Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13aae7f4-cc38-450a-8fe2-e98223497aef.roa
File: 13aae7f4-cc38-450a-8fe2-e98223497aef.roa (raw, json)
Hash identifier: +iVXV1YW1dw86xTJz3exmL7L1jH3f+E3Z7freAQedIs=
Subject key identifier: 9B:8B:28:72:E2:C2:F7:49:1C:CA:62:FB:80:5C:C2:98:8B:7A:94:51
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3FADE59DC1D35283A8DB5704B4248B621309737B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13aae7f4-cc38-450a-8fe2-e98223497aef.roa
Signing time: Wed 22 Oct 2025 00:00:52 +0000
ROA not before: Wed 22 Oct 2025 00:00:52 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 54.6.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:ad:e5:9d:c1:d3:52:83:a8:db:57:04:b4:24:8b:62:13:09:73:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:00:52 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=0816d7e0df196fce1b9e1683b626d83b60926ed539872eb3ee02cd340eec2983, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:77:0c:71:60:7a:89:b7:e6:c1:e3:b4:56:b7:
a6:fb:84:0f:32:c4:81:7a:dc:2a:b5:f8:79:6a:7a:
0c:e7:68:99:22:64:f9:da:3e:33:17:93:c7:de:00:
b8:53:0e:42:9c:3e:af:ca:53:6b:80:f9:01:cb:64:
f9:f3:14:ba:d3:75:f7:fb:1c:2d:1c:65:92:32:ce:
35:d9:c3:39:2a:00:f8:0f:79:1d:8b:23:88:d6:2a:
83:f7:c9:9f:26:3c:b7:f4:89:51:42:5d:91:59:56:
45:d1:4e:e9:9a:17:c8:bf:35:b6:dc:6e:13:be:2f:
9c:fc:43:05:31:0a:14:73:11:f2:42:c9:74:8c:8e:
e8:62:4a:84:d6:29:69:62:80:fc:07:6a:c9:ba:a0:
0c:07:92:69:cd:3b:78:9d:2d:cb:d1:96:fb:fb:80:
76:a6:df:ba:0b:7f:8d:81:ba:63:fc:e4:4a:4e:e5:
00:f8:3c:a5:f3:75:ed:33:87:88:79:4e:77:42:78:
96:f8:6f:31:5d:a4:2b:23:c3:fd:3c:8b:32:25:91:
d2:d4:db:f3:7f:d5:63:14:f9:a9:ce:3d:e5:4d:d5:
7d:46:6b:2f:10:ea:85:47:1e:3d:49:41:ba:ea:4d:
01:3c:92:82:a3:00:0c:ef:ff:c2:18:a4:b4:0f:85:
b8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8B:28:72:E2:C2:F7:49:1C:CA:62:FB:80:5C:C2:98:8B:7A:94:51
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13aae7f4-cc38-450a-8fe2-e98223497aef.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.6.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d3:f0:a7:0e:ca:14:73:91:0e:c4:7c:fd:62:aa:b8:07:5f:86:
e8:e6:33:48:a3:35:94:c9:1c:ca:af:0d:b6:d9:f5:ea:6f:56:
7b:e4:76:a2:50:f4:0f:c6:5f:8b:ec:1f:08:12:4b:5d:3d:36:
88:d3:de:50:fa:61:13:17:26:b2:0b:b9:c2:17:fb:a9:5a:3c:
7e:91:f5:ab:d1:79:d9:df:88:0e:12:9e:eb:65:08:16:f8:da:
bc:f2:0d:dd:34:93:e3:4c:40:c2:3e:34:9a:4a:bb:be:1e:ee:
e6:ee:aa:47:50:ad:33:62:ba:7f:5c:d1:29:03:cb:78:80:96:
b9:e2:10:9c:ee:a1:70:ab:48:13:2d:6d:9e:55:43:5e:ba:be:
1c:6f:b0:c5:d8:da:fd:e2:6e:d3:f9:e1:68:89:01:bc:82:d7:
d3:ba:13:4d:53:fd:c2:8b:f1:3c:05:d7:e4:07:0d:42:3e:58:
49:69:19:1c:b3:1d:fa:f9:a1:87:9a:4b:ae:cc:9d:d7:e0:dc:
0a:6d:88:d6:e7:c5:29:e0:02:fa:7c:0d:3c:fe:27:04:75:7b:
72:e9:a8:9a:87:60:db:12:ea:eb:63:4b:18:9b:89:5a:33:02:
24:92:1c:db:55:e5:09:ba:04:3a:83:6d:37:e5:66:ad:0a:67:
0c:07:7c:3e
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUP63lncHTUoOo21cEtCSLYhMJc3swDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDIyMDAwMDUyWhcNMjUxMTI2MjM1OTU5
WjB6MUkwRwYDVQQFE0AwODE2ZDdlMGRmMTk2ZmNlMWI5ZTE2ODNiNjI2ZDgzYjYw
OTI2ZWQ1Mzk4NzJlYjNlZTAyY2QzNDBlZWMyOTgzMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDJdwxxYHqJt+bB47RWt6b7hA8yxIF63Cq1+HlqegznaJki
ZPnaPjMXk8feALhTDkKcPq/KU2uA+QHLZPnzFLrTdff7HC0cZZIyzjXZwzkqAPgP
eR2LI4jWKoP3yZ8mPLf0iVFCXZFZVkXRTumaF8i/NbbcbhO+L5z8QwUxChRzEfJC
yXSMjuhiSoTWKWligPwHasm6oAwHkmnNO3idLcvRlvv7gHam37oLf42BumP85EpO
5QD4PKXzde0zh4h5TndCeJb4bzFdpCsjw/08izIlkdLU2/N/1WMU+anOPeVN1X1G
ay8Q6oVHHj1JQbrqTQE8koKjAAzv/8IYpLQPhbhXAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUm4socuLC90kcymL7gFzCmIt6lFEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzEzYWFlN2Y0LWNjMzgtNDUwYS04ZmUyLWU5ODIyMzQ5N2FlZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA2BjANBgkqhkiG9w0BAQsFAAOCAQEA0/CnDsoUc5EOxHz9Yqq4B1+G6OYz
SKM1lMkcyq8Nttn16m9We+R2olD0D8Zfi+wfCBJLXT02iNPeUPphExcmsgu5whf7
qVo8fpH1q9F52d+IDhKe62UIFvjavPIN3TST40xAwj40mkq7vh7u5u6qR1CtM2K6
f1zRKQPLeICWueIQnO6hcKtIEy1tnlVDXrq+HG+wxdja/eJu0/nhaIkBvILX07oT
TVP9wovxPAXX5AcNQj5YSWkZHLMd+vmhh5pLrsyd1+DcCm2I1ufFKeAC+nwNPP4n
BHV7cumomodg2xLq62NLGJuJWjMCJJIc21XlCboEOoNtN+VmrQpnDAd8Pg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 07:50:02 2025 by rpki-client