSM4aqkF5ZBpnqcm1r6N6Mp3mrDeIY
024oxOVrbfldG2Ab2b1YrGg9UtVQIU18CIBLhyjFwngPqsLg+lJ7CuKWWmE+8qB4
S9NvK9aPn/5iNvhjgcYkNP9XkkJBFFhg/Gwl54WGugQ8WgAGsTyuB9G6FMOeVR3/
PatYtH/fzEU3c8hVb8g0dEyscJ1z6kjJR9/awX807WIoLRHbwxbLOTUj6JtmBQSH
byyEqScx8CmzRZu+TVt4R+/2pBJFUSzxXW25mFcR9TOIDUWNN1VfwyiAJhT2BeYS
Ae/iam4+NxjnGGfJ+7nVVnI3SsF2DEOTH405nFMtAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUL0W6AyOjq6E3uWytS9IuK/5+frcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2U5ZDBlMTZlLWJjZTUtNDUyMi1iNDRlLTYxNDM2MmVkYjA1NC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABjl0owDQYJKoZIhvcNAQELBQADggEBAHvWdhm9m69iAXjdafccW+ERBQ0H
z4D/aW7AZgc12f6b8OPZOwMI2C+Kln/K30Vp6LRK8a9XUBYxSb77HfIYKmXx9Bm0
EMMzNDU3j8DaV5piQpuzPAoOtwzHrnn6cXmvPmomJxGIcLZoRo4nOYKrIyXfNbCf
DKX68NEsDsNqBsn1PP1KVLFfdrVncwkL37P7CTiZpWBQvOCaFL4U8iWsqogJ32lA
Erbyd25bAjxH1KZVakz6RK35V1SqGQycdzmQLnxH8Oeesk2GofdZGmr/mBEuwVoP
64XmMHkGFJT9qjZ2uP97BbUO8SOFZRtHFTBqdzdfjjtoP4Q/u/4ToVkwukU=
-----END CERTIFICATE-----
Generated at Wed Nov 5 14:41:47 2025 by rpki-client