Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa
File: 1a6e493f-275f-4a84-b751-a3051f88db2b.roa (raw, json)
Hash identifier: lbAeNVSXKXcWML0JBTaO5KZl8WazK9LW5952R8mx+7A=
Subject key identifier: C9:5A:BE:86:07:3F:DC:2F:D2:F9:9C:AE:5C:96:BD:99:90:30:11:EE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 64F46877C2F6DE4248C8B62FCC372625501BF532
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa
Signing time: Wed 01 Oct 2025 00:12:41 +0000
ROA not before: Wed 01 Oct 2025 00:12:41 +0000
ROA not after: Wed 05 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fa0:2000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:f4:68:77:c2:f6:de:42:48:c8:b6:2f:cc:37:26:25:50:1b:f5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 1 00:12:41 2025 GMT
Not After : Nov 5 23:59:59 2025 GMT
Subject: serialNumber=e65abc645f0b563ca2744554f1fc50da20251bbadf5ac5b6c0fb9415dcaf9eca, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:82:96:24:49:4f:03:dc:ac:9a:32:f4:11:61:
7c:ce:41:82:f7:a5:aa:d7:e8:b4:1a:6b:99:be:bd:
10:ea:8b:39:be:8e:a3:11:b8:8d:46:aa:72:41:b5:
50:d3:eb:70:9e:57:19:5d:e2:e7:19:ac:ff:e0:2f:
92:e8:51:5b:9d:6e:89:a7:7e:7b:ea:64:53:f7:fb:
5b:9e:04:7d:27:75:b6:92:aa:85:e0:f6:2a:78:39:
12:7e:96:0e:3a:84:7f:ae:3e:3d:15:72:7a:3b:2e:
a2:3b:50:3d:55:25:41:47:d9:1e:82:43:df:56:0e:
f8:0f:a7:cb:57:09:5d:a1:e8:67:6d:81:bd:48:00:
65:ce:a6:9e:d2:10:be:64:77:57:99:b7:0f:fe:1b:
21:01:2e:0b:22:bc:dd:5e:6e:0f:e2:1c:5a:13:4c:
8d:e0:87:56:72:8f:fb:1f:8a:f9:75:5e:f8:06:c6:
e5:97:d1:76:f7:df:6b:02:c0:2d:e9:5e:b8:ca:50:
d6:4a:04:a2:b9:40:fe:34:e0:3c:02:f0:af:38:0f:
5c:46:aa:29:29:c9:b7:9a:8a:57:d6:7e:84:8e:82:
95:0a:9d:91:94:be:b7:ae:b6:30:24:21:d0:2c:58:
b2:fc:9c:b0:1e:2c:db:45:14:40:86:f6:15:b3:12:
09:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5A:BE:86:07:3F:DC:2F:D2:F9:9C:AE:5C:96:BD:99:90:30:11:EE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fa0:2000::/40
Signature Algorithm: sha256WithRSAEncryption
29:8a:c7:3e:37:7b:2d:4f:0e:ca:03:bc:9d:8d:ff:78:9e:7c:
1a:39:6e:d4:29:02:c2:1a:3d:fe:fc:09:3c:ee:d8:2c:61:0d:
7e:6b:68:d9:30:04:b3:08:02:bb:58:1f:33:50:9b:86:71:a0:
6e:45:5f:e1:68:9d:96:9e:89:70:06:88:eb:19:8f:f0:74:d0:
90:59:0f:15:66:3c:6b:66:57:d4:86:6a:03:0a:c2:ca:59:40:
03:57:15:5a:63:4e:27:e5:88:20:69:ce:31:c4:38:fb:94:1c:
1b:24:78:d4:69:9e:8d:f0:fb:95:b2:2d:ba:8d:bc:59:28:38:
6c:f4:e3:88:1a:f3:5b:da:19:10:eb:41:10:46:90:72:5c:6a:
0b:e8:29:6f:5e:75:21:33:0c:18:53:0f:2a:a3:87:4f:34:4a:
3a:f7:de:f7:8e:ed:c7:e0:b4:9f:62:2c:9b:3d:af:a7:ef:58:
ed:af:82:33:dc:05:31:90:b5:3f:21:6c:2d:68:c5:e8:5d:d1:
8d:d0:51:13:4c:e1:b5:b1:27:40:1d:22:aa:f8:5b:59:c7:d7:
37:f6:7f:59:a5:e2:29:cc:c2:a7:74:f2:20:5a:e3:f9:46:3d:
69:a0:b0:c6:38:86:8f:6f:de:da:9f:4c:77:f9:d5:b7:d9:6b:
bd:71:02:f5
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUZPRod8L23kJIyLYvzDcmJVAb9TIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDAxMDAxMjQxWhcNMjUxMTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0BlNjVhYmM2NDVmMGI1NjNjYTI3NDQ1NTRmMWZjNTBkYTIw
MjUxYmJhZGY1YWM1YjZjMGZiOTQxNWRjYWY5ZWNhMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDkgpYkSU8D3KyaMvQRYXzOQYL3parX6LQaa5m+vRDqizm+
jqMRuI1GqnJBtVDT63CeVxld4ucZrP/gL5LoUVudbomnfnvqZFP3+1ueBH0ndbaS
qoXg9ip4ORJ+lg46hH+uPj0Vcno7LqI7UD1VJUFH2R6CQ99WDvgPp8tXCV2h6Gdt
gb1IAGXOpp7SEL5kd1eZtw/+GyEBLgsivN1ebg/iHFoTTI3gh1Zyj/sfivl1XvgG
xuWX0Xb332sCwC3pXrjKUNZKBKK5QP404DwC8K84D1xGqikpybeailfWfoSOgpUK
nZGUvreutjAkIdAsWLL8nLAeLNtFFECG9hWzEgkBAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUyVq+hgc/3C/S+ZyuXJa9mZAwEe4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzFhNmU0OTNmLTI3NWYtNGE4NC1iNzUxLWEzMDUxZjg4ZGIyYi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAB+gIDANBgkqhkiG9w0BAQsFAAOCAQEAKYrHPjd7LU8OygO8nY3/eJ58
Gjlu1CkCwho9/vwJPO7YLGENfmto2TAEswgCu1gfM1CbhnGgbkVf4Widlp6JcAaI
6xmP8HTQkFkPFWY8a2ZX1IZqAwrCyllAA1cVWmNOJ+WIIGnOMcQ4+5QcGyR41Gme
jfD7lbItuo28WSg4bPTjiBrzW9oZEOtBEEaQclxqC+gpb151ITMMGFMPKqOHTzRK
Ovfe947tx+C0n2Ismz2vp+9Y7a+CM9wFMZC1PyFsLWjF6F3RjdBRE0zhtbEnQB0i
qvhbWcfXN/Z/WaXiKczCp3TyIFrj+UY9aaCwxjiGj2/e2p9Md/nVt9lrvXEC9Q==
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:19:21 2025 by rpki-client