Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa
File: 6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa (raw, json)
Hash identifier: kI88i2gXA8ojH+xprvFDqn02slKDx6QL8dwUtc1QYbE=
Subject key identifier: AC:15:CA:1A:D4:C1:9C:58:F3:2C:B1:6B:21:5F:5B:65:41:50:18:D7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2CF0918F7857459C182319AAD8B162B6988E5E72
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa
Signing time: Fri 26 Sep 2025 00:40:18 +0000
ROA not before: Fri 26 Sep 2025 00:40:18 +0000
ROA not after: Fri 31 Oct 2025 23:59:59 +0000
asID: 16509
IP address blocks: 45.57.128.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:f0:91:8f:78:57:45:9c:18:23:19:aa:d8:b1:62:b6:98:8e:5e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 26 00:40:18 2025 GMT
Not After : Oct 31 23:59:59 2025 GMT
Subject: serialNumber=fb05bf527550a19ecb7b7f2430f4c66366ed7ef90d0744c2809ef924e167eb1e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d5:44:a1:77:d2:46:e1:3d:97:40:41:be:4a:
1c:c6:11:4f:39:ba:06:fb:2d:bb:6b:12:c8:dc:2c:
e9:da:18:3c:9f:44:fc:56:ef:62:a5:18:41:ff:ca:
d3:b9:66:2a:de:29:2a:8f:aa:98:02:b4:48:ce:29:
79:7a:8c:b8:7c:bb:37:79:a0:90:12:66:aa:a7:23:
f7:97:7a:11:f2:ef:a8:8c:2f:2a:22:de:96:64:bc:
1b:ff:55:bc:c1:14:c1:02:48:59:96:71:18:02:21:
4e:ea:29:11:81:5f:a2:78:68:9e:52:64:7e:3f:1f:
28:6e:bb:90:77:8a:47:23:5c:60:78:bc:f5:30:1a:
09:54:b6:b3:4b:c4:c2:7a:c5:d6:51:75:17:ba:cd:
13:0e:46:17:be:2f:02:03:c3:c2:d4:07:59:4c:ae:
dc:70:be:a4:7b:49:76:76:e1:10:f2:67:80:20:bb:
65:72:e0:dd:3c:d1:11:cd:04:ca:b7:e8:c5:1c:f6:
e0:1e:ea:2b:d7:51:33:5c:e6:03:2b:d3:3a:38:22:
14:54:f6:42:ef:76:a1:f4:7c:0a:6c:87:fe:7f:6a:
57:e0:31:fe:90:ed:1d:fd:23:73:52:e8:57:a0:44:
22:3f:30:e3:62:6a:19:cc:24:ae:9c:79:f6:93:32:
7e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:15:CA:1A:D4:C1:9C:58:F3:2C:B1:6B:21:5F:5B:65:41:50:18:D7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.57.128.0/19
Signature Algorithm: sha256WithRSAEncryption
47:0f:7e:e2:c8:c5:fc:78:86:f4:1f:dd:bb:ee:52:17:98:b8:
a8:9e:74:0f:69:85:d3:20:a9:e8:91:82:58:e6:61:67:d3:08:
7d:2b:f2:67:f6:84:84:23:8e:ef:55:52:6b:1e:98:70:49:5d:
b5:35:94:15:bc:43:97:45:25:7d:7a:c2:a8:f9:26:15:7e:c8:
d6:12:d1:2b:28:b8:1d:b8:66:62:6b:cb:37:77:c0:d2:16:a4:
11:3b:3b:c0:ce:84:1c:32:bf:5a:e8:9f:31:6e:c9:43:77:a3:
81:8d:fd:eb:8b:7d:06:45:56:18:03:2e:4d:9e:75:a4:42:53:
83:fb:d7:43:8d:17:44:a1:be:6e:91:83:2b:f7:90:34:61:71:
75:fb:a4:99:b1:a3:4d:a2:57:da:e6:db:d2:7b:77:c1:77:c1:
e6:3e:f6:40:5b:e5:ae:a2:f9:8f:90:ba:15:1e:9e:83:a6:89:
0f:87:ca:85:12:23:ff:6c:34:f0:7b:27:5c:28:6c:19:81:46:
ba:09:d0:cd:41:c1:74:08:9d:d9:30:29:ba:cf:59:c7:e1:11:
4f:6e:67:8b:f9:f6:c1:9d:0d:51:32:e4:18:f8:01:64:e2:4e:
ea:15:39:82:2c:f1:4f:db:75:b8:02:ee:76:a0:5d:63:7a:46:
b7:78:cf:98
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIULPCRj3hXRZwYIxmq2LFitpiOXnIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTI2MDA0MDE4WhcNMjUxMDMxMjM1OTU5
WjB6MUkwRwYDVQQFE0BmYjA1YmY1Mjc1NTBhMTllY2I3YjdmMjQzMGY0YzY2MzY2
ZWQ3ZWY5MGQwNzQ0YzI4MDllZjkyNGUxNjdlYjFlMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCz1UShd9JG4T2XQEG+ShzGEU85ugb7LbtrEsjcLOnaGDyf
RPxW72KlGEH/ytO5ZireKSqPqpgCtEjOKXl6jLh8uzd5oJASZqqnI/eXehHy76iM
Lyoi3pZkvBv/VbzBFMECSFmWcRgCIU7qKRGBX6J4aJ5SZH4/Hyhuu5B3ikcjXGB4
vPUwGglUtrNLxMJ6xdZRdRe6zRMORhe+LwIDw8LUB1lMrtxwvqR7SXZ24RDyZ4Ag
u2Vy4N080RHNBMq36MUc9uAe6ivXUTNc5gMr0zo4IhRU9kLvdqH0fApsh/5/alfg
Mf6Q7R39I3NS6FegRCI/MONiahnMJK6cefaTMn4dAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUrBXKGtTBnFjzLLFrIV9bZUFQGNcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzZhYzA2NjBkLTFlZTctNGI1Mi04ZTdmLTU1ODA0YmE3ZjI0OC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAUtOYAwDQYJKoZIhvcNAQELBQADggEBAEcPfuLIxfx4hvQf3bvuUheYuKie
dA9phdMgqeiRgljmYWfTCH0r8mf2hIQjju9VUmsemHBJXbU1lBW8Q5dFJX16wqj5
JhV+yNYS0SsouB24ZmJryzd3wNIWpBE7O8DOhBwyv1ronzFuyUN3o4GN/euLfQZF
VhgDLk2edaRCU4P710ONF0Shvm6Rgyv3kDRhcXX7pJmxo02iV9rm29J7d8F3weY+
9kBb5a6i+Y+QuhUenoOmiQ+HyoUSI/9sNPB7J1wobBmBRroJ0M1BwXQIndkwKbrP
WcfhEU9uZ4v59sGdDVEy5Bj4AWTiTuoVOYIs8U/bdbgC7nagXWN6Rrd4z5g=
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:02:57 2025 by rpki-client