Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eefecc86-9a13-4739-98c4-e5b08bb89dac.roa
File: eefecc86-9a13-4739-98c4-e5b08bb89dac.roa (raw, json)
Hash identifier: eq4U+k7S9P54btmGoQI0FholezCTthQATqxwJykvg28=
Subject key identifier: 44:58:37:A1:A9:5E:7F:6C:D0:83:56:2C:14:3F:8D:A4:03:6F:48:12
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1B0A4677D75AFB0E190BBCA58DF18DCE294EF46C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eefecc86-9a13-4739-98c4-e5b08bb89dac.roa
Signing time: Wed 22 Oct 2025 00:10:09 +0000
ROA not before: Wed 22 Oct 2025 00:10:09 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:1ffc:5000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:0a:46:77:d7:5a:fb:0e:19:0b:bc:a5:8d:f1:8d:ce:29:4e:f4:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:10:09 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=7142e3dc30f09f29b9d28d854c79f84145493981affaf49449840dadd94c7d10, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b0:f4:d0:74:f1:05:37:35:73:6e:7c:f5:d8:
e5:5a:c8:0c:66:08:43:68:54:66:9f:e8:34:12:83:
f7:06:38:58:fb:0e:48:e8:2c:61:46:a4:23:f1:34:
f0:90:3e:1b:c4:c0:bf:40:f2:2f:64:01:16:2b:e4:
5f:0d:93:12:29:56:21:c1:12:da:68:d5:7f:86:fb:
df:63:aa:db:14:33:5a:40:41:63:3f:95:45:28:2b:
8f:c7:19:16:d6:fa:47:e8:6a:de:c1:94:10:78:c5:
87:92:06:5d:7e:b6:ca:97:ac:dd:b6:2d:2a:8e:6f:
ba:05:a6:1a:4d:cd:e5:5d:62:7e:b6:00:07:2e:ef:
78:4e:89:4f:f5:d7:fe:30:a6:65:d2:ea:80:53:98:
b0:f7:42:92:4b:39:17:1c:5f:6c:8e:5b:5f:98:24:
6c:6f:03:a7:c3:85:fa:1e:90:4e:3a:34:4d:ab:3f:
de:6b:79:57:4b:9a:8b:c1:a7:49:ed:31:b8:ed:da:
4e:94:0f:d2:5b:40:b3:35:e2:10:0d:25:04:4c:01:
27:a0:a7:ce:fd:0c:5d:66:20:15:cc:38:25:4d:39:
06:04:b4:ef:02:2a:63:32:50:d1:65:c8:0f:6f:62:
20:49:63:44:cb:b1:30:15:57:d6:d6:28:33:fe:78:
59:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:58:37:A1:A9:5E:7F:6C:D0:83:56:2C:14:3F:8D:A4:03:6F:48:12
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eefecc86-9a13-4739-98c4-e5b08bb89dac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ffc:5000::/40
Signature Algorithm: sha256WithRSAEncryption
9a:37:7c:be:a4:42:17:3d:f7:8e:e0:85:0d:01:bc:4c:10:3e:
34:86:c1:89:ea:40:2d:a5:a4:30:d7:96:77:ae:e5:17:ed:e5:
cb:04:f6:2b:eb:54:8e:74:70:50:d4:98:13:8d:b8:dd:f9:5d:
9d:4e:5e:af:9c:be:50:8a:cf:76:d2:4f:61:cd:e5:d3:13:b8:
b1:a0:2f:6c:86:88:52:1b:38:8d:dc:01:b9:6c:45:69:d5:65:
ff:ce:71:d6:93:dc:d4:99:0e:0d:00:a2:20:39:34:b9:15:f1:
00:f9:6e:4a:45:b8:83:9f:c2:c6:d5:c2:7c:38:45:12:53:1f:
fd:95:ee:de:85:58:c2:1e:a6:fc:cf:21:50:41:de:94:10:f3:
aa:ea:5e:a9:15:da:9b:10:63:d0:76:3a:b3:4e:34:27:d7:d6:
da:fc:47:8f:08:51:31:58:40:54:56:cf:e1:10:98:47:44:6d:
4d:22:27:1c:68:d0:67:c4:f4:84:b5:09:36:3c:bc:cb:a5:42:
c8:73:6b:4a:9b:23:aa:a8:98:8f:21:3a:8a:5a:37:1f:09:be:
32:8a:a2:bf:02:f6:46:e0:5b:3a:19:b5:e0:4b:d5:bd:0f:6b:
26:d4:1a:97:d5:8e:a0:36:f0:58:21:77:c1:b9:04:6f:a6:26:
b4:39:21:83
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUGwpGd9da+w4ZC7yljfGNzilO9GwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDIyMDAxMDA5WhcNMjUxMTI2MjM1OTU5
WjB6MUkwRwYDVQQFE0A3MTQyZTNkYzMwZjA5ZjI5YjlkMjhkODU0Yzc5Zjg0MTQ1
NDkzOTgxYWZmYWY0OTQ0OTg0MGRhZGQ5NGM3ZDEwMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCMsPTQdPEFNzVzbnz12OVayAxmCENoVGaf6DQSg/cGOFj7
DkjoLGFGpCPxNPCQPhvEwL9A8i9kARYr5F8NkxIpViHBEtpo1X+G+99jqtsUM1pA
QWM/lUUoK4/HGRbW+kfoat7BlBB4xYeSBl1+tsqXrN22LSqOb7oFphpNzeVdYn62
AAcu73hOiU/11/4wpmXS6oBTmLD3QpJLORccX2yOW1+YJGxvA6fDhfoekE46NE2r
P95reVdLmovBp0ntMbjt2k6UD9JbQLM14hANJQRMASegp879DF1mIBXMOCVNOQYE
tO8CKmMyUNFlyA9vYiBJY0TLsTAVV9bWKDP+eFkrAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQURFg3oalef2zQg1YsFD+NpANvSBIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2VlZmVjYzg2LTlhMTMtNDczOS05OGM0LWU1YjA4YmI4OWRhYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAB/8UDANBgkqhkiG9w0BAQsFAAOCAQEAmjd8vqRCFz33juCFDQG8TBA+
NIbBiepALaWkMNeWd67lF+3lywT2K+tUjnRwUNSYE4243fldnU5er5y+UIrPdtJP
Yc3l0xO4saAvbIaIUhs4jdwBuWxFadVl/85x1pPc1JkODQCiIDk0uRXxAPluSkW4
g5/CxtXCfDhFElMf/ZXu3oVYwh6m/M8hUEHelBDzqupeqRXamxBj0HY6s040J9fW
2vxHjwhRMVhAVFbP4RCYR0RtTSInHGjQZ8T0hLUJNjy8y6VCyHNrSpsjqqiYjyE6
ilo3Hwm+MoqivwL2RuBbOhm14EvVvQ9rJtQal9WOoDbwWCF3wbkEb6YmtDkhgw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:22:56 2025 by rpki-client