Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a022cf7-0f11-4c1a-b021-24883a373bdb.roa
File: 1a022cf7-0f11-4c1a-b021-24883a373bdb.roa (raw, json)
Hash identifier: +eNfHfnO4s1kYFQCvU9udn6R3twSC71CCwYj2QiLTO0=
Subject key identifier: 3B:28:3B:A1:24:C8:E8:B2:A1:B3:3E:7D:93:4A:5C:26:2C:4A:2E:10
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3986AE242BE5724C1F2D1DFC6633A6B55C977CF8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a022cf7-0f11-4c1a-b021-24883a373bdb.roa
Signing time: Wed 01 Oct 2025 00:01:20 +0000
ROA not before: Wed 01 Oct 2025 00:01:20 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.54.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:86:ae:24:2b:e5:72:4c:1f:2d:1d:fc:66:33:a6:b5:5c:97:7c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:01:20 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=b40846c0bd29d672439cc88d31d8444e4027b38790156bf36cbccad1b68ed3e9, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:af:33:18:5f:fa:a2:bc:65:8a:92:b5:d3:5b:
b3:77:8d:5c:65:66:f7:09:22:71:b0:d9:2c:f4:29:
0b:a2:83:7e:c7:6b:c6:bc:c9:a4:03:99:0a:03:39:
54:6b:2a:35:27:b6:a8:73:d9:d3:17:01:45:92:09:
e3:84:01:88:03:6c:33:7e:69:e5:ca:3e:08:6a:2f:
ca:1f:9e:2a:a7:25:52:8a:02:55:77:77:3f:ec:af:
db:bf:74:5f:80:9d:c7:a8:d9:b9:66:9a:a0:46:77:
13:5b:de:29:1a:d7:e4:8c:6f:bd:f5:f7:aa:3a:f0:
4d:ac:a5:5d:90:9a:1a:a4:cb:cd:9e:35:61:5e:99:
38:c8:67:5c:8a:1d:65:c5:e0:3e:61:59:1c:9f:91:
17:8a:9b:5d:cb:e6:1b:d5:37:26:54:20:3b:a6:85:
72:d2:8a:b9:b4:ba:f7:1d:c8:53:ed:dd:64:a2:1f:
b3:42:8c:fc:80:1f:ee:59:70:6f:7b:38:bd:74:82:
70:5e:8b:91:ed:b2:d8:41:a1:6d:26:ba:68:e0:6b:
03:76:a5:1f:11:ae:70:43:d6:70:79:37:05:16:bd:
8f:70:02:d7:ba:d3:ed:7f:38:a8:f0:00:58:60:e9:
66:14:f6:e4:bb:e4:ed:df:b7:c2:6c:15:49:62:32:
b7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:28:3B:A1:24:C8:E8:B2:A1:B3:3E:7D:93:4A:5C:26:2C:4A:2E:10
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a022cf7-0f11-4c1a-b021-24883a373bdb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.54.0.0/15
Signature Algorithm: sha256WithRSAEncryption
42:00:db:a9:74:ed:59:b0:85:3e:1c:da:cc:dd:25:c3:b4:4e:
f8:72:f0:53:97:af:ec:09:2d:6d:42:b0:19:98:83:88:c4:86:
a8:ce:86:26:74:4d:61:30:a8:c5:fe:45:4b:ad:c9:f2:8e:75:
b4:4a:aa:bc:95:dd:5d:bd:d7:d0:f1:b3:5a:f5:59:c0:15:78:
e8:55:44:3b:01:1f:5d:83:cc:66:51:74:ce:a6:d3:23:28:f9:
33:b4:06:17:4a:cb:70:cc:e3:04:a4:2a:fc:72:a3:4a:58:36:
67:aa:ef:13:96:e2:34:bd:15:5a:0e:30:70:82:5b:1e:6c:63:
a6:49:4d:ac:68:57:de:6c:77:f4:51:1d:26:ad:65:98:02:56:
78:e7:3c:8e:15:7a:18:8a:e5:59:64:50:f5:59:7e:94:ce:2b:
8a:d6:d1:0a:f7:7d:a0:40:af:2f:92:b2:ba:fc:2a:c7:54:b8:
c7:b5:d5:b1:8b:96:4f:17:a6:49:dc:54:db:3f:34:db:c3:f1:
a2:de:53:c7:2e:e3:67:f4:5d:58:1a:fa:5a:8c:84:df:e5:39:
7f:99:89:25:ff:7a:b0:6b:23:a4:77:60:69:b0:57:6e:a1:8b:
b3:4a:0d:d2:46:09:fe:af:cf:c7:3d:35:1c:aa:7b:4d:ea:ea:
c9:cb:b8:85
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUOYauJCvlckwfLR38ZjOmtVyXfPgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDAxMDAwMTIwWhcNMjUxMTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0BiNDA4NDZjMGJkMjlkNjcyNDM5Y2M4OGQzMWQ4NDQ0ZTQw
MjdiMzg3OTAxNTZiZjM2Y2JjY2FkMWI2OGVkM2U5MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC1rzMYX/qivGWKkrXTW7N3jVxlZvcJInGw2Sz0KQuig37H
a8a8yaQDmQoDOVRrKjUntqhz2dMXAUWSCeOEAYgDbDN+aeXKPghqL8ofniqnJVKK
AlV3dz/sr9u/dF+Anceo2blmmqBGdxNb3ika1+SMb73196o68E2spV2Qmhqky82e
NWFemTjIZ1yKHWXF4D5hWRyfkReKm13L5hvVNyZUIDumhXLSirm0uvcdyFPt3WSi
H7NCjPyAH+5ZcG97OL10gnBei5HtsthBoW0mumjgawN2pR8RrnBD1nB5NwUWvY9w
Ate60+1/OKjwAFhg6WYU9uS75O3ft8JsFUliMrfXAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUOyg7oSTI6LKhsz59k0pcJixKLhAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzFhMDIyY2Y3LTBmMTEtNGMxYS1iMDIxLTI0ODgzYTM3M2JkYi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwEQNjANBgkqhkiG9w0BAQsFAAOCAQEAQgDbqXTtWbCFPhzazN0lw7RO+HLw
U5ev7AktbUKwGZiDiMSGqM6GJnRNYTCoxf5FS63J8o51tEqqvJXdXb3X0PGzWvVZ
wBV46FVEOwEfXYPMZlF0zqbTIyj5M7QGF0rLcMzjBKQq/HKjSlg2Z6rvE5biNL0V
Wg4wcIJbHmxjpklNrGhX3mx39FEdJq1lmAJWeOc8jhV6GIrlWWRQ9Vl+lM4ritbR
Cvd9oECvL5Kyuvwqx1S4x7XVsYuWTxemSdxU2z8028Pxot5Txy7jZ/RdWBr6WoyE
3+U5f5mJJf96sGsjpHdgabBXbqGLs0oN0kYJ/q/Pxz01HKp7Terqycu4hQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 19:04:49 2025 by rpki-client