Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa
File: 2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa (raw, json)
Hash identifier: 6hYPbF3UDC4zXNjyifR6oVfclojNreaQgiAXtL2EPCA=
Subject key identifier: 45:2B:87:88:2B:8A:60:BB:28:C4:61:D1:A3:0D:71:B0:D8:AD:7C:E8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 685FFEB7E2D85F0FC67C3053DD376FCA0D2BA856
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa
Signing time: Tue 21 Oct 2025 00:50:10 +0000
ROA not before: Tue 21 Oct 2025 00:50:10 +0000
ROA not after: Tue 25 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 95.69.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:5f:fe:b7:e2:d8:5f:0f:c6:7c:30:53:dd:37:6f:ca:0d:2b:a8:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 21 00:50:10 2025 GMT
Not After : Nov 25 23:59:59 2025 GMT
Subject: serialNumber=888aee3bcaa7764d79483954ab4e9aab6b6c94e0701c991961fe2e2123249909, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:11:5c:22:f6:6e:13:f9:a7:14:0d:f3:12:d7:
06:08:45:c5:53:e7:aa:5d:9c:a4:bc:9c:df:bb:bc:
50:0c:8b:55:9c:b8:b3:7a:0e:e1:f2:79:3c:0d:66:
04:92:a7:21:95:eb:5b:b5:a1:e4:0e:95:56:5f:94:
0f:3d:72:c0:c9:29:90:e1:4c:5e:c6:a3:a5:03:d7:
6d:3f:52:e9:c2:ab:cf:ad:97:87:fc:c6:0a:40:82:
f1:45:04:6f:da:bf:22:3b:a5:f3:52:ab:74:89:85:
03:0a:f3:3d:c9:f7:f6:8f:19:80:a5:09:1e:e1:a3:
d4:ee:dd:2c:f5:52:9c:e7:b0:93:3a:7b:d6:dd:dc:
57:19:8c:a0:b0:2b:3a:13:68:a6:82:33:4b:3b:77:
10:5f:f8:30:cf:85:57:e1:8c:45:ff:16:e9:20:0c:
24:63:b2:d9:06:ab:52:63:dd:63:b0:1d:41:12:9e:
85:04:32:b6:52:4f:fa:5f:4b:b2:5d:8f:0a:b3:3c:
14:fc:64:f3:e8:b5:f1:44:92:87:a3:6c:a8:5b:bc:
35:3a:84:2e:f3:4b:5e:15:69:84:d8:7d:ae:88:3a:
5c:81:2d:7a:43:fa:9a:ff:fc:a6:05:4f:4d:fa:09:
88:9d:ca:26:3a:ae:82:4e:f2:ea:03:7e:af:60:e2:
7d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2B:87:88:2B:8A:60:BB:28:C4:61:D1:A3:0D:71:B0:D8:AD:7C:E8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.69.128.0/17
Signature Algorithm: sha256WithRSAEncryption
42:60:f0:74:c5:dc:1b:19:52:80:f7:88:03:91:9d:b1:36:b4:
1b:81:33:20:87:c8:f6:73:33:42:8b:9e:54:27:95:90:92:60:
d4:16:c5:31:e4:f8:d6:cc:11:54:de:6c:0f:2c:f9:16:e9:25:
e9:64:ef:b0:5b:61:69:9b:a7:67:df:60:e5:7b:02:b9:34:01:
4c:43:96:dc:f2:90:e0:5a:4a:e7:fe:15:c9:e5:43:a7:a3:c5:
93:59:51:ac:6a:6d:b7:32:57:1c:85:29:34:0e:f0:9a:ba:cb:
5c:fd:67:43:53:e7:3e:fd:98:3b:a3:62:ea:6b:ed:c5:83:4f:
bf:60:6f:4a:d3:c8:a7:e7:bf:82:d2:40:06:81:eb:1d:76:82:
6e:ee:4b:1b:26:63:6c:bc:87:63:ac:7f:53:92:51:b4:41:dc:
17:24:7c:87:06:81:fa:44:60:44:af:d1:29:58:d0:39:21:83:
09:83:c7:50:bd:2c:38:2b:15:f7:7f:5d:4a:0b:b0:bd:60:89:
84:01:a5:94:8c:a9:ed:64:87:6f:d5:45:88:a8:d8:34:0d:f8:
15:4b:1d:5c:fc:53:f0:dd:86:13:24:e1:80:b3:ed:cd:f8:47:
f2:16:02:93:a0:d8:14:8a:47:8e:d4:12:da:d7:11:e3:c6:12:
83:86:92:e8
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUaF/+t+LYXw/GfDBT3Tdvyg0rqFYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDIxMDA1MDEwWhcNMjUxMTI1MjM1OTU5
WjB6MUkwRwYDVQQFE0A4ODhhZWUzYmNhYTc3NjRkNzk0ODM5NTRhYjRlOWFhYjZi
NmM5NGUwNzAxYzk5MTk2MWZlMmUyMTIzMjQ5OTA5MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDBEVwi9m4T+acUDfMS1wYIRcVT56pdnKS8nN+7vFAMi1Wc
uLN6DuHyeTwNZgSSpyGV61u1oeQOlVZflA89csDJKZDhTF7Go6UD120/UunCq8+t
l4f8xgpAgvFFBG/avyI7pfNSq3SJhQMK8z3J9/aPGYClCR7ho9Tu3Sz1UpznsJM6
e9bd3FcZjKCwKzoTaKaCM0s7dxBf+DDPhVfhjEX/FukgDCRjstkGq1Jj3WOwHUES
noUEMrZST/pfS7JdjwqzPBT8ZPPotfFEkoejbKhbvDU6hC7zS14VaYTYfa6IOlyB
LXpD+pr//KYFT036CYidyiY6roJO8uoDfq9g4n2DAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQURSuHiCuKYLsoxGHRow1xsNitfOgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzJjOWM1YzA4LTdiN2UtNGJmMy04MTVlLTM1Zjk5NjJjZWQ5ZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAdfRYAwDQYJKoZIhvcNAQELBQADggEBAEJg8HTF3BsZUoD3iAORnbE2tBuB
MyCHyPZzM0KLnlQnlZCSYNQWxTHk+NbMEVTebA8s+RbpJelk77BbYWmbp2ffYOV7
Ark0AUxDltzykOBaSuf+FcnlQ6ejxZNZUaxqbbcyVxyFKTQO8Jq6y1z9Z0NT5z79
mDujYupr7cWDT79gb0rTyKfnv4LSQAaB6x12gm7uSxsmY2y8h2Osf1OSUbRB3Bck
fIcGgfpEYESv0SlY0DkhgwmDx1C9LDgrFfd/XUoLsL1giYQBpZSMqe1kh2/VRYio
2DQN+BVLHVz8U/DdhhMk4YCz7c34R/IWApOg2BSKR47UEtrXEePGEoOGkug=
-----END CERTIFICATE-----
Generated at Wed Nov 5 05:41:21 2025 by rpki-client