Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e454b87e-3750-4f94-a7d0-f1c6408adee5.roa
File: e454b87e-3750-4f94-a7d0-f1c6408adee5.roa (raw, json)
Hash identifier: /Bt78jf9ReH06SJVpiwEe3FMGnRMi/U3QroNt2BUXlw=
Subject key identifier: 6B:0D:00:01:21:C3:A4:E7:FC:35:63:AA:DE:69:4C:DF:7D:6E:A0:07
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2B8E8F41993D41900F268BD08F70DCD09913D238
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e454b87e-3750-4f94-a7d0-f1c6408adee5.roa
Signing time: Wed 29 Oct 2025 00:40:32 +0000
ROA not before: Wed 29 Oct 2025 00:40:32 +0000
ROA not after: Wed 03 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.56.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:8e:8f:41:99:3d:41:90:0f:26:8b:d0:8f:70:dc:d0:99:13:d2:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 29 00:40:32 2025 GMT
Not After : Dec 3 23:59:59 2025 GMT
Subject: serialNumber=30cb2e13086a6d5bbcf0ab850682ea2d2959cbea3e26f7fb7a12f36af1fd396d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:4e:b7:4b:7b:4b:00:50:4d:c6:f4:03:83:cc:
ef:b2:23:d5:60:98:ba:67:43:fe:89:cd:82:fb:94:
3f:e6:9e:5f:da:02:e8:ec:70:4d:8c:9b:55:d6:73:
20:ee:14:71:09:2d:7a:44:db:1d:38:3f:4b:53:81:
a9:55:4c:f8:7a:c2:86:61:1f:49:b2:65:2f:8f:4f:
50:8d:e5:fd:12:78:85:dd:18:00:4e:2b:9d:b9:1b:
74:dd:fc:b6:cd:fa:db:65:bb:bb:9c:d5:fd:f7:7b:
08:3d:fd:5d:c8:a8:83:75:08:49:ae:2c:1e:66:6c:
15:6a:29:85:e4:e5:e4:1c:f4:e0:53:84:76:c5:8b:
6a:11:13:77:f7:53:25:a2:8d:f6:0a:a5:e7:a0:97:
75:5c:bf:4f:b4:cf:f7:68:f0:4a:36:bb:ae:2f:45:
36:fb:a4:0f:32:07:ab:f8:f8:fc:f1:33:81:ec:3c:
19:d3:2a:6c:f1:0a:bf:e3:01:c0:6b:e8:87:45:52:
f7:9c:39:4e:5e:32:35:36:6e:e9:3d:fa:b5:cc:4f:
3a:01:50:1c:e8:9e:ac:39:b3:1e:da:7e:81:d9:1a:
a6:97:e5:ea:69:2d:fd:46:8d:31:b1:c2:ab:73:2b:
0a:8d:58:12:0f:9b:17:92:c0:f6:a3:c0:d1:60:6f:
7e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0D:00:01:21:C3:A4:E7:FC:35:63:AA:DE:69:4C:DF:7D:6E:A0:07
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e454b87e-3750-4f94-a7d0-f1c6408adee5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.56.64.0/18
Signature Algorithm: sha256WithRSAEncryption
34:40:95:45:b0:27:82:cf:65:fb:fa:f5:98:c7:87:16:54:ee:
76:c4:d5:7f:2f:01:70:6c:3c:b0:a1:04:c7:58:e7:3e:87:ad:
d0:9a:27:3f:ea:bb:1d:ea:0c:72:8a:97:ac:58:23:9e:8d:77:
e8:da:bb:6e:2c:fd:9e:8d:24:68:38:f2:64:42:55:7c:64:d3:
74:20:42:ff:01:1f:d5:23:1b:1b:38:43:d1:0f:05:b8:ba:20:
b7:f6:27:e5:f2:f4:81:9c:57:de:78:06:a8:ea:a2:c2:c3:61:
01:c9:6f:07:10:ac:ba:f1:1a:f2:c1:dc:af:31:ce:5b:e6:49:
66:6c:2d:dc:02:56:e5:20:4a:22:61:66:df:46:50:a2:9b:f4:
32:44:e3:58:d3:66:00:65:66:ef:6a:61:2c:c5:6c:d1:78:62:
20:8d:dd:f8:1c:37:6c:5f:e4:71:22:d7:9c:68:54:10:68:50:
ba:a0:50:2e:aa:2f:ce:03:1a:43:53:f7:e4:76:17:f3:72:ea:
fd:d3:34:dd:b9:13:c1:c0:eb:b5:82:ec:a9:8d:2c:b6:ef:56:
62:d0:f0:b6:8e:cd:e1:5f:8c:7a:c2:7f:4c:ac:a8:6a:b3:3d:
ed:7c:54:99:3d:1b:7c:f7:dc:e1:1d:e9:51:d5:b6:ae:c4:ab:
d5:db:ae:42
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUK46PQZk9QZAPJovQj3Dc0JkT0jgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDI5MDA0MDMyWhcNMjUxMjAzMjM1OTU5
WjB6MUkwRwYDVQQFE0AzMGNiMmUxMzA4NmE2ZDViYmNmMGFiODUwNjgyZWEyZDI5
NTljYmVhM2UyNmY3ZmI3YTEyZjM2YWYxZmQzOTZkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDxTrdLe0sAUE3G9AODzO+yI9VgmLpnQ/6JzYL7lD/mnl/a
AujscE2Mm1XWcyDuFHEJLXpE2x04P0tTgalVTPh6woZhH0myZS+PT1CN5f0SeIXd
GABOK525G3Td/LbN+ttlu7uc1f33ewg9/V3IqIN1CEmuLB5mbBVqKYXk5eQc9OBT
hHbFi2oRE3f3UyWijfYKpeegl3Vcv0+0z/do8Eo2u64vRTb7pA8yB6v4+PzxM4Hs
PBnTKmzxCr/jAcBr6IdFUvecOU5eMjU2buk9+rXMTzoBUBzonqw5sx7afoHZGqaX
5eppLf1GjTGxwqtzKwqNWBIPmxeSwPajwNFgb34jAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUaw0AASHDpOf8NWOq3mlM331uoAcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2U0NTRiODdlLTM3NTAtNGY5NC1hN2QwLWYxYzY0MDhhZGVlNS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAYQOEAwDQYJKoZIhvcNAQELBQADggEBADRAlUWwJ4LPZfv69ZjHhxZU7nbE
1X8vAXBsPLChBMdY5z6HrdCaJz/qux3qDHKKl6xYI56Nd+jau24s/Z6NJGg48mRC
VXxk03QgQv8BH9UjGxs4Q9EPBbi6ILf2J+Xy9IGcV954BqjqosLDYQHJbwcQrLrx
GvLB3K8xzlvmSWZsLdwCVuUgSiJhZt9GUKKb9DJE41jTZgBlZu9qYSzFbNF4YiCN
3fgcN2xf5HEi15xoVBBoULqgUC6qL84DGkNT9+R2F/Ny6v3TNN25E8HA67WC7KmN
LLbvVmLQ8LaOzeFfjHrCf0ysqGqzPe18VJk9G3z33OEd6VHVtq7Eq9XbrkI=
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:03:02 2025 by rpki-client