Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfc08743-2323-4aed-863a-ee45f418d7ec.roa
File: bfc08743-2323-4aed-863a-ee45f418d7ec.roa (raw, json)
Hash identifier: nalctiOzWpNkPWKEXzkD8jV2Z+f8wKQriIlZ/jS+bTc=
Subject key identifier: 45:48:6F:88:58:E5:3D:B2:18:6F:FE:74:4A:72:FB:0F:C0:33:35:C2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0743D33F1E75762816B5D979E4EAFB0625CC3ABB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfc08743-2323-4aed-863a-ee45f418d7ec.roa
Signing time: Mon 20 Oct 2025 01:31:10 +0000
ROA not before: Mon 20 Oct 2025 01:31:10 +0000
ROA not after: Mon 24 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.159.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:43:d3:3f:1e:75:76:28:16:b5:d9:79:e4:ea:fb:06:25:cc:3a:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 20 01:31:10 2025 GMT
Not After : Nov 24 23:59:59 2025 GMT
Subject: serialNumber=e13e6eba9421a2f5ce26ec5a231a6a11cbe4e55b0f01cac2e97436343048b8be, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f2:6d:95:02:9b:0d:8f:8d:f5:73:ab:a5:a2:
d4:9d:8b:3c:2b:60:07:07:5b:21:25:ee:f8:60:f8:
1e:6a:ee:55:da:2e:d1:98:9f:57:83:59:36:c2:52:
19:49:21:a6:1f:a9:e1:b7:87:61:0c:f7:f5:84:e1:
0e:8a:fa:27:08:63:50:a1:c7:17:76:5f:5d:8f:40:
7e:bd:71:b1:07:f1:d1:91:4c:8f:e4:c8:8e:a6:ef:
6f:a3:8f:41:ab:65:93:46:0a:c2:41:8e:a2:35:91:
86:0e:7d:e5:a5:22:6d:ea:9b:08:96:0c:e6:7d:81:
74:d3:ad:33:78:58:f5:bb:e4:3e:ef:e2:66:ec:71:
d1:f9:2a:d1:2f:6d:82:11:14:ec:86:6c:77:b2:68:
58:de:42:0b:27:03:d3:4d:de:d7:e5:81:7a:cc:ae:
1a:ca:26:02:aa:29:df:1f:a3:3c:31:ed:66:ee:c6:
8f:ac:8b:e9:a0:c1:3f:1c:6d:bb:f6:38:e2:7d:ce:
77:9a:d8:84:95:25:f4:2b:2e:38:a3:1b:e4:e5:a5:
aa:04:89:31:c4:16:01:23:f9:cd:78:a6:89:9a:55:
0b:45:66:14:41:b0:09:f4:50:64:9e:16:fc:73:68:
b3:be:7a:14:85:42:ce:2d:f9:d3:ca:5d:c0:9e:db:
46:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:48:6F:88:58:E5:3D:B2:18:6F:FE:74:4A:72:FB:0F:C0:33:35:C2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfc08743-2323-4aed-863a-ee45f418d7ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.159.248.0/24
Signature Algorithm: sha256WithRSAEncryption
95:07:62:e0:ce:da:75:1f:2a:89:7f:6e:48:59:6a:31:d5:05:
b7:73:a5:ab:a2:96:79:6b:93:74:dc:a4:09:52:b9:02:5f:00:
9e:60:4a:2f:4c:20:ae:30:be:ad:a2:4e:df:07:67:6a:9f:70:
37:1a:ab:24:2c:2a:a7:50:ab:3b:c2:06:0d:ef:c4:cd:5c:83:
6d:10:7c:09:18:d6:d4:5f:08:61:ea:f1:e8:45:53:3c:8b:97:
b5:32:cc:28:08:ae:ca:51:67:d4:2d:3a:b8:f0:30:c0:46:2c:
27:98:65:91:34:9b:b3:c1:c7:74:05:12:eb:64:f8:e6:76:25:
75:88:ce:cf:95:a9:da:ee:49:24:43:b7:41:bc:96:fa:b0:f1:
22:c6:0b:84:41:b1:f2:01:aa:be:e6:65:08:59:6f:3e:49:d3:
0b:3b:c2:6d:ae:e3:29:92:27:09:6b:01:06:28:03:13:7c:29:
65:c0:a9:c4:54:6b:e5:9a:8a:36:9f:1c:e6:a3:be:36:d4:8f:
6d:f3:9d:86:da:9f:82:f5:72:6a:19:af:e5:ce:f3:13:2c:a8:
02:0c:42:eb:06:fc:0b:dc:f0:db:a4:f3:05:6a:3b:90:90:df:
d2:c0:5a:5c:66:0f:b4:62:0d:8f:1e:b6:31:f9:db:66:31:a3:
2f:01:fb:1a
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUB0PTPx51digWtdl55Or7BiXMOrswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDIwMDEzMTEwWhcNMjUxMTI0MjM1OTU5
WjB6MUkwRwYDVQQFE0BlMTNlNmViYTk0MjFhMmY1Y2UyNmVjNWEyMzFhNmExMWNi
ZTRlNTViMGYwMWNhYzJlOTc0MzYzNDMwNDhiOGJlMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCb8m2VApsNj431c6ulotSdizwrYAcHWyEl7vhg+B5q7lXa
LtGYn1eDWTbCUhlJIaYfqeG3h2EM9/WE4Q6K+icIY1Chxxd2X12PQH69cbEH8dGR
TI/kyI6m72+jj0GrZZNGCsJBjqI1kYYOfeWlIm3qmwiWDOZ9gXTTrTN4WPW75D7v
4mbscdH5KtEvbYIRFOyGbHeyaFjeQgsnA9NN3tflgXrMrhrKJgKqKd8fozwx7Wbu
xo+si+mgwT8cbbv2OOJ9znea2ISVJfQrLjijG+TlpaoEiTHEFgEj+c14pomaVQtF
ZhRBsAn0UGSeFvxzaLO+ehSFQs4t+dPKXcCe20a/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQURUhviFjlPbIYb/50SnL7D8AzNcIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2JmYzA4NzQzLTIzMjMtNGFlZC04NjNhLWVlNDVmNDE4ZDdlYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABsn/gwDQYJKoZIhvcNAQELBQADggEBAJUHYuDO2nUfKol/bkhZajHVBbdz
pauilnlrk3TcpAlSuQJfAJ5gSi9MIK4wvq2iTt8HZ2qfcDcaqyQsKqdQqzvCBg3v
xM1cg20QfAkY1tRfCGHq8ehFUzyLl7UyzCgIrspRZ9QtOrjwMMBGLCeYZZE0m7PB
x3QFEutk+OZ2JXWIzs+VqdruSSRDt0G8lvqw8SLGC4RBsfIBqr7mZQhZbz5J0ws7
wm2u4ymSJwlrAQYoAxN8KWXAqcRUa+WaijafHOajvjbUj23znYban4L1cmoZr+XO
8xMsqAIMQusG/Avc8Nuk8wVqO5CQ39LAWlxmD7RiDY8etjH522Yxoy8B+xo=
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:11:07 2025 by rpki-client