Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2950804-7ecf-4e52-b51b-6db4cd2e1605.roa
File: a2950804-7ecf-4e52-b51b-6db4cd2e1605.roa (raw, json)
Hash identifier: sN3EI0cDO0qfTb2Ulsb9zgtMF36zny3iA5Z9ikYLM0w=
Subject key identifier: D0:1F:48:1A:18:B5:27:C6:D8:4B:7E:5E:EA:AC:85:58:78:AA:1E:F6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4D34BBAB7FD6F8AF91A2ED90A03A5434C2FA67
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2950804-7ecf-4e52-b51b-6db4cd2e1605.roa
Signing time: Mon 06 Oct 2025 16:22:44 +0000
ROA not before: Mon 06 Oct 2025 16:22:44 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 44.215.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:34:bb:ab:7f:d6:f8:af:91:a2:ed:90:a0:3a:54:34:c2:fa:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 16:22:44 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=f19770135f0d9409fe67f2745b7f5ec688e49ec1f8d499e000c5e235c7666240, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:94:99:5f:a3:05:37:50:79:a4:66:1b:c7:ff:
a5:76:bf:14:a6:6a:3a:c7:44:9e:c2:47:63:25:56:
9e:11:81:f4:b5:ad:dc:62:87:82:22:a9:a5:25:8a:
cc:d1:ff:36:cb:2a:44:6c:0f:06:61:77:d1:5c:60:
49:67:33:fb:5c:67:f9:fc:83:73:5b:5a:04:d4:86:
66:06:e5:a3:d4:b7:4b:d0:a5:78:ab:1d:54:5a:f7:
15:b4:61:a6:40:45:e7:26:57:d3:78:f4:12:c7:a8:
ad:d3:c2:68:6b:ba:ca:fd:54:3b:47:4f:dd:2e:84:
bd:6a:0c:ab:96:5f:39:05:22:3a:e6:ab:f8:b6:0b:
14:c3:33:0b:49:2b:c3:d5:e8:35:aa:e2:08:2e:54:
ee:46:7f:d4:93:28:91:62:82:4d:ef:2d:0e:7b:82:
26:6e:82:e5:20:c0:58:2a:8c:0f:91:de:07:bc:5e:
08:e0:19:56:8a:10:e4:ba:29:e3:f8:07:57:0a:4f:
75:73:fa:9b:c6:b5:9e:8c:59:aa:b2:8d:4a:61:0b:
cc:19:77:a8:b6:e1:cf:97:1d:47:44:b7:3a:b8:65:
76:3c:fc:a2:a5:a8:85:09:17:02:72:f0:7e:63:9c:
c9:f3:63:b6:29:86:38:a6:00:ee:9b:18:17:b5:b8:
df:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1F:48:1A:18:B5:27:C6:D8:4B:7E:5E:EA:AC:85:58:78:AA:1E:F6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2950804-7ecf-4e52-b51b-6db4cd2e1605.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
44.215.116.0/22
Signature Algorithm: sha256WithRSAEncryption
24:a7:c9:e2:ab:33:ce:33:7e:12:7f:35:5f:ce:f5:fb:b5:0d:
93:8c:0a:2b:e1:0c:ed:4d:24:e1:a8:bd:71:38:9f:49:d2:d1:
dc:5f:26:5b:98:3c:b3:2a:8d:c0:f8:46:af:9b:a2:fb:49:fe:
ec:ee:74:23:a7:7c:4a:29:97:4d:6b:71:1a:16:59:73:86:29:
3f:26:72:a6:dd:7c:e8:92:ed:da:29:05:83:1a:c3:26:9a:c0:
7c:52:80:26:3a:fb:24:e3:50:52:36:9d:27:d4:51:f1:a5:63:
00:cb:3b:eb:2b:0f:5b:77:62:94:2e:04:ed:72:34:60:cd:ed:
31:93:af:d5:8f:68:c5:0f:06:a1:d0:fa:23:f3:d2:b8:b9:51:
c6:2d:e8:b9:74:21:69:b0:7a:51:69:e2:3d:5e:3a:58:4d:eb:
52:8f:ea:90:fd:28:ef:7b:e8:16:5c:51:77:e0:ae:61:eb:72:
31:09:60:1e:e9:e9:35:63:eb:ba:87:5a:8e:79:39:5b:02:93:
ab:17:c3:84:6a:28:11:ce:69:cc:aa:f2:48:ad:75:70:4e:5b:
7f:8b:00:0b:9c:ed:84:79:cf:8b:c0:f2:25:3b:4e:9d:c0:70:
a4:2a:87:9d:b2:4a:b6:7a:71:c0:6e:24:47:cf:d5:19:af:c6:
95:4b:84:69
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgITTTS7q3/W+K+Rou2QoDpUNML6ZzANBgkqhkiG9w0BAQsF
ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz
NzEwN2RiZThjYjcxZDBhNzAeFw0yNTEwMDYxNjIyNDRaFw0yNTExMTAyMzU5NTla
MHoxSTBHBgNVBAUTQGYxOTc3MDEzNWYwZDk0MDlmZTY3ZjI3NDViN2Y1ZWM2ODhl
NDllYzFmOGQ0OTllMDAwYzVlMjM1Yzc2NjYyNDAxLTArBgNVBAMTJGIyNWM5NzBm
LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOuUmV+jBTdQeaRmG8f/pXa/FKZqOsdEnsJHYyVWnhGB9LWt
3GKHgiKppSWKzNH/NssqRGwPBmF30VxgSWcz+1xn+fyDc1taBNSGZgblo9S3S9Cl
eKsdVFr3FbRhpkBF5yZX03j0EseordPCaGu6yv1UO0dP3S6EvWoMq5ZfOQUiOuar
+LYLFMMzC0krw9XoNariCC5U7kZ/1JMokWKCTe8tDnuCJm6C5SDAWCqMD5HeB7xe
COAZVooQ5Lop4/gHVwpPdXP6m8a1noxZqrKNSmELzBl3qLbhz5cdR0S3Orhldjz8
oqWohQkXAnLwfmOcyfNjtimGOKYA7psYF7W439UCAwEAAaOCArEwggKtMB0GA1Ud
DgQWBBTQH0gaGLUnxthLfl7qrIVYeKoe9jAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd
vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg
BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy
aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv
MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk
YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx
OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR
MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy
NWMwNDI5NDIvYTI5NTA4MDQtN2VjZi00ZTUyLWI1MWItNmRiNGNkMmUxNjA1LnJv
YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0
LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt
MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAizXdDANBgkqhkiG9w0BAQsFAAOCAQEAJKfJ4qszzjN+En81X871+7UNk4wK
K+EM7U0k4ai9cTifSdLR3F8mW5g8syqNwPhGr5ui+0n+7O50I6d8SimXTWtxGhZZ
c4YpPyZypt186JLt2ikFgxrDJprAfFKAJjr7JONQUjadJ9RR8aVjAMs76ysPW3di
lC4E7XI0YM3tMZOv1Y9oxQ8GodD6I/PSuLlRxi3ouXQhabB6UWniPV46WE3rUo/q
kP0o73voFlxRd+CuYetyMQlgHunpNWPruodajnk5WwKTqxfDhGooEc5pzKrySK11
cE5bf4sAC5zthHnPi8DyJTtOncBwpCqHnbJKtnpxwG4kR8/VGa/GlUuEaQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:02:58 2025 by rpki-client