Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b30c813-6ee9-4d86-a03e-63af7eafa022.roa
File: 5b30c813-6ee9-4d86-a03e-63af7eafa022.roa (raw, json)
Hash identifier: 3Nfi0Z/GjUvbu1X6a/YovxkfvKxsSk6XEyrBCXOfRtM=
Subject key identifier: F3:A2:56:10:AC:23:74:88:1D:FD:7D:36:16:76:F5:73:E6:19:C3:BD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2E4D53D6C72BB463B2AD3376E92C2D2A526BCFE9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b30c813-6ee9-4d86-a03e-63af7eafa022.roa
Signing time: Tue 14 Oct 2025 15:01:18 +0000
ROA not before: Tue 14 Oct 2025 15:01:18 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 130.176.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:4d:53:d6:c7:2b:b4:63:b2:ad:33:76:e9:2c:2d:2a:52:6b:cf:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 15:01:18 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=30a62cc9cca87ea011a2722842e5ec0d435c73c268b8b28c38526c4f822d9f14, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:57:71:9a:3b:ea:25:39:60:ba:e3:c6:0f:0b:
9c:06:04:38:bc:9c:09:2c:a3:bd:0a:ef:b5:14:20:
40:e5:38:67:b2:df:bd:f6:2d:b0:3b:b1:c0:46:54:
d0:a8:20:36:97:d5:ed:77:48:ad:a7:fc:fd:28:1a:
e1:c0:81:7e:bd:f7:cf:39:90:02:30:f9:dc:2e:a0:
e0:2d:c3:2e:3d:b3:86:c8:3b:17:a9:e5:ce:a9:25:
6c:d5:19:8a:0c:c3:0d:ed:37:e5:de:f4:07:e7:6a:
d8:cb:12:c7:88:eb:23:ee:a6:6e:6f:98:1e:f0:04:
6d:73:08:ee:99:48:c6:fe:55:12:f8:03:69:68:96:
aa:1f:d4:c7:09:5c:9b:dd:23:3a:50:33:d2:a2:32:
25:ba:64:36:af:d2:2a:e4:93:0c:1d:1b:1d:bd:a5:
ed:4b:ec:e9:93:87:01:4e:85:ca:42:90:e7:af:8c:
2f:c0:cd:fd:65:95:f6:d6:9d:7b:c8:9d:72:b8:73:
b7:d1:2e:08:99:18:bc:4c:8f:62:03:97:c5:68:99:
47:88:47:45:2c:bc:fc:d1:c1:0a:f7:31:77:d8:a0:
48:1b:cd:d1:63:5b:80:69:1c:d9:39:93:86:4f:11:
36:26:40:bb:fb:98:88:fe:cc:3d:d8:e0:46:cc:87:
67:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A2:56:10:AC:23:74:88:1D:FD:7D:36:16:76:F5:73:E6:19:C3:BD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b30c813-6ee9-4d86-a03e-63af7eafa022.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.176.235.0/24
Signature Algorithm: sha256WithRSAEncryption
99:d8:3b:f2:59:01:16:ea:e9:19:cd:ac:11:25:2c:e3:66:84:
6f:29:d4:0e:cd:88:07:cd:59:71:69:30:5f:28:a8:d1:59:6e:
63:45:5c:a9:2a:9a:37:99:94:13:89:fe:8b:a3:b2:ca:d7:db:
48:ba:a7:6e:59:09:a9:0c:1f:f5:79:c7:3f:d7:5b:14:d0:69:
d1:d7:45:f8:27:b3:de:90:d0:d8:3b:78:79:14:e2:7d:0d:d5:
fc:ac:6f:6d:cc:d3:18:0b:29:c1:44:47:6c:03:43:ef:ce:c0:
98:f7:90:e8:2f:37:d2:c2:f6:4e:3a:fd:0d:2c:79:c4:6b:6a:
e5:98:4d:ad:38:11:42:3e:39:c2:85:40:fc:35:5f:2a:ef:fa:
76:ba:5e:f0:ce:cd:b9:46:1c:46:de:28:34:d6:ba:06:c5:ed:
2a:57:77:d6:94:e6:38:68:3d:ae:89:fb:3c:d9:d2:85:b9:d3:
18:5a:cb:38:04:be:9a:6e:51:13:72:c6:87:01:4f:f6:f1:bd:
24:d5:97:63:54:a4:b5:82:1c:e6:61:d0:0e:ca:0e:21:e5:68:
5e:58:c6:51:d8:5d:b3:1c:16:70:52:77:40:c9:88:7b:80:e8:
95:24:bc:fc:49:f0:cb:83:61:83:9f:31:b5:a5:42:aa:65:f0:
f2:8f:ed:dd
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIULk1T1scrtGOyrTN26SwtKlJrz+kwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE0MTUwMTE4WhcNMjUxMTE4MjM1OTU5
WjB6MUkwRwYDVQQFE0AzMGE2MmNjOWNjYTg3ZWEwMTFhMjcyMjg0MmU1ZWMwZDQz
NWM3M2MyNjhiOGIyOGMzODUyNmM0ZjgyMmQ5ZjE0MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCHV3GaO+olOWC648YPC5wGBDi8nAkso70K77UUIEDlOGey
3732LbA7scBGVNCoIDaX1e13SK2n/P0oGuHAgX699885kAIw+dwuoOAtwy49s4bI
Oxep5c6pJWzVGYoMww3tN+Xe9AfnatjLEseI6yPupm5vmB7wBG1zCO6ZSMb+VRL4
A2lolqof1McJXJvdIzpQM9KiMiW6ZDav0irkkwwdGx29pe1L7OmThwFOhcpCkOev
jC/Azf1llfbWnXvInXK4c7fRLgiZGLxMj2IDl8VomUeIR0UsvPzRwQr3MXfYoEgb
zdFjW4BpHNk5k4ZPETYmQLv7mIj+zD3Y4EbMh2c/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU86JWEKwjdIgd/X02Fnb1c+YZw70wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzViMzBjODEzLTZlZTktNGQ4Ni1hMDNlLTYzYWY3ZWFmYTAyMi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBACCsOswDQYJKoZIhvcNAQELBQADggEBAJnYO/JZARbq6RnNrBElLONmhG8p
1A7NiAfNWXFpMF8oqNFZbmNFXKkqmjeZlBOJ/oujssrX20i6p25ZCakMH/V5xz/X
WxTQadHXRfgns96Q0Ng7eHkU4n0N1fysb23M0xgLKcFER2wDQ+/OwJj3kOgvN9LC
9k46/Q0secRrauWYTa04EUI+OcKFQPw1Xyrv+na6XvDOzblGHEbeKDTWugbF7SpX
d9aU5jhoPa6J+zzZ0oW50xhayzgEvppuURNyxocBT/bxvSTVl2NUpLWCHOZh0A7K
DiHlaF5YxlHYXbMcFnBSd0DJiHuA6JUkvPxJ8MuDYYOfMbWlQqpl8PKP7d0=
-----END CERTIFICATE-----
Generated at Mon Oct 20 20:49:55 2025 by rpki-client