Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa
File: 4c1bc95a-5d0c-487e-bf1d-56809964528a.roa (raw, json)
Hash identifier: NVeHKKudiY6rNy1CWEOyYbXDQA+vRESXRYYOfv1ZLr4=
Subject key identifier: 88:45:6C:1E:19:2F:2E:FC:46:33:02:6F:19:FA:EA:C3:BC:7D:58:32
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2610981BDE14360F64200763B5A0FE5B928380FB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa
Signing time: Sat 01 Nov 2025 00:40:09 +0000
ROA not before: Sat 01 Nov 2025 00:40:09 +0000
ROA not after: Sat 06 Dec 2025 23:59:59 +0000
asID: 14618
IP address blocks: 184.73.144.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:10:98:1b:de:14:36:0f:64:20:07:63:b5:a0:fe:5b:92:83:80:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 1 00:40:09 2025 GMT
Not After : Dec 6 23:59:59 2025 GMT
Subject: serialNumber=e3fc5d06cc867ebc0f5f940b48788582d1fd9b66ba7163cd70cb88cccb418314, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b6:fd:75:f7:17:b6:98:38:07:e7:da:f6:b4:
2e:e7:20:1d:b7:2b:38:08:58:8e:02:d4:12:5a:09:
5c:ea:46:1f:3d:39:70:3b:36:ca:22:84:5d:2b:e0:
c4:32:12:c1:22:c7:dc:72:5c:05:91:6a:8d:42:f7:
a5:93:06:51:92:9b:e8:ad:71:3d:4a:d2:5a:2e:ec:
ce:d9:ee:73:7b:b7:3d:fa:83:29:2d:ed:3e:0d:d3:
48:7c:d7:ed:f5:59:be:6b:67:f3:d8:6d:38:c7:75:
36:37:fa:eb:af:e8:b0:94:cd:b4:8d:09:b7:94:38:
9d:39:59:14:8a:f7:c3:12:45:3d:f4:5b:62:18:93:
a5:3b:19:34:f4:b8:5c:67:1b:20:73:bd:97:aa:8d:
cc:d4:fa:8a:0f:1e:43:b1:96:57:fe:c6:96:48:21:
ef:36:8d:9b:88:bb:5d:90:d3:55:49:04:ae:a9:c8:
51:6a:41:c9:2f:98:3f:59:e4:ab:7e:43:12:93:e1:
a8:3d:00:8b:17:c5:36:be:23:08:6f:8c:89:cc:8c:
8e:28:4f:2c:d3:e5:77:c6:eb:c9:be:6f:c2:82:5e:
d7:fd:7b:d9:fe:69:c3:c2:0f:47:b6:9d:b1:c4:d5:
59:19:3f:e2:5c:4e:b9:ab:dc:ab:14:7b:02:9a:2a:
19:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:45:6C:1E:19:2F:2E:FC:46:33:02:6F:19:FA:EA:C3:BC:7D:58:32
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.73.144.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:5d:25:24:a7:f0:e6:2b:91:7d:38:a1:77:7f:4a:e2:01:99:
fb:9d:24:04:b1:42:10:76:0d:22:be:89:7f:4d:5e:04:61:af:
94:5a:a9:d9:cb:dc:ca:00:4b:5a:c3:aa:b1:74:b4:b7:7c:22:
14:1f:44:d0:e4:e0:93:c5:08:c1:3e:b3:ea:b6:ee:47:7b:c7:
f9:e4:5c:a8:b6:d6:0b:95:7e:65:cb:6c:94:26:75:50:28:69:
ab:df:61:b6:78:72:8e:dd:5e:07:23:bf:96:89:27:f7:2e:83:
46:94:41:c0:d2:4f:ee:4b:be:45:b2:21:4a:64:1e:07:61:08:
01:31:f9:ed:b6:e5:af:3c:d6:15:f5:ed:5d:06:8c:67:a3:37:
41:c1:ea:61:2a:74:96:c6:81:f2:63:52:b0:04:e1:91:00:cd:
2a:ff:51:2d:c6:0e:5c:b0:98:b7:69:6a:eb:20:ac:55:3f:c2:
42:e7:be:38:d3:45:32:3a:f9:f9:bb:31:ec:43:92:fb:48:9c:
98:64:90:a1:f2:44:c6:39:02:de:d5:08:32:fc:dd:bb:92:69:
78:78:c5:e9:aa:e7:63:9e:47:dc:08:87:83:e0:a9:8b:6b:ce:
3d:d5:c2:30:e7:e4:0a:9a:d5:09:7d:f6:57:57:1c:e5:5d:ae:
2c:f5:06:83
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUJhCYG94UNg9kIAdjtaD+W5KDgPswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTAxMDA0MDA5WhcNMjUxMjA2MjM1OTU5
WjB6MUkwRwYDVQQFE0BlM2ZjNWQwNmNjODY3ZWJjMGY1Zjk0MGI0ODc4ODU4MmQx
ZmQ5YjY2YmE3MTYzY2Q3MGNiODhjY2NiNDE4MzE0MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDBtv119xe2mDgH59r2tC7nIB23KzgIWI4C1BJaCVzqRh89
OXA7NsoihF0r4MQyEsEix9xyXAWRao1C96WTBlGSm+itcT1K0lou7M7Z7nN7tz36
gykt7T4N00h81+31Wb5rZ/PYbTjHdTY3+uuv6LCUzbSNCbeUOJ05WRSK98MSRT30
W2IYk6U7GTT0uFxnGyBzvZeqjczU+ooPHkOxllf+xpZIIe82jZuIu12Q01VJBK6p
yFFqQckvmD9Z5Kt+QxKT4ag9AIsXxTa+IwhvjInMjI4oTyzT5XfG68m+b8KCXtf9
e9n+acPCD0e2nbHE1VkZP+JcTrmr3KsUewKaKhk/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUiEVsHhkvLvxGMwJvGfrqw7x9WDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzRjMWJjOTVhLTVkMGMtNDg3ZS1iZjFkLTU2ODA5OTY0NTI4YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAO4SZAwDQYJKoZIhvcNAQELBQADggEBAFpdJSSn8OYrkX04oXd/SuIBmfud
JASxQhB2DSK+iX9NXgRhr5RaqdnL3MoAS1rDqrF0tLd8IhQfRNDk4JPFCME+s+q2
7kd7x/nkXKi21guVfmXLbJQmdVAoaavfYbZ4co7dXgcjv5aJJ/cug0aUQcDST+5L
vkWyIUpkHgdhCAEx+e225a881hX17V0GjGejN0HB6mEqdJbGgfJjUrAE4ZEAzSr/
US3GDlywmLdpausgrFU/wkLnvjjTRTI6+fm7MexDkvtInJhkkKHyRMY5At7VCDL8
3buSaXh4xemq52OeR9wIh4PgqYtrzj3VwjDn5Aqa1Ql99ldXHOVdriz1BoM=
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:52:38 2025 by rpki-client