Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa
File: 2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa (raw, json)
Hash identifier: ehnfYcRP5m6ViZ/NPOQ7TdwTP86kQoAaUnLGxDv/R4U=
Subject key identifier: AE:D9:32:C8:C3:15:D6:D7:98:5B:33:9B:73:F3:5F:F0:E5:A6:E1:00
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1B9568FDA2CF286F6DC35DBA1B208C458E4AFDB9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa
Signing time: Sat 27 Sep 2025 00:01:28 +0000
ROA not before: Sat 27 Sep 2025 00:01:28 +0000
ROA not after: Sat 01 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.24.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:95:68:fd:a2:cf:28:6f:6d:c3:5d:ba:1b:20:8c:45:8e:4a:fd:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 27 00:01:28 2025 GMT
Not After : Nov 1 23:59:59 2025 GMT
Subject: serialNumber=475f3962189fdd323907b625467facf157f5b5cdd50f68163bb08ec27a326397, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c7:76:0c:20:92:f3:3f:43:c5:fe:e5:0c:c5:
4f:61:0f:29:2b:2c:94:0e:d8:41:a4:83:30:42:74:
ca:28:9f:b5:5d:15:cb:ff:67:15:50:4a:6b:98:8f:
6a:51:02:8c:57:b3:c7:1b:02:fe:c0:b3:62:f8:91:
df:6e:e9:5b:ea:5e:c0:4f:7a:9c:58:9a:52:af:49:
dc:bc:fe:8a:5f:82:ee:e6:56:45:fc:eb:64:3f:63:
f3:4f:db:50:46:b9:17:01:c7:95:91:01:03:6b:ab:
5d:63:eb:50:f4:c0:ca:bd:5e:b4:23:e3:dd:19:62:
83:27:0e:50:fb:1d:2f:95:03:3a:a4:47:a0:16:4d:
62:0f:5e:e0:e5:70:f8:2d:6f:4b:5b:70:cd:71:ce:
43:93:27:0c:91:6a:2e:c7:39:e9:41:88:95:a7:45:
6b:52:39:61:75:47:90:88:7e:07:4f:8e:19:f8:3b:
d9:e3:b6:7f:1a:45:2f:85:10:ac:34:15:aa:1c:c1:
46:46:e6:e5:42:1a:69:21:e8:0d:c4:91:b8:37:77:
4f:72:44:1e:70:f5:60:b9:dd:5d:7d:1d:ae:47:ff:
ad:a5:2c:ac:e6:e5:4d:b6:41:30:1f:cf:2e:c4:e2:
75:ac:19:fe:a8:f5:36:02:0c:51:3b:54:5c:ca:5e:
50:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D9:32:C8:C3:15:D6:D7:98:5B:33:9B:73:F3:5F:F0:E5:A6:E1:00
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.24.240.0/20
Signature Algorithm: sha256WithRSAEncryption
c3:56:31:a1:be:81:12:ab:48:62:bc:c4:61:31:89:81:06:0c:
47:9d:1b:33:77:78:aa:8e:18:1b:ba:61:9a:a5:6e:85:97:e8:
32:4f:f1:1f:70:5c:ab:3f:06:71:55:6a:b3:6d:d0:c1:ae:5b:
cc:52:93:f5:53:dd:7d:f3:92:16:d6:2a:88:f5:31:c8:34:74:
9d:20:0e:2c:01:ae:81:49:63:ee:15:87:c0:68:f9:8d:15:ed:
2a:7c:68:a6:06:67:73:c3:0a:77:14:88:b3:ca:1c:5d:ce:8d:
b3:03:fa:72:c3:8b:56:71:d8:16:c9:df:ee:42:42:bc:3b:03:
7d:ca:bf:a8:9a:7d:86:60:50:f6:88:69:d7:68:d9:d7:27:9f:
80:82:3d:26:31:ff:30:24:fe:ad:45:74:f9:36:99:e0:99:42:
d2:0f:e0:e9:05:93:26:7c:2b:d9:c6:38:13:a3:ee:97:74:81:
49:7a:33:2e:f1:0b:02:46:9f:34:3c:e8:7d:f2:4a:65:20:2f:
06:70:96:9f:9a:71:f1:da:15:24:2c:6b:02:5e:d6:4f:9a:c2:
2c:91:e3:72:83:aa:f2:6d:8d:bf:51:09:3a:8c:3b:39:be:f3:
d1:ef:4f:47:3d:a6:d5:12:c4:57:71:9c:60:91:67:35:63:dc:
f9:39:35:e8
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUG5Vo/aLPKG9tw126GyCMRY5K/bkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTI3MDAwMTI4WhcNMjUxMTAxMjM1OTU5
WjB6MUkwRwYDVQQFE0A0NzVmMzk2MjE4OWZkZDMyMzkwN2I2MjU0NjdmYWNmMTU3
ZjViNWNkZDUwZjY4MTYzYmIwOGVjMjdhMzI2Mzk3MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDax3YMIJLzP0PF/uUMxU9hDykrLJQO2EGkgzBCdMoon7Vd
Fcv/ZxVQSmuYj2pRAoxXs8cbAv7As2L4kd9u6VvqXsBPepxYmlKvSdy8/opfgu7m
VkX862Q/Y/NP21BGuRcBx5WRAQNrq11j61D0wMq9XrQj490ZYoMnDlD7HS+VAzqk
R6AWTWIPXuDlcPgtb0tbcM1xzkOTJwyRai7HOelBiJWnRWtSOWF1R5CIfgdPjhn4
O9njtn8aRS+FEKw0FaocwUZG5uVCGmkh6A3Ekbg3d09yRB5w9WC53V19Ha5H/62l
LKzm5U22QTAfzy7E4nWsGf6o9TYCDFE7VFzKXlCDAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUrtkyyMMV1teYWzObc/Nf8OWm4QAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzI1MzVjYzRjLTljZTYtNGIxNC1hZmU2LTM1N2FlOGNhYjRjNS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBATYGPAwDQYJKoZIhvcNAQELBQADggEBAMNWMaG+gRKrSGK8xGExiYEGDEed
GzN3eKqOGBu6YZqlboWX6DJP8R9wXKs/BnFVarNt0MGuW8xSk/VT3X3zkhbWKoj1
Mcg0dJ0gDiwBroFJY+4Vh8Bo+Y0V7Sp8aKYGZ3PDCncUiLPKHF3OjbMD+nLDi1Zx
2BbJ3+5CQrw7A33Kv6iafYZgUPaIaddo2dcnn4CCPSYx/zAk/q1FdPk2meCZQtIP
4OkFkyZ8K9nGOBOj7pd0gUl6My7xCwJGnzQ86H3ySmUgLwZwlp+acfHaFSQsawJe
1k+awiyR43KDqvJtjb9RCTqMOzm+89HvT0c9ptUSxFdxnGCRZzVj3Pk5Neg=
-----END CERTIFICATE-----
Generated at Mon Oct 20 19:02:34 2025 by rpki-client