Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa
File: 9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa (raw, json)
Hash identifier: TTp8uRSuIYg1ENC0W31hsslWQulN/eIeXnJEateoscc=
Subject key identifier: 11:9F:37:77:F9:59:BD:5F:1B:52:C1:87:7E:8D:5E:12:20:4D:BE:09
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 389A2AA31087DE806F8E24CF0008E3B43413BBE0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa
Signing time: Wed 22 Oct 2025 00:31:03 +0000
ROA not before: Wed 22 Oct 2025 00:31:03 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 57.251.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:9a:2a:a3:10:87:de:80:6f:8e:24:cf:00:08:e3:b4:34:13:bb:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:31:03 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=8df68a62e2765cb5b572ddefc733f091c14f046988b536667488660ca5944e89, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f0:dd:a6:b2:e0:9d:74:79:22:5c:1b:6a:42:
65:95:8e:03:de:6e:3f:8f:bc:ea:95:08:47:fe:32:
e7:4f:80:35:97:87:7e:bb:ad:e0:b7:44:da:50:f4:
c8:a8:6b:75:2e:b5:66:9a:e4:83:49:3f:20:c2:7b:
d2:d3:50:e4:12:cd:29:ea:0a:50:f5:13:46:1a:46:
83:34:6c:12:ee:75:dc:05:75:aa:bd:79:af:a0:44:
31:05:69:5a:84:87:c9:79:0c:2d:36:1b:d2:32:ba:
7d:52:cf:b1:b4:e4:d2:a8:c8:fd:86:9d:94:57:8b:
cf:52:27:4c:15:70:0c:a4:81:be:68:73:6c:79:bf:
d7:60:82:7a:f6:2a:10:aa:1a:8e:cf:ab:54:07:7c:
57:d9:0b:29:33:85:8b:5f:da:42:7b:e5:64:48:9e:
ba:48:d3:3f:5d:8b:d3:b1:16:f1:35:a9:8f:d9:f3:
69:3c:18:1a:bc:db:cd:e8:c8:96:48:3e:90:5f:b2:
99:f4:65:20:0b:cc:6b:27:c6:fd:82:a2:4b:53:dd:
74:f0:16:d9:3c:39:f1:6a:f5:60:0d:5e:cf:b5:7d:
9f:79:a2:ab:32:6e:b9:13:81:b2:ef:17:03:32:5d:
d4:76:0a:fe:46:cd:e3:af:30:b5:8e:f9:72:a8:41:
0d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9F:37:77:F9:59:BD:5F:1B:52:C1:87:7E:8D:5E:12:20:4D:BE:09
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.251.0.0/16
Signature Algorithm: sha256WithRSAEncryption
97:61:df:a5:40:af:94:c9:6f:4f:10:c3:36:b5:ae:35:5e:83:
c1:2a:54:65:d2:bd:06:f7:22:be:34:5e:49:1b:1b:7b:e8:38:
a1:df:b9:a9:52:7a:ec:5d:26:2a:a7:24:52:65:3e:6b:06:b5:
77:61:a8:ee:6a:96:ec:8d:0d:72:b7:24:cb:df:a9:7e:8b:f6:
c0:b6:d6:5e:b2:5c:a2:48:fa:48:97:7a:ef:3a:9b:6e:fa:68:
bd:ed:93:75:66:58:e5:86:15:56:fa:3e:45:99:f5:7f:bd:51:
23:cf:5d:e4:ff:62:79:7c:46:7e:62:9d:40:d9:39:92:b4:b8:
f9:0b:b4:5e:0c:6d:8a:41:58:82:fb:ae:95:de:14:85:8f:7a:
9f:95:bb:89:71:7c:4a:71:cc:95:0b:94:c6:c9:11:2b:f6:c8:
ea:ed:44:d4:c5:67:1c:fa:92:49:d0:5a:45:aa:5f:a8:8b:56:
27:02:f1:f6:a3:d9:14:84:bc:82:38:02:fb:b6:13:fb:01:25:
83:16:04:fd:1c:3d:b5:a5:fd:e9:df:7f:ef:db:d2:ac:f1:aa:
bc:05:e3:9f:fa:d9:e0:6d:6c:26:f6:9a:bf:7f:7d:df:80:8e:
97:d0:78:56:fc:27:6f:72:24:23:d2:f5:48:04:3b:4d:de:89:
c1:e0:00:52
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUOJoqoxCH3oBvjiTPAAjjtDQTu+AwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDIyMDAzMTAzWhcNMjUxMTI2MjM1OTU5
WjB6MUkwRwYDVQQFE0A4ZGY2OGE2MmUyNzY1Y2I1YjU3MmRkZWZjNzMzZjA5MWMx
NGYwNDY5ODhiNTM2NjY3NDg4NjYwY2E1OTQ0ZTg5MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCi8N2msuCddHkiXBtqQmWVjgPebj+PvOqVCEf+MudPgDWX
h367reC3RNpQ9Mioa3UutWaa5INJPyDCe9LTUOQSzSnqClD1E0YaRoM0bBLuddwF
daq9ea+gRDEFaVqEh8l5DC02G9Iyun1Sz7G05NKoyP2GnZRXi89SJ0wVcAykgb5o
c2x5v9dggnr2KhCqGo7Pq1QHfFfZCykzhYtf2kJ75WRInrpI0z9di9OxFvE1qY/Z
82k8GBq8283oyJZIPpBfspn0ZSALzGsnxv2CoktT3XTwFtk8OfFq9WANXs+1fZ95
oqsybrkTgbLvFwMyXdR2Cv5GzeOvMLWO+XKoQQ1ZAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUEZ83d/lZvV8bUsGHfo1eEiBNvgkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzlhOGQ1ZGI0LWU1N2EtNDNkNC1iMzdiLWY3NTk3MWM0YTg1Yy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA5+zANBgkqhkiG9w0BAQsFAAOCAQEAl2HfpUCvlMlvTxDDNrWuNV6DwSpU
ZdK9BvcivjReSRsbe+g4od+5qVJ67F0mKqckUmU+awa1d2Go7mqW7I0Ncrcky9+p
fov2wLbWXrJcokj6SJd67zqbbvpove2TdWZY5YYVVvo+RZn1f71RI89d5P9ieXxG
fmKdQNk5krS4+Qu0XgxtikFYgvuuld4UhY96n5W7iXF8SnHMlQuUxskRK/bI6u1E
1MVnHPqSSdBaRapfqItWJwLx9qPZFIS8gjgC+7YT+wElgxYE/Rw9taX96d9/79vS
rPGqvAXjn/rZ4G1sJvaav39934COl9B4Vvwnb3IkI9L1SAQ7Td6JweAAUg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 12:36:44 2025 by rpki-client