Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa
File: 3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa (raw, json)
Hash identifier: D9B0s3skeA3yQiYjsRPFDzcuZWWeZn4YPllmUmrVPrs=
Subject key identifier: 2A:38:A6:80:4D:51:3B:6D:95:5F:C9:05:C0:50:AB:B0:EE:A5:EA:DC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 59A99F6EB0C52EEDED9920961F706C7C627A2473
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa
Signing time: Sat 18 Oct 2025 00:31:45 +0000
ROA not before: Sat 18 Oct 2025 00:31:45 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fff:e000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:a9:9f:6e:b0:c5:2e:ed:ed:99:20:96:1f:70:6c:7c:62:7a:24:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 00:31:45 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=299459b044919833573703a4b3424ea6d0c6df484f49e613ef37cccdfc99fca7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a9:2c:c5:7a:e7:7b:a3:3f:bd:c4:d5:06:d8:
1f:79:33:01:d5:f2:b7:a2:5c:68:19:ab:99:e8:99:
2b:0c:23:99:08:75:55:03:6a:cf:9c:6e:98:93:e7:
01:a2:6d:b1:f4:f9:5b:d5:5b:50:88:0a:48:49:d7:
31:d9:86:7d:05:38:d0:7e:a4:ee:be:31:5f:1a:c4:
78:bf:75:06:b5:35:ea:f5:20:f4:63:af:21:a5:c4:
26:17:07:95:89:fb:f3:57:4f:27:67:3c:ad:9c:b9:
b1:9a:70:4f:0f:81:62:fa:76:fc:5a:f0:32:7c:0b:
99:4a:10:80:58:2d:22:18:12:d0:fd:e7:e6:2a:5a:
df:97:18:55:f4:c9:8b:16:b2:9e:7e:26:c0:af:a6:
e4:d5:ac:d8:f5:3a:cf:d9:f2:73:13:a8:b7:19:f7:
bc:ba:a8:b5:f0:62:c2:d5:e6:4e:45:ff:b6:51:12:
02:38:37:e5:c2:a4:02:0d:ec:99:f6:f8:4b:fa:15:
e8:9f:2d:c6:04:08:40:ee:18:b0:51:37:7d:0d:76:
87:29:54:12:d0:d2:c7:07:06:c9:2c:af:42:bb:36:
b3:ea:7f:f2:70:a2:1f:15:91:dc:bb:13:72:25:6c:
40:be:0d:30:61:c2:9c:e1:3e:b1:60:75:cb:7f:5f:
d1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:38:A6:80:4D:51:3B:6D:95:5F:C9:05:C0:50:AB:B0:EE:A5:EA:DC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fff:e000::/40
Signature Algorithm: sha256WithRSAEncryption
a0:86:d0:fb:2b:12:21:ea:2e:ff:4c:c5:f9:a9:f7:c7:65:46:
ef:f6:54:4a:42:42:56:b2:5e:54:e3:a7:a1:77:ed:38:17:09:
65:eb:4a:be:a7:d5:57:06:ac:c8:ef:0d:dc:63:4d:bf:91:94:
92:88:4b:e5:a3:2d:a2:cd:03:63:7c:d1:dc:24:04:cb:37:3c:
70:db:b0:10:0e:be:4b:23:d1:18:63:74:2b:7c:84:e5:68:55:
7f:f3:9d:d1:6f:44:55:c4:2c:fd:d5:13:ae:24:35:61:7f:99:
a4:85:a9:45:ef:33:a8:5f:52:06:b5:2c:54:87:a7:bb:9d:9e:
c6:e6:bc:76:2a:94:92:82:90:c2:b7:20:d5:1d:d3:a1:61:c9:
4b:92:09:df:0f:bf:8f:89:3d:33:42:c6:8a:b1:b4:65:2a:54:
8c:8f:a0:40:11:c7:77:70:3b:d0:36:0f:b1:60:2a:f2:5c:16:
ce:f9:cc:f2:5a:73:56:0b:12:e4:64:e3:f1:b3:eb:c6:8c:4e:
09:e2:c4:36:50:d7:5a:73:53:3e:3d:69:05:52:6d:fc:15:78:
c8:73:03:1f:55:a0:45:2f:04:2d:3f:d7:a1:e7:e9:0c:cb:0f:
d8:36:9d:25:2e:b5:af:37:65:46:35:e4:93:9a:ca:fa:47:7a:
aa:c8:ec:78
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUWamfbrDFLu3tmSCWH3BsfGJ6JHMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE4MDAzMTQ1WhcNMjUxMTIyMjM1OTU5
WjB6MUkwRwYDVQQFE0AyOTk0NTliMDQ0OTE5ODMzNTczNzAzYTRiMzQyNGVhNmQw
YzZkZjQ4NGY0OWU2MTNlZjM3Y2NjZGZjOTlmY2E3MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDLqSzFeud7oz+9xNUG2B95MwHV8reiXGgZq5nomSsMI5kI
dVUDas+cbpiT5wGibbH0+VvVW1CICkhJ1zHZhn0FONB+pO6+MV8axHi/dQa1Ner1
IPRjryGlxCYXB5WJ+/NXTydnPK2cubGacE8PgWL6dvxa8DJ8C5lKEIBYLSIYEtD9
5+YqWt+XGFX0yYsWsp5+JsCvpuTVrNj1Os/Z8nMTqLcZ97y6qLXwYsLV5k5F/7ZR
EgI4N+XCpAIN7Jn2+Ev6FeifLcYECEDuGLBRN30NdocpVBLQ0scHBsksr0K7NrPq
f/Jwoh8Vkdy7E3IlbEC+DTBhwpzhPrFgdct/X9GfAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUKjimgE1RO22VX8kFwFCrsO6l6twwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzNiM2JkZWFiLTZiMTMtNGEyOC04MGVkLTBmZTJhNWZhNGRmZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAB//4DANBgkqhkiG9w0BAQsFAAOCAQEAoIbQ+ysSIeou/0zF+an3x2VG
7/ZUSkJCVrJeVOOnoXftOBcJZetKvqfVVwasyO8N3GNNv5GUkohL5aMtos0DY3zR
3CQEyzc8cNuwEA6+SyPRGGN0K3yE5WhVf/Od0W9EVcQs/dUTriQ1YX+ZpIWpRe8z
qF9SBrUsVIenu52exua8diqUkoKQwrcg1R3ToWHJS5IJ3w+/j4k9M0LGirG0ZSpU
jI+gQBHHd3A70DYPsWAq8lwWzvnM8lpzVgsS5GTj8bPrxoxOCeLENlDXWnNTPj1p
BVJt/BV4yHMDH1WgRS8ELT/XoefpDMsP2DadJS61rzdlRjXkk5rK+kd6qsjseA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 20:44:06 2025 by rpki-client