Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c63f18f7-d413-4afe-9c07-2b751a4ea3e7.roa
File: c63f18f7-d413-4afe-9c07-2b751a4ea3e7.roa (raw, json)
Hash identifier: wU0pjJC2qceaEnDTJpTbP9kMxfoWbMChQv50UrVpEKc=
Subject key identifier: 86:1C:33:9A:A6:3C:77:94:9C:D9:2F:92:A5:42:2E:9B:79:F6:BB:8F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 500F2414D3C0A42920572C3347AE0E81EFE88725
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c63f18f7-d413-4afe-9c07-2b751a4ea3e7.roa
Signing time: Sat 11 Oct 2025 00:22:02 +0000
ROA not before: Sat 11 Oct 2025 00:22:02 +0000
ROA not after: Sat 15 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 194.162.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:0f:24:14:d3:c0:a4:29:20:57:2c:33:47:ae:0e:81:ef:e8:87:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 11 00:22:02 2025 GMT
Not After : Nov 15 23:59:59 2025 GMT
Subject: serialNumber=3e2ef4dbb629a342a603aa9690e64506ca08875364771ed192a66bca3803de8d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:64:3a:25:bd:06:19:44:75:65:e4:fe:b4:8f:
e4:e8:9d:92:d0:34:8d:95:aa:35:90:fb:4f:81:06:
c4:ff:86:c7:ac:06:b7:61:4d:1a:70:8f:4f:df:fa:
c0:84:df:bc:c5:79:d7:dd:dc:bc:8c:b1:f8:9d:da:
b0:5f:dd:b2:b5:08:4b:0b:4e:a3:66:cc:9f:80:8b:
88:e2:fb:35:07:21:c7:12:b3:29:f1:f7:1a:be:c0:
00:b9:52:ee:ce:71:49:af:29:37:d1:20:52:ed:89:
c0:9e:0f:c8:8a:dd:65:d7:1c:bc:30:f3:12:3c:04:
c1:e8:e1:dd:71:60:52:3a:6c:cb:6a:e9:dc:a2:53:
8a:1f:1c:ec:b3:02:ee:01:b2:5d:f2:20:a1:7e:32:
c8:1e:c9:76:21:92:12:8f:21:a5:7f:52:7e:e9:f0:
5b:b0:22:10:82:3d:77:a6:ef:ea:9a:42:35:7f:ff:
ad:3e:49:17:58:49:26:5a:d7:a5:c8:7a:ff:b4:80:
f6:ef:9d:5a:5f:32:c6:53:5c:8e:46:de:de:2b:b6:
b5:55:3f:e2:f9:ba:2d:1a:86:0f:c8:2d:53:5c:32:
bd:bc:96:a3:df:04:a5:91:c0:8d:a2:6f:6e:c4:c2:
24:33:4c:cb:ef:e5:8d:82:21:d6:f0:9d:4a:1a:0e:
4c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:1C:33:9A:A6:3C:77:94:9C:D9:2F:92:A5:42:2E:9B:79:F6:BB:8F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c63f18f7-d413-4afe-9c07-2b751a4ea3e7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.162.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a7:49:6c:0d:65:b1:2b:a4:30:07:1c:1c:17:d3:3d:d9:4f:d8:
a3:c6:1e:0f:27:2f:8d:42:bd:bf:5d:7d:3d:82:9e:4f:91:60:
95:3d:43:06:1b:a4:91:31:74:cf:e3:b9:4b:5d:79:46:19:25:
95:79:d7:62:46:73:3b:44:84:56:68:eb:bb:97:eb:3b:03:da:
9d:24:1f:e4:a7:fa:36:c2:32:e9:7b:df:aa:0a:a0:d9:5a:0f:
06:a9:73:b3:10:58:2d:7e:3a:24:c4:ef:dd:f5:db:77:30:44:
43:82:c5:3f:ba:6d:5b:b3:2d:d6:a3:2c:ab:5a:4a:6e:54:ce:
2c:e1:04:b2:dc:30:e5:09:02:af:34:b4:c2:ac:23:fa:6a:d9:
fc:2e:3c:73:e5:6b:d0:a4:c4:c5:31:a5:87:29:e6:d8:34:49:
fe:9d:b7:07:87:f5:5e:87:3b:65:b0:ab:bd:37:fe:59:fa:ee:
de:27:85:54:94:52:25:44:54:8f:5f:6f:99:aa:cb:be:e9:7f:
ba:47:9f:78:7b:9d:61:c7:f3:38:cf:25:25:6d:09:b6:2e:73:
ae:4f:58:67:f9:fe:4c:d4:27:d6:79:a2:73:ae:a2:85:00:23:
0b:7d:ac:01:93:0f:65:27:7b:86:69:6d:21:12:a7:b1:41:aa:
36:f8:9c:45
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUUA8kFNPApCkgVywzR64Oge/ohyUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDExMDAyMjAyWhcNMjUxMTE1MjM1OTU5
WjB6MUkwRwYDVQQFE0AzZTJlZjRkYmI2MjlhMzQyYTYwM2FhOTY5MGU2NDUwNmNh
MDg4NzUzNjQ3NzFlZDE5MmE2NmJjYTM4MDNkZThkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCmZDolvQYZRHVl5P60j+TonZLQNI2VqjWQ+0+BBsT/hses
BrdhTRpwj0/f+sCE37zFedfd3LyMsfid2rBf3bK1CEsLTqNmzJ+Ai4ji+zUHIccS
synx9xq+wAC5Uu7OcUmvKTfRIFLticCeD8iK3WXXHLww8xI8BMHo4d1xYFI6bMtq
6dyiU4ofHOyzAu4Bsl3yIKF+MsgeyXYhkhKPIaV/Un7p8FuwIhCCPXem7+qaQjV/
/60+SRdYSSZa16XIev+0gPbvnVpfMsZTXI5G3t4rtrVVP+L5ui0ahg/ILVNcMr28
lqPfBKWRwI2ib27EwiQzTMvv5Y2CIdbwnUoaDkxfAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUhhwzmqY8d5Sc2S+SpUIum3n2u48wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2M2M2YxOGY3LWQ0MTMtNGFmZS05YzA3LTJiNzUxYTRlYTNlNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwDCojANBgkqhkiG9w0BAQsFAAOCAQEAp0lsDWWxK6QwBxwcF9M92U/Yo8Ye
DycvjUK9v119PYKeT5FglT1DBhukkTF0z+O5S115RhkllXnXYkZzO0SEVmjru5fr
OwPanSQf5Kf6NsIy6Xvfqgqg2VoPBqlzsxBYLX46JMTv3fXbdzBEQ4LFP7ptW7Mt
1qMsq1pKblTOLOEEstww5QkCrzS0wqwj+mrZ/C48c+Vr0KTExTGlhynm2DRJ/p23
B4f1Xoc7ZbCrvTf+Wfru3ieFVJRSJURUj19vmarLvul/ukefeHudYcfzOM8lJW0J
ti5zrk9YZ/n+TNQn1nmic66ihQAjC32sAZMPZSd7hmltIRKnsUGqNvicRQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:08:21 2025 by rpki-client