Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09979197-79c0-48b0-823a-0eb71a344290.roa
File: 09979197-79c0-48b0-823a-0eb71a344290.roa (raw, json)
Hash identifier: DB3/QcY/B0DrT9c/jQlFV8FTAUq/iXiOFopKnHdG/YI=
Subject key identifier: 8E:A2:80:BA:A3:87:16:0B:E3:56:39:CC:88:60:FB:84:87:A3:AD:F8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0DB99670991FF47E17AE893B20A695DA1DF1BCCA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09979197-79c0-48b0-823a-0eb71a344290.roa
Signing time: Wed 01 Oct 2025 00:02:16 +0000
ROA not before: Wed 01 Oct 2025 00:02:16 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.175.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:b9:96:70:99:1f:f4:7e:17:ae:89:3b:20:a6:95:da:1d:f1:bc:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:02:16 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=4f27cc03ab7d0d3b38416dfac98d419076b538a99e206f449d490b12847a9708, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:c0:8b:21:37:60:a5:3b:83:ce:b5:ad:b3:
1a:18:e7:56:d9:15:ee:ae:f2:ff:37:ee:16:82:90:
d0:05:cf:08:24:e2:46:7a:af:19:b7:e7:ca:ef:5f:
e3:c3:dc:a4:aa:87:aa:6e:6a:b0:7f:2f:0d:ba:60:
db:4a:4a:56:60:38:7c:71:72:2a:d7:57:63:97:a0:
78:3e:20:f3:6a:1d:d9:0c:9d:f8:68:66:0f:5f:98:
17:17:dd:ed:a8:07:ad:61:36:1f:43:0f:97:34:73:
d0:df:3a:aa:f0:39:46:b3:b3:68:61:13:e6:bc:a4:
18:bf:28:d0:d0:c2:6c:90:83:da:98:bd:76:42:f5:
8d:26:8d:de:93:7f:3c:59:d9:0a:46:e2:2b:61:b6:
86:3f:a5:de:3d:e1:48:cf:11:32:83:41:5e:1a:9c:
70:95:98:81:1b:99:cb:39:86:65:33:d4:b7:8d:f0:
2b:06:62:2a:dc:dc:37:c9:d6:d1:a7:3c:be:0c:74:
f4:4d:83:4b:e6:9d:5e:18:f6:42:f6:2c:cd:39:5c:
fd:66:d6:90:ce:32:89:c8:54:85:08:5a:42:9e:ff:
68:ac:bd:5d:84:d0:df:b2:8c:8c:06:b8:4e:55:e7:
fc:9b:97:ce:8b:b2:de:f4:c0:8d:40:0c:a0:8e:a7:
cd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A2:80:BA:A3:87:16:0B:E3:56:39:CC:88:60:FB:84:87:A3:AD:F8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09979197-79c0-48b0-823a-0eb71a344290.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.175.48.0/20
Signature Algorithm: sha256WithRSAEncryption
26:6d:65:cb:46:3e:85:1d:c4:4a:51:20:d2:94:25:80:44:be:
75:78:20:a8:c9:4f:3a:3f:41:dc:66:18:10:8e:bc:d1:dc:57:
29:c0:8b:04:7e:71:78:c1:6b:41:d6:b0:9a:ff:27:0e:48:4d:
40:eb:dd:14:d7:1c:b6:ca:49:f1:a6:db:ab:ce:84:7a:05:ca:
e5:6e:e3:fb:31:62:ce:a9:c1:d2:bf:3c:ad:8e:62:9f:f4:b8:
04:44:7f:12:dc:23:4d:2b:64:4d:96:c6:4c:57:4e:83:1c:e8:
b8:22:e8:a3:8e:1c:0e:0f:8c:4c:c7:30:84:51:17:2d:3a:25:
17:82:a8:51:9c:1c:08:d3:8b:bd:fa:89:6e:34:59:c9:76:1f:
d2:13:53:ea:de:98:d7:e6:96:81:d5:4a:4a:b2:9d:6a:48:b8:
b6:16:60:6f:d4:f9:50:73:95:ac:3e:13:32:64:87:a8:bd:e8:
3c:5f:dd:9a:51:bb:c4:aa:de:2e:70:36:24:6a:52:82:6b:c5:
b5:a7:d2:4b:41:b4:d6:9e:c4:6d:f9:cb:fd:0d:12:3f:df:94:
a7:6d:f1:bf:38:10:df:b8:52:4e:c5:bd:94:86:11:e6:56:38:
02:da:34:85:9c:1c:e5:20:24:65:64:b7:e9:29:32:39:21:2e:
15:c3:78:94
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUDbmWcJkf9H4Xrok7IKaV2h3xvMowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDAxMDAwMjE2WhcNMjUxMTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0A0ZjI3Y2MwM2FiN2QwZDNiMzg0MTZkZmFjOThkNDE5MDc2
YjUzOGE5OWUyMDZmNDQ5ZDQ5MGIxMjg0N2E5NzA4MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDHgsCLITdgpTuDzrWtsxoY51bZFe6u8v837haCkNAFzwgk
4kZ6rxm358rvX+PD3KSqh6puarB/Lw26YNtKSlZgOHxxcirXV2OXoHg+IPNqHdkM
nfhoZg9fmBcX3e2oB61hNh9DD5c0c9DfOqrwOUazs2hhE+a8pBi/KNDQwmyQg9qY
vXZC9Y0mjd6TfzxZ2QpG4ithtoY/pd494UjPETKDQV4anHCVmIEbmcs5hmUz1LeN
8CsGYirc3DfJ1tGnPL4MdPRNg0vmnV4Y9kL2LM05XP1m1pDOMonIVIUIWkKe/2is
vV2E0N+yjIwGuE5V5/ybl86Lst70wI1ADKCOp83hAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUjqKAuqOHFgvjVjnMiGD7hIejrfgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzA5OTc5MTk3LTc5YzAtNDhiMC04MjNhLTBlYjcxYTM0NDI5MC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBARsrzAwDQYJKoZIhvcNAQELBQADggEBACZtZctGPoUdxEpRINKUJYBEvnV4
IKjJTzo/QdxmGBCOvNHcVynAiwR+cXjBa0HWsJr/Jw5ITUDr3RTXHLbKSfGm26vO
hHoFyuVu4/sxYs6pwdK/PK2OYp/0uAREfxLcI00rZE2WxkxXToMc6Lgi6KOOHA4P
jEzHMIRRFy06JReCqFGcHAjTi736iW40Wcl2H9ITU+remNfmloHVSkqynWpIuLYW
YG/U+VBzlaw+EzJkh6i96Dxf3ZpRu8Sq3i5wNiRqUoJrxbWn0ktBtNaexG35y/0N
Ej/flKdt8b84EN+4Uk7FvZSGEeZWOALaNIWcHOUgJGVkt+kpMjkhLhXDeJQ=
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:35:27 2025 by rpki-client