Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa
File: 0343534b-f673-4820-a35c-761953dd8136.roa (raw, json)
Hash identifier: 3s57Pz1mDI3GmKLxfuim1jYkkL+KcbJS+/d6Lxdmzmo=
Subject key identifier: 4A:F5:81:1C:57:5A:54:FF:C4:08:4B:23:9F:B9:F8:4B:91:32:00:2F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 09BDDC8F4E541CA237E14E0EF679CEE0D467012B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa
Signing time: Wed 01 Oct 2025 00:11:58 +0000
ROA not before: Wed 01 Oct 2025 00:11:58 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 216.73.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:bd:dc:8f:4e:54:1c:a2:37:e1:4e:0e:f6:79:ce:e0:d4:67:01:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:11:58 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=c813e3dd1f40a86cc17c3897b8edc7962910d819104af19f91cc04f3e7f88b72, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5d:4e:f6:b8:9d:b7:80:d7:2c:ab:b2:6b:10:
5e:5d:74:5b:37:58:e8:2a:20:35:2e:46:f8:83:07:
b4:70:d4:da:12:d5:9a:da:61:40:fa:29:15:5d:64:
20:34:8e:32:b5:9e:be:d7:2e:c2:e4:65:cd:13:65:
67:d8:ab:fb:36:0e:bb:80:a0:45:cc:e2:1e:fa:e4:
42:5a:71:5e:c5:24:bf:90:46:82:83:55:1f:ac:c2:
2b:a3:58:56:6a:a1:65:ae:e4:04:c4:6e:ef:11:6f:
24:0b:22:5e:ab:f8:a0:d2:47:4f:af:b6:30:3f:e4:
4e:8f:a1:23:ac:57:7f:f5:5d:bf:a5:45:a9:03:a5:
5f:bd:43:a1:01:d0:35:18:fa:1d:c0:e2:6f:d3:bf:
f9:9e:c3:17:ab:fe:33:cd:f8:3e:e3:6b:d5:ae:4a:
43:db:57:31:b3:fe:23:17:f7:be:a3:5e:4f:44:29:
b9:e8:eb:c4:f5:9f:ee:f9:2b:0f:a0:7d:91:ad:e4:
ab:93:3a:c1:e9:88:2b:f4:9b:d4:81:c8:93:44:76:
e9:0f:f1:1f:2e:87:9e:39:80:92:89:82:67:1e:7d:
00:2f:f5:a9:4c:24:00:3f:fc:5e:e9:46:1b:f9:77:
6c:0e:88:b6:7d:3e:36:ab:a9:9b:7b:b5:51:78:1a:
b2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F5:81:1C:57:5A:54:FF:C4:08:4B:23:9F:B9:F8:4B:91:32:00:2F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.73.208.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:d6:43:82:8e:60:6f:2d:9a:37:fe:30:56:b9:8d:90:79:0e:
2c:58:b4:ea:5b:bb:e1:ca:f4:9c:68:4a:26:38:21:57:63:be:
34:42:07:ed:d4:7e:35:87:77:79:2d:53:36:89:8e:83:5f:95:
2e:a3:91:6d:78:d9:f2:64:2c:14:a1:b6:7a:33:93:c9:16:49:
27:0f:f5:cf:35:6c:a8:57:33:18:da:9e:3f:4b:b7:0b:f5:54:
ba:d5:e9:c0:ce:3a:bf:1c:49:38:95:c9:10:aa:a0:91:ca:46:
91:46:7f:35:27:74:b4:0f:79:be:b3:71:03:74:80:27:7d:01:
40:09:6c:f1:c9:e9:1b:31:4a:83:6c:ab:81:86:36:2d:f5:3e:
77:9f:22:62:f9:89:64:63:cf:16:de:de:6d:90:b4:33:70:27:
48:4b:8f:e3:78:e4:19:da:1f:10:1e:54:78:83:e7:2e:6d:a5:
60:f2:94:3e:ff:24:91:10:64:2f:89:f0:04:5e:1c:67:b8:7a:
7c:39:a8:e3:95:2c:67:81:f8:f4:55:7d:20:2e:0d:5a:fd:95:
76:1f:96:e8:0a:b9:d5:88:c6:c9:e9:d8:3d:ef:82:4b:11:0d:
ba:10:5e:bc:0e:13:16:51:1a:60:4c:3b:d0:14:df:77:c8:e9:
cd:53:2d:9f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUCb3cj05UHKI34U4O9nnO4NRnASswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDAxMDAxMTU4WhcNMjUxMTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0BjODEzZTNkZDFmNDBhODZjYzE3YzM4OTdiOGVkYzc5NjI5
MTBkODE5MTA0YWYxOWY5MWNjMDRmM2U3Zjg4YjcyMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCoXU72uJ23gNcsq7JrEF5ddFs3WOgqIDUuRviDB7Rw1NoS
1ZraYUD6KRVdZCA0jjK1nr7XLsLkZc0TZWfYq/s2DruAoEXM4h765EJacV7FJL+Q
RoKDVR+swiujWFZqoWWu5ATEbu8RbyQLIl6r+KDSR0+vtjA/5E6PoSOsV3/1Xb+l
RakDpV+9Q6EB0DUY+h3A4m/Tv/mewxer/jPN+D7ja9WuSkPbVzGz/iMX976jXk9E
Kbno68T1n+75Kw+gfZGt5KuTOsHpiCv0m9SByJNEdukP8R8uh545gJKJgmcefQAv
9alMJAA//F7pRhv5d2wOiLZ9PjarqZt7tVF4GrLdAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUSvWBHFdaVP/ECEsjn7n4S5EyAC8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzAzNDM1MzRiLWY2NzMtNDgyMC1hMzVjLTc2MTk1M2RkODEzNi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPYSdAwDQYJKoZIhvcNAQELBQADggEBAC/WQ4KOYG8tmjf+MFa5jZB5DixY
tOpbu+HK9JxoSiY4IVdjvjRCB+3UfjWHd3ktUzaJjoNflS6jkW142fJkLBShtnoz
k8kWSScP9c81bKhXMxjanj9Ltwv1VLrV6cDOOr8cSTiVyRCqoJHKRpFGfzUndLQP
eb6zcQN0gCd9AUAJbPHJ6RsxSoNsq4GGNi31PnefImL5iWRjzxbe3m2QtDNwJ0hL
j+N45BnaHxAeVHiD5y5tpWDylD7/JJEQZC+J8AReHGe4enw5qOOVLGeB+PRVfSAu
DVr9lXYflugKudWIxsnp2D3vgksRDboQXrwOExZRGmBMO9AU33fI6c1TLZ8=
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:51:14 2025 by rpki-client