Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa
File: 235ba01b-bc16-4244-a93f-06a145b0732c.roa (raw, json)
Hash identifier: 9Rg7vrbLzfraf9d7kwkeazfawt8qRhVwDU7MD0WzU1Q=
Subject key identifier: F1:76:A1:91:AC:9D:A3:03:1B:8F:44:88:B8:F5:C5:D2:DA:59:84:50
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 17FA9B7E913DDD02866C7E357F51D1069390BA68
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa
Signing time: Fri 17 Oct 2025 00:41:13 +0000
ROA not before: Fri 17 Oct 2025 00:41:13 +0000
ROA not after: Fri 21 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 147.106.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:fa:9b:7e:91:3d:dd:02:86:6c:7e:35:7f:51:d1:06:93:90:ba:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 17 00:41:13 2025 GMT
Not After : Nov 21 23:59:59 2025 GMT
Subject: serialNumber=69e888e93528f914b49a2b595b6a68eceba776e1f9b58afa421f6168ea24f0e3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:10:df:4b:5c:9c:08:72:e7:14:8c:6e:c7:02:
16:d0:ea:19:07:68:1b:e6:91:b4:d0:e0:a5:0c:73:
a0:41:3f:07:71:71:4e:bf:fc:0e:e4:4c:89:ad:bb:
71:0f:02:ef:89:9a:ea:fe:ba:51:b5:3e:03:b7:ae:
09:c3:ad:2e:33:d0:35:37:c3:0c:9a:e8:56:5d:3e:
26:8a:90:87:73:2e:f6:91:61:6b:49:71:1f:ee:83:
0b:f4:91:c6:8a:d2:ec:39:23:2f:f3:39:a0:5f:9d:
ba:ff:f1:4d:59:bb:9b:31:dd:12:d9:8a:02:e8:05:
a7:2d:2e:14:d9:4c:83:37:c8:c5:8d:e3:67:fb:b3:
17:05:d4:fb:c4:96:f4:47:93:fc:42:bb:02:54:0d:
6a:9f:d6:a3:28:74:2f:1e:b5:80:12:5a:37:22:8d:
13:72:aa:63:65:65:34:ff:72:d8:e0:9a:be:5a:d8:
b7:04:1d:ab:eb:72:0b:bf:8a:38:9e:43:a3:39:24:
7b:b1:f7:c0:a9:5e:fd:14:ae:5e:1f:ba:9d:7e:12:
73:4c:f5:87:38:c0:ad:25:8f:23:15:f5:e6:cf:9f:
a6:9a:a2:e4:2b:16:f1:b4:b2:c4:55:6f:2a:fa:2a:
52:4a:d8:7b:21:ed:56:4e:d1:4d:64:f7:7a:73:ba:
03:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:76:A1:91:AC:9D:A3:03:1B:8F:44:88:B8:F5:C5:D2:DA:59:84:50
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.106.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:7a:f0:24:00:e8:02:a8:63:83:c1:8a:0d:4a:1b:b8:5c:79:
65:4e:76:24:69:82:4f:98:4c:0b:63:68:ee:08:46:10:19:37:
62:4b:24:48:f6:68:e1:33:8e:b6:b1:11:61:6f:98:49:c9:37:
54:77:3a:c7:0c:fb:b4:e2:da:74:3f:e2:26:36:90:05:dc:18:
c6:99:db:dc:6e:53:0f:62:d4:53:d9:7b:45:a6:c5:6a:df:ba:
6d:b0:9d:89:2a:9c:22:1a:db:1c:88:4c:3f:f1:35:b0:ad:c0:
bd:7c:3b:11:7f:6f:82:11:7e:13:73:2e:c9:f3:44:95:91:7f:
1a:a8:21:8e:90:de:31:24:36:24:2d:48:1b:8e:cb:45:15:40:
38:e6:d0:3c:4d:55:e6:06:34:fb:06:eb:c6:d4:c3:2d:bc:c3:
55:f2:01:a9:8d:bb:d4:61:40:79:c4:1e:31:65:e6:16:c2:26:
99:36:94:ac:24:d9:c9:55:2e:4d:ee:21:03:77:25:3d:37:0a:
ba:fa:7e:a9:76:bd:eb:a4:32:b2:e5:b7:1a:32:01:d8:87:52:
f6:9b:39:2e:67:0a:69:73:33:de:18:5f:04:f6:1a:3d:1e:68:
fc:5c:b7:7e:bf:63:13:74:6e:76:28:62:94:87:d6:4e:4d:d3:
10:10:68:9b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUF/qbfpE93QKGbH41f1HRBpOQumgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE3MDA0MTEzWhcNMjUxMTIxMjM1OTU5
WjB6MUkwRwYDVQQFE0A2OWU4ODhlOTM1MjhmOTE0YjQ5YTJiNTk1YjZhNjhlY2Vi
YTc3NmUxZjliNThhZmE0MjFmNjE2OGVhMjRmMGUzMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDAEN9LXJwIcucUjG7HAhbQ6hkHaBvmkbTQ4KUMc6BBPwdx
cU6//A7kTImtu3EPAu+Jmur+ulG1PgO3rgnDrS4z0DU3wwya6FZdPiaKkIdzLvaR
YWtJcR/ugwv0kcaK0uw5Iy/zOaBfnbr/8U1Zu5sx3RLZigLoBactLhTZTIM3yMWN
42f7sxcF1PvElvRHk/xCuwJUDWqf1qModC8etYASWjcijRNyqmNlZTT/ctjgmr5a
2LcEHavrcgu/ijieQ6M5JHux98CpXv0Url4fup1+EnNM9Yc4wK0ljyMV9ebPn6aa
ouQrFvG0ssRVbyr6KlJK2Hsh7VZO0U1k93pzugO7AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU8XahkaydowMbj0SIuPXF0tpZhFAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzIzNWJhMDFiLWJjMTYtNDI0NC1hOTNmLTA2YTE0NWIwNzMyYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAaTaoAwDQYJKoZIhvcNAQELBQADggEBAKV68CQA6AKoY4PBig1KG7hceWVO
diRpgk+YTAtjaO4IRhAZN2JLJEj2aOEzjraxEWFvmEnJN1R3OscM+7Ti2nQ/4iY2
kAXcGMaZ29xuUw9i1FPZe0WmxWrfum2wnYkqnCIa2xyITD/xNbCtwL18OxF/b4IR
fhNzLsnzRJWRfxqoIY6Q3jEkNiQtSBuOy0UVQDjm0DxNVeYGNPsG68bUwy28w1Xy
AamNu9RhQHnEHjFl5hbCJpk2lKwk2clVLk3uIQN3JT03Crr6fql2veukMrLltxoy
AdiHUvabOS5nCmlzM94YXwT2Gj0eaPxct36/YxN0bnYoYpSH1k5N0xAQaJs=
-----END CERTIFICATE-----
Generated at Mon Oct 20 12:56:55 2025 by rpki-client