Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fed1652d-8f62-4dd1-b189-968b48ae697f.roa
File: fed1652d-8f62-4dd1-b189-968b48ae697f.roa (raw, json)
Hash identifier: L/ZSBObCPJMD7lm2QYoP1KWUIlg+NlQqUzkUotbPQUk=
Subject key identifier: D7:90:D9:83:3E:95:46:00:7F:78:80:6B:C4:64:62:8F:2C:65:55:B6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4C3724875E9EF3E008D2DF67EE19AE029872790E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fed1652d-8f62-4dd1-b189-968b48ae697f.roa
Signing time: Tue 28 Oct 2025 00:10:54 +0000
ROA not before: Tue 28 Oct 2025 00:10:54 +0000
ROA not after: Tue 02 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ffc:2000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:37:24:87:5e:9e:f3:e0:08:d2:df:67:ee:19:ae:02:98:72:79:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 28 00:10:54 2025 GMT
Not After : Dec 2 23:59:59 2025 GMT
Subject: serialNumber=f8231fcaa5842ba87997892ecde6fca0467304c63abdb75f41b3da65dc6cd042, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:7c:80:7c:5c:3e:99:c3:a5:94:12:2b:bc:7e:
b7:ca:d0:86:12:15:75:83:7b:d0:9a:69:8b:2d:bf:
96:6a:62:3e:52:a7:88:f9:e3:b7:86:52:88:09:de:
87:96:50:81:1b:2c:2b:60:85:ae:7d:a9:1b:3a:48:
a4:e1:79:61:76:20:ac:fd:02:15:5e:e7:66:ac:c1:
6a:18:c1:af:88:82:a5:ef:2f:5e:22:b5:29:d0:ff:
ad:17:19:29:f7:83:6e:e1:a2:31:d1:47:99:39:a4:
ab:26:5d:f3:ef:db:79:d2:93:66:2c:bf:94:dc:25:
11:96:0a:73:f5:e5:e5:44:db:54:b6:46:d6:86:dd:
91:94:35:cd:07:66:17:b8:a8:0e:28:06:78:3a:1e:
4b:17:21:b0:1e:6e:56:ab:55:db:60:11:9e:26:d2:
a0:0b:33:13:61:e4:ae:0e:3e:4b:0f:7f:bf:2c:df:
ac:b9:0b:d2:6f:e7:f3:24:de:a6:57:77:cb:a7:95:
1c:5b:95:e5:82:f4:28:98:2e:0e:c5:88:6f:37:5e:
d9:e7:db:f0:51:14:cb:ec:3b:53:e4:3a:e9:1e:89:
0d:b4:c3:c1:e9:ae:ef:33:86:2f:1b:5a:97:13:fe:
05:29:cc:39:d0:16:01:42:1c:1d:64:bb:8c:80:aa:
db:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:90:D9:83:3E:95:46:00:7F:78:80:6B:C4:64:62:8F:2C:65:55:B6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fed1652d-8f62-4dd1-b189-968b48ae697f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ffc:2000::/40
Signature Algorithm: sha256WithRSAEncryption
13:33:6c:a3:2f:18:bf:36:0c:64:e2:2c:a0:83:55:9f:3a:6c:
8f:2f:f4:e6:bb:80:af:46:67:f8:eb:c9:85:da:4c:a9:9f:6b:
48:d4:92:6f:ec:d6:c1:f0:55:4b:c9:68:52:7b:9a:a7:60:53:
1c:24:c5:ec:68:b0:84:58:75:33:d0:d0:13:5b:b8:ff:19:24:
97:ec:74:a0:bc:35:7c:37:df:01:bc:96:30:f0:4d:8e:11:b6:
72:d8:24:37:c7:14:2e:6c:c1:7a:c4:fa:a0:93:76:7b:11:22:
de:0b:8f:bb:cb:b4:a8:ee:ba:21:9a:9e:e7:47:93:91:ee:3b:
a5:7b:65:1b:53:72:06:76:9b:c2:c5:c1:00:87:9f:11:b5:e4:
64:d8:7c:aa:89:d3:8d:3c:53:08:b6:17:01:05:55:1a:2c:7a:
9f:53:fd:4e:b4:4d:74:b7:74:f7:52:55:c4:f2:0e:5d:94:64:
9b:d3:ed:63:19:72:72:11:33:46:e6:fd:c9:ea:b9:d6:63:a2:
80:61:d9:52:67:60:1c:f2:26:88:e8:95:b3:76:65:ad:af:22:
89:e3:fd:69:94:27:3b:cd:c4:c0:f1:87:7d:1e:45:59:f5:61:
30:c1:45:73:a8:a1:fb:62:a3:82:f0:25:b1:01:b1:6d:f1:3c:
c5:d4:47:77
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUTDckh16e8+AI0t9n7hmuAphyeQ4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDI4MDAxMDU0WhcNMjUxMjAyMjM1OTU5
WjB6MUkwRwYDVQQFE0BmODIzMWZjYWE1ODQyYmE4Nzk5Nzg5MmVjZGU2ZmNhMDQ2
NzMwNGM2M2FiZGI3NWY0MWIzZGE2NWRjNmNkMDQyMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQD2fIB8XD6Zw6WUEiu8frfK0IYSFXWDe9CaaYstv5ZqYj5S
p4j547eGUogJ3oeWUIEbLCtgha59qRs6SKTheWF2IKz9AhVe52aswWoYwa+IgqXv
L14itSnQ/60XGSn3g27hojHRR5k5pKsmXfPv23nSk2Ysv5TcJRGWCnP15eVE21S2
RtaG3ZGUNc0HZhe4qA4oBng6HksXIbAeblarVdtgEZ4m0qALMxNh5K4OPksPf78s
36y5C9Jv5/Mk3qZXd8unlRxbleWC9CiYLg7FiG83Xtnn2/BRFMvsO1PkOukeiQ20
w8Hpru8zhi8bWpcT/gUpzDnQFgFCHB1ku4yAqttxAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQU15DZgz6VRgB/eIBrxGRijyxlVbYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2ZlZDE2NTJkLThmNjItNGRkMS1iMTg5LTk2OGI0OGFlNjk3Zi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAB/8IDANBgkqhkiG9w0BAQsFAAOCAQEAEzNsoy8YvzYMZOIsoINVnzps
jy/05ruAr0Zn+OvJhdpMqZ9rSNSSb+zWwfBVS8loUnuap2BTHCTF7GiwhFh1M9DQ
E1u4/xkkl+x0oLw1fDffAbyWMPBNjhG2ctgkN8cULmzBesT6oJN2exEi3guPu8u0
qO66IZqe50eTke47pXtlG1NyBnabwsXBAIefEbXkZNh8qonTjTxTCLYXAQVVGix6
n1P9TrRNdLd091JVxPIOXZRkm9PtYxlychEzRub9yeq51mOigGHZUmdgHPImiOiV
s3Zlra8iieP9aZQnO83EwPGHfR5FWfVhMMFFc6ih+2KjgvAlsQGxbfE8xdRHdw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 10:00:49 2025 by rpki-client