Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a677dc2c-8382-4694-9424-d567d3904503.roa
File: a677dc2c-8382-4694-9424-d567d3904503.roa (raw, json)
Hash identifier: h/EWH3QHBBSu8p+V2C/1YbMJq7rWZ4uzrIRj6w3/Ofw=
Subject key identifier: A3:81:D9:27:12:51:84:A6:EA:73:A2:34:3F:F2:48:06:53:B4:E6:40
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2DA9B07D7E6790E95E870AEC5EC7570212F755C9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a677dc2c-8382-4694-9424-d567d3904503.roa
Signing time: Fri 17 Oct 2025 20:10:20 +0000
ROA not before: Fri 17 Oct 2025 20:10:20 +0000
ROA not after: Fri 21 Nov 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:1ff2:20c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:a9:b0:7d:7e:67:90:e9:5e:87:0a:ec:5e:c7:57:02:12:f7:55:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 17 20:10:20 2025 GMT
Not After : Nov 21 23:59:59 2025 GMT
Subject: serialNumber=1fc8009a78d53f1174b7717b20fa73dca33d875bd22a0df4645c4fd35f851d36, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bb:32:cf:6e:9d:32:42:60:4c:36:e9:f4:87:
3a:98:37:05:5a:98:53:1f:87:5e:da:4e:54:ef:45:
e8:81:38:a5:b1:c8:0d:c0:25:29:e1:7d:f9:dd:ca:
e8:37:c1:0f:12:ef:93:be:d9:74:2b:a6:a7:97:91:
36:8e:21:ff:b5:7b:f5:f9:42:69:d0:99:ff:ee:4c:
a1:99:67:d8:eb:c5:2f:06:bf:3d:ff:44:ce:41:4c:
e9:16:49:44:c2:04:bb:66:3d:15:a1:b8:2d:cb:5c:
0d:0b:dc:14:d5:d9:3d:9a:a9:58:81:a7:bf:f5:aa:
e8:51:9d:d9:9c:76:f7:d9:ea:e9:69:48:20:bb:24:
28:61:51:72:b0:0e:73:84:71:33:dd:73:ec:f6:04:
8d:de:68:6d:0d:19:d7:c2:a7:39:fc:e5:54:53:80:
54:83:58:6b:56:96:33:dd:0d:c3:2f:13:f2:1a:e4:
4b:d8:22:f3:70:f7:39:12:e5:b6:f9:b1:25:45:76:
86:46:20:17:25:32:bd:e1:80:4e:62:f8:c3:44:8d:
06:86:f5:f0:2b:3b:17:a4:d7:a4:a2:db:85:b5:58:
e1:60:1c:8b:e7:7e:eb:12:34:f8:3e:bc:90:7f:c5:
af:a9:fc:b8:bb:42:0d:aa:d1:3c:7d:0a:97:30:67:
d7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:81:D9:27:12:51:84:A6:EA:73:A2:34:3F:F2:48:06:53:B4:E6:40
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a677dc2c-8382-4694-9424-d567d3904503.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff2:20c0::/48
Signature Algorithm: sha256WithRSAEncryption
4f:eb:8f:07:77:1b:6e:67:d4:06:ea:73:84:d6:cb:76:83:d8:
27:31:ad:9c:a4:04:ee:4f:e9:a1:f7:82:2b:47:9f:90:25:94:
1a:e7:f0:7a:8c:b2:d0:1a:03:68:a6:ac:91:55:77:84:fb:3a:
4f:4d:2a:46:46:07:2a:95:00:ec:f8:32:42:2c:a3:30:53:f9:
33:d6:fc:bd:90:9a:e3:60:2b:3c:e1:04:61:9d:08:19:83:6b:
2c:53:3a:3f:3f:54:ee:3f:f8:74:fa:6d:56:0f:8b:f1:87:44:
84:70:25:76:29:2b:5c:90:7a:c2:b5:91:e1:04:d9:b8:1b:26:
95:38:e4:ad:dd:77:94:20:1b:4f:b8:1b:6e:19:43:87:be:ab:
aa:fc:8e:8e:68:58:9d:42:5a:01:e4:dd:73:a6:17:f5:89:60:
eb:bf:e7:8b:c5:51:41:40:24:82:73:3c:23:f5:df:57:94:27:
41:f5:7f:7e:c4:a6:60:b4:e7:a9:d2:da:f0:01:18:12:4f:b7:
2b:fd:aa:49:31:f1:d0:ad:8e:ef:32:97:4e:15:27:a8:e0:77:
51:f8:bc:ca:23:eb:30:8d:0c:c5:a0:64:1e:b1:20:71:4d:73:
dd:3c:a0:c3:5f:9a:ec:d8:58:8d:d7:57:86:f3:10:67:ad:09:
af:c7:97:cc
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIULamwfX5nkOlehwrsXsdXAhL3VckwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE3MjAxMDIwWhcNMjUxMTIxMjM1OTU5
WjB6MUkwRwYDVQQFE0AxZmM4MDA5YTc4ZDUzZjExNzRiNzcxN2IyMGZhNzNkY2Ez
M2Q4NzViZDIyYTBkZjQ2NDVjNGZkMzVmODUxZDM2MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCxuzLPbp0yQmBMNun0hzqYNwVamFMfh17aTlTvReiBOKWx
yA3AJSnhffndyug3wQ8S75O+2XQrpqeXkTaOIf+1e/X5QmnQmf/uTKGZZ9jrxS8G
vz3/RM5BTOkWSUTCBLtmPRWhuC3LXA0L3BTV2T2aqViBp7/1quhRndmcdvfZ6ulp
SCC7JChhUXKwDnOEcTPdc+z2BI3eaG0NGdfCpzn85VRTgFSDWGtWljPdDcMvE/Ia
5EvYIvNw9zkS5bb5sSVFdoZGIBclMr3hgE5i+MNEjQaG9fArOxek16Si24W1WOFg
HIvnfusSNPg+vJB/xa+p/Li7Qg2q0Tx9CpcwZ9cRAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUo4HZJxJRhKbqc6I0P/JIBlO05kAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2E2NzdkYzJjLTgzODItNDY5NC05NDI0LWQ1NjdkMzkwNDUwMy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmAB/yIMAwDQYJKoZIhvcNAQELBQADggEBAE/rjwd3G25n1Abqc4TWy3aD
2CcxrZykBO5P6aH3gitHn5AllBrn8HqMstAaA2imrJFVd4T7Ok9NKkZGByqVAOz4
MkIsozBT+TPW/L2QmuNgKzzhBGGdCBmDayxTOj8/VO4/+HT6bVYPi/GHRIRwJXYp
K1yQesK1keEE2bgbJpU45K3dd5QgG0+4G24ZQ4e+q6r8jo5oWJ1CWgHk3XOmF/WJ
YOu/54vFUUFAJIJzPCP131eUJ0H1f37EpmC056nS2vABGBJPtyv9qkkx8dCtju8y
l04VJ6jgd1H4vMoj6zCNDMWgZB6xIHFNc908oMNfmuzYWI3XV4bzEGetCa/Hl8w=
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:26:51 2025 by rpki-client