Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a45756c-6b27-4263-a9ff-46ab08de5ac9.roa
File: 5a45756c-6b27-4263-a9ff-46ab08de5ac9.roa (raw, json)
Hash identifier: FGTJ6dHAKQs6+DHqEKuPQBdg1SxTo73qiMGDeQ8pvz0=
Subject key identifier: 8F:73:DF:4F:A6:1E:4F:1A:1B:11:1E:E0:2C:F3:8A:72:82:CB:D0:41
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 40B0C15AA66CCDAE0736DFCF43ED0FCDE07FA6C7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a45756c-6b27-4263-a9ff-46ab08de5ac9.roa
Signing time: Mon 06 Oct 2025 15:21:21 +0000
ROA not before: Mon 06 Oct 2025 15:21:21 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 13.128.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:b0:c1:5a:a6:6c:cd:ae:07:36:df:cf:43:ed:0f:cd:e0:7f:a6:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 15:21:21 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=4cbfd98b7de2580a61296db9615b14e34c4706b28a3c27847d4be0ba6de6b69e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b7:7e:2c:aa:70:16:62:ac:7a:6f:b9:5b:ff:
9d:af:34:f1:62:ef:46:22:15:14:f9:8f:02:b9:ef:
31:81:ca:67:3a:bc:36:dc:ec:98:2e:67:5c:03:db:
51:07:f5:3b:96:16:fd:20:ba:a2:ee:77:a7:e2:4e:
17:46:6e:85:a5:16:46:5f:5f:3c:96:1f:b8:43:90:
ad:02:25:95:23:66:02:dd:38:41:2b:d7:3b:c1:17:
04:fb:57:67:1a:49:18:42:07:42:7a:a1:93:f5:2e:
59:27:a3:61:d9:3e:5e:a4:be:de:07:ff:d1:b4:c1:
71:b9:7e:89:72:1d:f8:ed:a4:77:45:97:af:6a:79:
42:db:49:0c:86:9f:3f:80:37:40:b4:42:d7:85:d6:
0e:b2:46:0f:56:de:8c:eb:33:1c:f8:ac:68:89:bf:
9c:a1:f6:fb:3a:f7:bb:3c:8d:8d:3f:a6:9e:38:d1:
38:e5:b8:73:84:0f:d4:4c:ab:74:15:03:93:23:14:
19:a4:59:72:5b:f8:84:a6:9e:9b:8c:0b:b2:87:f6:
4e:c7:14:de:53:f8:57:21:1c:05:fa:1f:45:e8:b4:
f7:f6:b6:e0:5d:4d:a0:2d:ea:64:4a:ae:7c:cf:e0:
72:6e:54:6d:f5:17:c0:6b:be:e7:68:3e:a4:2c:8b:
f6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:73:DF:4F:A6:1E:4F:1A:1B:11:1E:E0:2C:F3:8A:72:82:CB:D0:41
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a45756c-6b27-4263-a9ff-46ab08de5ac9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.128.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a4:9c:b9:84:f0:19:f6:d8:a4:58:e1:25:89:4b:c6:f3:a2:6a:
e8:5d:a4:81:35:93:64:9f:7c:73:2a:1b:28:1f:16:74:fd:73:
a3:08:3a:bf:39:fa:95:6a:cd:8e:08:b2:e6:2a:b9:8b:9b:fc:
3f:86:e0:cd:fe:03:e1:7b:91:59:a9:5a:35:0a:99:6c:78:65:
bd:16:e1:4e:3a:20:c2:d4:b9:15:42:3c:eb:ea:a0:8b:fb:0a:
ee:6e:b9:86:a5:39:02:d0:24:08:a8:af:82:49:c4:8a:55:08:
04:a6:1f:00:5a:54:73:cc:2e:7e:d7:83:c4:6e:51:a8:a6:f9:
9b:8a:5d:97:cd:e3:8c:89:04:9a:27:9d:51:15:08:0c:6b:27:
1b:06:3c:73:c0:31:7b:1e:17:66:73:85:d1:6d:41:1d:a7:c6:
0e:48:8a:19:f9:da:5c:0b:dd:38:35:f8:0b:d0:45:74:b1:6a:
d6:71:03:39:8e:09:bf:47:8d:b3:1f:c1:4f:c6:d2:94:59:e8:
b8:b8:e9:3e:a5:09:be:24:22:be:d7:98:93:87:98:cb:59:9e:
41:26:49:10:e3:79:ed:c1:3f:86:ba:c1:dd:f2:af:cd:a3:a5:
2b:69:58:5a:72:c1:0d:25:de:9c:86:7d:48:b6:9a:e3:7c:54:
ed:df:ab:1c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUQLDBWqZsza4HNt/PQ+0PzeB/pscwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA2MTUyMTIxWhcNMjUxMTEwMjM1OTU5
WjB6MUkwRwYDVQQFE0A0Y2JmZDk4YjdkZTI1ODBhNjEyOTZkYjk2MTViMTRlMzRj
NDcwNmIyOGEzYzI3ODQ3ZDRiZTBiYTZkZTZiNjllMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC1t34sqnAWYqx6b7lb/52vNPFi70YiFRT5jwK57zGBymc6
vDbc7JguZ1wD21EH9TuWFv0guqLud6fiThdGboWlFkZfXzyWH7hDkK0CJZUjZgLd
OEEr1zvBFwT7V2caSRhCB0J6oZP1Llkno2HZPl6kvt4H/9G0wXG5folyHfjtpHdF
l69qeULbSQyGnz+AN0C0QteF1g6yRg9W3ozrMxz4rGiJv5yh9vs697s8jY0/pp44
0TjluHOED9RMq3QVA5MjFBmkWXJb+ISmnpuMC7KH9k7HFN5T+FchHAX6H0XotPf2
tuBdTaAt6mRKrnzP4HJuVG31F8BrvudoPqQsi/ZLAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUj3PfT6YeTxobER7gLPOKcoLL0EEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzVhNDU3NTZjLTZiMjctNDI2My1hOWZmLTQ2YWIwOGRlNWFjOS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQNgDAwDQYJKoZIhvcNAQELBQADggEBAKScuYTwGfbYpFjhJYlLxvOiauhd
pIE1k2SffHMqGygfFnT9c6MIOr85+pVqzY4IsuYquYub/D+G4M3+A+F7kVmpWjUK
mWx4Zb0W4U46IMLUuRVCPOvqoIv7Cu5uuYalOQLQJAior4JJxIpVCASmHwBaVHPM
Ln7Xg8RuUaim+ZuKXZfN44yJBJonnVEVCAxrJxsGPHPAMXseF2ZzhdFtQR2nxg5I
ihn52lwL3Tg1+AvQRXSxatZxAzmOCb9HjbMfwU/G0pRZ6Li46T6lCb4kIr7XmJOH
mMtZnkEmSRDjee3BP4a6wd3yr82jpStpWFpywQ0l3pyGfUi2muN8VO3fqxw=
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:38:14 2025 by rpki-client