Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95fb205d-987d-4fa2-b75a-8819afe4b558.roa
File: 95fb205d-987d-4fa2-b75a-8819afe4b558.roa (raw, json)
Hash identifier: GQBVlBgi82LE9cL7dDUlVCB9HcqUtmxZjnC1HjWgqE8=
Subject key identifier: 0F:15:ED:5D:3A:E1:6C:89:D6:6B:BD:09:99:00:90:45:80:B3:6A:9E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 76E9965AB567578D3364E218F2E0BADC51A8B56F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95fb205d-987d-4fa2-b75a-8819afe4b558.roa
Signing time: Tue 04 Nov 2025 00:10:09 +0000
ROA not before: Tue 04 Nov 2025 00:10:09 +0000
ROA not after: Tue 09 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 69.22.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:e9:96:5a:b5:67:57:8d:33:64:e2:18:f2:e0:ba:dc:51:a8:b5:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 4 00:10:09 2025 GMT
Not After : Dec 9 23:59:59 2025 GMT
Subject: serialNumber=7b62cbe69f733d6d8369bbbfc6a754e493675b9e7d10aa042cfff88f0b07ea67, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:37:41:b7:2b:91:d7:be:33:d2:82:69:e0:14:
6f:fb:09:7d:e3:01:f0:5d:2b:f3:87:61:1a:b5:7d:
ce:6a:e3:c6:1a:c0:d8:b2:ba:43:d2:e9:3e:85:d5:
e1:ae:84:12:f9:59:71:c2:83:47:63:0f:56:76:27:
a5:a1:30:68:6c:37:37:cf:17:da:eb:14:02:8b:bf:
d8:3c:1b:bd:71:4a:49:1c:65:4c:5e:31:38:75:82:
57:16:db:da:88:28:eb:58:36:10:9e:a6:70:d0:62:
0a:59:05:54:13:ab:f3:70:be:88:73:c6:b2:8d:14:
c4:dd:d8:ab:b7:5f:6a:0d:07:a4:a4:02:ec:1f:7f:
9a:8d:5d:15:ca:c9:c1:9a:c6:45:87:e2:bc:07:54:
ca:81:15:ab:0c:46:22:03:ee:41:b2:ea:c0:7e:fa:
33:6a:70:8d:4a:54:83:56:75:e8:b4:e2:01:1e:4a:
81:61:7f:33:d2:1e:22:eb:9a:0b:16:de:65:f3:4f:
b3:69:3f:4b:0b:0f:91:ab:37:e0:08:2b:17:4f:e4:
4c:71:f1:24:46:92:1e:54:2f:4e:25:57:7f:e0:07:
90:3a:e1:08:8a:5d:49:4f:8b:cc:52:e2:43:4c:05:
ed:d2:90:e6:71:d5:dd:d4:81:79:c8:1c:9f:30:ae:
34:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:15:ED:5D:3A:E1:6C:89:D6:6B:BD:09:99:00:90:45:80:B3:6A:9E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95fb205d-987d-4fa2-b75a-8819afe4b558.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.22.192.0/18
Signature Algorithm: sha256WithRSAEncryption
3b:74:56:84:dc:1d:33:d0:c4:1f:c1:08:06:e4:20:3e:7f:05:
7a:3f:cf:4d:b6:c0:9d:75:a2:b3:38:ff:81:60:61:42:80:3d:
74:25:1e:bc:a0:db:88:1c:d6:1b:6c:a0:a1:f9:a6:75:3b:9a:
91:ad:17:18:2c:33:e5:8f:eb:02:e3:19:27:dc:ad:4d:45:80:
5d:09:dc:e1:09:dc:b7:82:ef:db:62:c5:1d:e0:b7:ce:4b:6e:
2c:13:14:d5:83:dc:7e:5f:12:34:88:d2:99:ba:6d:45:79:9e:
8a:9e:6f:de:40:b5:63:0b:b1:4b:8e:bc:74:aa:18:be:dd:51:
ef:d7:26:53:7d:02:a4:65:ac:7b:da:7a:1a:de:6e:86:1c:0c:
a8:17:5f:c9:24:90:c6:2f:e9:a0:2b:7c:95:bb:34:ed:fd:e1:
2c:75:82:7a:1e:4c:c9:f1:41:7c:2f:e6:e2:d3:34:af:b6:58:
07:5a:da:da:61:67:18:a3:00:a8:77:d4:cd:a5:d9:81:20:00:
fa:79:69:22:79:62:76:4e:08:d3:be:a5:50:23:a5:a8:51:5d:
a2:1e:86:9e:7b:7c:5c:f5:98:10:26:df:24:9c:e3:68:ad:d7:
39:cf:80:7e:c4:5b:79:92:08:45:c4:50:48:75:66:9a:35:b7:
05:10:d7:b8
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUdumWWrVnV40zZOIY8uC63FGotW8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTA0MDAxMDA5WhcNMjUxMjA5MjM1OTU5
WjB6MUkwRwYDVQQFE0A3YjYyY2JlNjlmNzMzZDZkODM2OWJiYmZjNmE3NTRlNDkz
Njc1YjllN2QxMGFhMDQyY2ZmZjg4ZjBiMDdlYTY3MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDCN0G3K5HXvjPSgmngFG/7CX3jAfBdK/OHYRq1fc5q48Ya
wNiyukPS6T6F1eGuhBL5WXHCg0djD1Z2J6WhMGhsNzfPF9rrFAKLv9g8G71xSkkc
ZUxeMTh1glcW29qIKOtYNhCepnDQYgpZBVQTq/NwvohzxrKNFMTd2Ku3X2oNB6Sk
Auwff5qNXRXKycGaxkWH4rwHVMqBFasMRiID7kGy6sB++jNqcI1KVINWdei04gEe
SoFhfzPSHiLrmgsW3mXzT7NpP0sLD5GrN+AIKxdP5Exx8SRGkh5UL04lV3/gB5A6
4QiKXUlPi8xS4kNMBe3SkOZx1d3UgXnIHJ8wrjS5AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUDxXtXTrhbInWa70JmQCQRYCzap4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzk1ZmIyMDVkLTk4N2QtNGZhMi1iNzVhLTg4MTlhZmU0YjU1OC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAZFFsAwDQYJKoZIhvcNAQELBQADggEBADt0VoTcHTPQxB/BCAbkID5/BXo/
z022wJ11orM4/4FgYUKAPXQlHryg24gc1htsoKH5pnU7mpGtFxgsM+WP6wLjGSfc
rU1FgF0J3OEJ3LeC79tixR3gt85LbiwTFNWD3H5fEjSI0pm6bUV5noqeb95AtWML
sUuOvHSqGL7dUe/XJlN9AqRlrHvaehreboYcDKgXX8kkkMYv6aArfJW7NO394Sx1
gnoeTMnxQXwv5uLTNK+2WAda2tphZxijAKh31M2l2YEgAPp5aSJ5YnZOCNO+pVAj
pahRXaIehp57fFz1mBAm3ySc42it1znPgH7EW3mSCEXEUEh1Zpo1twUQ17g=
-----END CERTIFICATE-----
Generated at Wed Nov 5 21:42:14 2025 by rpki-client