Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa
File: 6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa (raw, json)
Hash identifier: WCeA35dWyiePvbj23bIHa72Jd9fHQE62pLPUQELjAVQ=
Subject key identifier: 72:1A:27:3C:28:75:FF:7C:C1:AC:E1:87:1B:6E:FE:33:69:CF:34:61
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 464367C4CD028AF2E087D496677ABF9B4CCFC5B4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa
Signing time: Tue 14 Oct 2025 15:40:47 +0000
ROA not before: Tue 14 Oct 2025 15:40:47 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 130.176.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:43:67:c4:cd:02:8a:f2:e0:87:d4:96:67:7a:bf:9b:4c:cf:c5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 15:40:47 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=8cb0cb5a908d003d21e8b832681db37555a1039178fad7a98ea1526d89c35848, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:9e:bf:00:4d:14:2f:07:53:8c:16:ff:ba:
50:16:6e:03:fb:8e:ee:90:b2:46:78:41:8a:d8:a0:
17:bc:1e:c5:16:2e:a3:91:34:02:74:ef:65:fa:b4:
11:95:96:37:32:50:79:ac:ff:cb:6f:8a:a4:28:96:
e4:99:a3:a7:68:5e:a9:4c:89:2f:3c:ea:39:b9:7f:
0b:3f:84:2b:66:9e:0a:5f:fc:35:77:81:74:5b:c4:
e2:9c:5a:f4:7e:9d:8e:a2:5e:fc:4c:0a:89:d1:53:
dd:2c:e4:48:d1:45:d1:34:e5:3c:1a:da:f4:aa:c1:
4c:b2:6b:a1:df:70:b4:76:a2:25:66:b1:96:96:c7:
75:3b:3b:36:50:f2:c7:0b:d1:f0:30:a9:a6:10:f4:
85:af:51:af:2d:fc:1c:ee:6e:de:7c:c2:7b:8c:70:
ae:9e:eb:bb:ee:85:14:cb:bb:e8:4e:17:0f:be:41:
82:fa:59:a1:59:40:8c:87:a3:81:22:c8:39:19:43:
35:9e:0f:d4:4a:38:57:f5:ba:3f:ce:e2:31:5c:1d:
04:7a:b1:ee:10:8d:f9:f9:57:d2:10:25:ab:a4:c0:
15:57:cb:1e:ae:a4:8d:4c:ba:53:76:c5:a7:e8:cc:
4e:d7:00:4c:ec:5c:03:66:e1:0e:39:51:f4:ad:24:
ff:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1A:27:3C:28:75:FF:7C:C1:AC:E1:87:1B:6E:FE:33:69:CF:34:61
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.176.254.0/24
Signature Algorithm: sha256WithRSAEncryption
56:cd:d0:e2:f4:79:d4:57:66:6b:60:51:8e:d8:53:22:e3:5d:
41:11:e3:8b:b5:7a:45:52:44:d2:7b:be:2a:11:17:ed:02:43:
5a:3e:50:cc:c4:25:5f:5f:d2:ce:18:76:bb:2e:52:c6:66:39:
fb:78:ba:82:e4:94:34:87:41:16:5e:31:7a:97:c0:b2:65:75:
65:ae:e2:21:d1:29:f9:42:f6:59:fb:c8:b9:b8:45:6d:1e:89:
b5:c6:8c:95:fc:7f:74:9d:b9:15:36:d2:5d:bf:a3:de:b9:ed:
88:b4:b9:dc:b5:13:cf:cf:ba:c9:60:d4:cc:c1:8c:5a:44:49:
09:ec:d7:de:ff:fc:2c:9a:70:59:4d:2a:41:ef:eb:71:07:29:
cf:18:17:c6:46:bb:22:ea:75:9d:ca:86:16:49:e1:cc:ed:4d:
d3:9b:ba:d7:57:90:e7:1e:6e:42:ab:ef:e2:4c:df:ef:72:03:
af:6c:7c:86:75:eb:78:1d:9d:a1:19:98:6d:d3:7c:14:e8:d6:
8c:7d:26:6f:e2:bc:26:2f:b6:81:a7:25:24:bc:2a:30:98:16:
b4:43:52:ce:2b:42:1d:e5:f4:53:a6:68:c4:f7:9a:74:73:9d:
b8:36:9a:e2:39:6d:73:7a:4e:a8:9f:13:ef:fc:dc:18:07:f5:
7c:43:b1:c0
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIURkNnxM0CivLgh9SWZ3q/m0zPxbQwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE0MTU0MDQ3WhcNMjUxMTE4MjM1OTU5
WjB6MUkwRwYDVQQFE0A4Y2IwY2I1YTkwOGQwMDNkMjFlOGI4MzI2ODFkYjM3NTU1
YTEwMzkxNzhmYWQ3YTk4ZWExNTI2ZDg5YzM1ODQ4MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC57p6/AE0ULwdTjBb/ulAWbgP7ju6QskZ4QYrYoBe8HsUW
LqORNAJ072X6tBGVljcyUHms/8tviqQoluSZo6doXqlMiS886jm5fws/hCtmngpf
/DV3gXRbxOKcWvR+nY6iXvxMConRU90s5EjRRdE05Twa2vSqwUyya6HfcLR2oiVm
sZaWx3U7OzZQ8scL0fAwqaYQ9IWvUa8t/Bzubt58wnuMcK6e67vuhRTLu+hOFw++
QYL6WaFZQIyHo4EiyDkZQzWeD9RKOFf1uj/O4jFcHQR6se4Qjfn5V9IQJaukwBVX
yx6upI1MulN2xafozE7XAEzsXANm4Q45UfStJP+lAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUchonPCh1/3zBrOGHG27+M2nPNGEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzZhZjI5M2VjLWViMmEtNGU3YS05NDBlLWQ1ZDI1MmYwYWY3ZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBACCsP4wDQYJKoZIhvcNAQELBQADggEBAFbN0OL0edRXZmtgUY7YUyLjXUER
44u1ekVSRNJ7vioRF+0CQ1o+UMzEJV9f0s4YdrsuUsZmOft4uoLklDSHQRZeMXqX
wLJldWWu4iHRKflC9ln7yLm4RW0eibXGjJX8f3SduRU20l2/o9657Yi0udy1E8/P
uslg1MzBjFpESQns197//CyacFlNKkHv63EHKc8YF8ZGuyLqdZ3KhhZJ4cztTdOb
utdXkOcebkKr7+JM3+9yA69sfIZ163gdnaEZmG3TfBTo1ox9Jm/ivCYvtoGnJSS8
KjCYFrRDUs4rQh3l9FOmaMT3mnRznbg2muI5bXN6TqifE+/83BgH9XxDscA=
-----END CERTIFICATE-----
Generated at Mon Oct 20 15:20:01 2025 by rpki-client