Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa
File: c416f57a-9b38-4d7e-8240-20535a4882a8.roa (raw, json)
Hash identifier: 9q0s5jCINMA+GurYyU8a45OtKOVlScTWkgQmVu9YHaY=
Subject key identifier: 61:7D:59:3E:BD:15:D5:1C:1A:DC:89:A2:41:3C:9C:E0:90:EE:4F:B7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2B19967CD32514DF5C37F900DAEA62252619BBBD
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa
Signing time: Wed 08 Oct 2025 00:01:15 +0000
ROA not before: Wed 08 Oct 2025 00:01:15 +0000
ROA not after: Wed 12 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 104.223.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:19:96:7c:d3:25:14:df:5c:37:f9:00:da:ea:62:25:26:19:bb:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 8 00:01:15 2025 GMT
Not After : Nov 12 23:59:59 2025 GMT
Subject: serialNumber=81883416bad5cb601ba6fca7ce0aedb23224f0966e42d14de6df817ef9329a1b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:78:ab:28:16:8a:ea:f3:c1:ee:70:7a:b4:09:
9c:fa:4d:c7:1c:5b:52:f7:25:ee:a7:74:fa:24:5d:
16:03:9a:9b:ff:df:6c:3d:48:3d:72:1e:66:0c:3a:
cc:a2:8e:24:a7:ef:77:e1:d8:70:e1:6e:35:56:0b:
d1:4c:9e:d2:82:f7:c0:d6:55:31:e7:8c:ed:4f:38:
c9:d5:9a:3b:87:67:f6:8f:09:6d:f0:9f:d4:da:30:
3f:2d:d9:5a:85:26:a9:9f:ab:3a:f5:fe:92:4c:76:
94:3e:ae:2b:c7:d1:a7:2e:44:17:66:2f:16:5e:39:
22:86:23:5d:5e:6f:fe:95:32:99:11:bc:d3:05:af:
24:58:d5:67:89:e2:5c:c3:07:19:3a:c5:55:0c:25:
48:46:f3:9d:70:ba:98:96:b5:a6:ce:26:fb:a5:7d:
66:88:b6:ed:1b:0e:a7:da:19:a5:57:b9:ef:3d:ba:
5d:a0:e0:33:39:63:fa:eb:9b:45:82:c7:5b:49:32:
99:fe:55:6b:d7:18:d2:53:6f:42:fb:55:69:0f:b5:
19:4f:97:77:da:49:97:f9:b6:ab:40:b2:db:30:bd:
42:6b:05:fe:de:0f:74:72:3d:14:19:31:91:b2:8b:
32:b4:45:2f:9a:22:60:83:f0:f7:3e:7a:de:ce:79:
2f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7D:59:3E:BD:15:D5:1C:1A:DC:89:A2:41:3C:9C:E0:90:EE:4F:B7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.223.128.0/17
Signature Algorithm: sha256WithRSAEncryption
bf:f5:d8:f9:a0:ce:c0:42:f8:f8:bd:c8:e2:31:d2:dd:26:88:
d1:07:36:b3:81:03:ef:42:44:ea:e8:59:f0:a5:28:ad:a6:e0:
94:6f:4c:ea:37:9e:e3:19:83:5b:ad:64:75:f7:d0:5a:13:14:
00:2c:ac:f6:9e:ce:51:ac:d8:91:a3:0c:e6:a9:07:69:3c:f7:
ea:4f:4b:ad:04:fe:36:cd:97:3e:36:b2:a6:fd:5a:da:66:ab:
69:be:26:38:3b:d3:e1:70:d7:7a:2b:f5:fc:4e:9b:e0:45:41:
7f:18:28:61:03:1b:63:59:a9:3b:51:ce:fa:37:df:08:77:5d:
6d:57:ed:60:e5:fc:e8:60:06:06:59:46:98:3e:2c:8d:1a:a2:
38:f6:b6:cc:81:9f:f4:ad:19:a7:fb:ea:d7:22:9b:ab:3a:c7:
88:d3:b1:e1:54:51:c0:48:73:11:88:63:3d:5e:87:c4:65:30:
ad:47:7d:e8:fa:48:2a:3e:33:2c:73:c5:76:a3:ad:e6:c2:40:
48:c9:b6:5e:79:e9:d6:6e:10:98:13:d9:73:14:fe:e2:1a:0d:
e5:bc:a8:96:a0:97:c2:34:1a:0d:4a:2b:24:84:9e:c2:e5:93:
67:16:f2:8a:78:4e:a8:bf:72:0e:bf:03:87:fa:e0:33:0c:37:
c9:a8:f1:71
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUKxmWfNMlFN9cN/kA2upiJSYZu70wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA4MDAwMTE1WhcNMjUxMTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0A4MTg4MzQxNmJhZDVjYjYwMWJhNmZjYTdjZTBhZWRiMjMy
MjRmMDk2NmU0MmQxNGRlNmRmODE3ZWY5MzI5YTFiMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDJeKsoForq88HucHq0CZz6TcccW1L3Je6ndPokXRYDmpv/
32w9SD1yHmYMOsyijiSn73fh2HDhbjVWC9FMntKC98DWVTHnjO1POMnVmjuHZ/aP
CW3wn9TaMD8t2VqFJqmfqzr1/pJMdpQ+rivH0acuRBdmLxZeOSKGI11eb/6VMpkR
vNMFryRY1WeJ4lzDBxk6xVUMJUhG851wupiWtabOJvulfWaItu0bDqfaGaVXue89
ul2g4DM5Y/rrm0WCx1tJMpn+VWvXGNJTb0L7VWkPtRlPl3faSZf5tqtAstswvUJr
Bf7eD3RyPRQZMZGyizK0RS+aImCD8Pc+et7OeS9XAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUYX1ZPr0V1Rwa3ImiQTyc4JDuT7cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2M0MTZmNTdhLTliMzgtNGQ3ZS04MjQwLTIwNTM1YTQ4ODJhOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAdo34AwDQYJKoZIhvcNAQELBQADggEBAL/12PmgzsBC+Pi9yOIx0t0miNEH
NrOBA+9CROroWfClKK2m4JRvTOo3nuMZg1utZHX30FoTFAAsrPaezlGs2JGjDOap
B2k89+pPS60E/jbNlz42sqb9Wtpmq2m+Jjg70+Fw13or9fxOm+BFQX8YKGEDG2NZ
qTtRzvo33wh3XW1X7WDl/OhgBgZZRpg+LI0aojj2tsyBn/StGaf76tcim6s6x4jT
seFUUcBIcxGIYz1eh8RlMK1Hfej6SCo+MyxzxXajrebCQEjJtl556dZuEJgT2XMU
/uIaDeW8qJagl8I0Gg1KKySEnsLlk2cW8op4Tqi/cg6/A4f64DMMN8mo8XE=
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:24:17 2025 by rpki-client