Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d104fd63-0654-487e-8509-e63eb901bcd4.roa
File: d104fd63-0654-487e-8509-e63eb901bcd4.roa (raw, json)
Hash identifier: uhWC/Vx384sB11DhFFLWasd1WoN3qPGzZh2Czn07MCs=
Subject key identifier: 6D:B2:FC:DA:B6:C0:76:3E:07:09:69:B6:A8:A5:10:15:72:EB:CA:0E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4B1BD403A3C6CDD8294D64A6D78EF94EA89A9383
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d104fd63-0654-487e-8509-e63eb901bcd4.roa
Signing time: Tue 07 Oct 2025 00:52:40 +0000
ROA not before: Tue 07 Oct 2025 00:52:40 +0000
ROA not after: Tue 11 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.16.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:1b:d4:03:a3:c6:cd:d8:29:4d:64:a6:d7:8e:f9:4e:a8:9a:93:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 7 00:52:40 2025 GMT
Not After : Nov 11 23:59:59 2025 GMT
Subject: serialNumber=f333b70d3220f0df5056c941976e68c7c4739047c62236602813443bdd313c9d, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:fe:8f:d9:dd:28:f2:56:1f:74:d9:23:b9:
0a:8c:dd:66:1b:b8:8b:da:80:3a:17:f3:59:00:70:
55:44:c6:75:ec:66:e8:c9:39:6b:22:10:af:02:c8:
a4:3a:cc:4a:f6:73:89:04:fc:93:7b:0c:af:fd:4e:
f6:47:6e:a5:17:89:cd:e8:42:49:68:78:ad:66:64:
fc:0f:f8:56:01:3f:f6:7e:5b:86:75:3b:0a:c1:92:
4e:0c:3d:44:9b:6b:62:d6:29:4e:a2:49:de:6d:b9:
f8:c9:f0:fa:b9:5e:1c:78:60:6a:2c:7c:20:13:81:
56:80:a5:07:b7:eb:b3:25:0e:75:10:41:73:bf:db:
bd:67:7f:a9:ae:ed:83:c4:9a:1c:61:f5:91:d0:b4:
1c:bd:d0:c2:0d:ea:d7:74:38:e0:e9:72:c6:89:35:
1d:97:f1:a2:eb:b2:00:c5:fc:5a:7e:31:45:ab:0e:
5b:af:3a:72:64:ee:ef:a9:91:24:80:ac:d5:ee:a8:
a5:3f:88:b7:66:c2:e8:eb:0c:89:5f:2c:77:d9:7e:
cb:fb:5e:d2:34:f0:e6:84:67:a7:f2:a8:76:33:0e:
46:0e:fc:f9:db:c3:4d:b3:ed:f0:20:4c:9a:b2:c4:
a2:e8:41:6b:a8:cb:14:5a:8d:9d:66:c4:9a:67:b9:
72:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B2:FC:DA:B6:C0:76:3E:07:09:69:B6:A8:A5:10:15:72:EB:CA:0E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d104fd63-0654-487e-8509-e63eb901bcd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.16.0.0/17
Signature Algorithm: sha256WithRSAEncryption
c0:8b:d2:70:2f:c7:16:7a:37:9e:89:97:a8:92:58:d0:d6:1c:
c1:6a:bd:d7:74:e5:9e:3e:2b:12:dc:f6:17:6f:7a:7c:e6:a5:
b9:97:a9:58:d8:1c:2e:ae:94:26:ef:40:fb:a2:38:07:2c:5c:
58:41:60:57:d3:37:71:f5:ae:56:3a:99:30:01:59:be:c4:a0:
3a:0e:5a:dc:4c:81:4d:4c:7d:ef:29:b2:95:d0:85:5d:35:c3:
00:48:5a:fb:90:b1:58:a1:57:95:24:fa:5a:ac:ae:01:e3:fd:
62:68:87:5a:1d:dd:35:30:93:f8:af:00:ea:d2:a6:40:c8:59:
c8:6c:67:62:33:00:d6:d2:90:e9:7d:84:2a:57:15:9f:60:e7:
63:f4:e1:9d:00:ef:b8:ea:fc:d0:8a:9e:20:37:33:3b:5a:d5:
31:6d:4a:c6:cc:a2:87:a3:c1:e8:a0:a5:d0:9d:fc:06:99:fd:
5f:ba:04:5d:2c:ae:44:24:c3:dd:b0:ac:ae:18:4b:a6:b4:20:
2b:c9:c8:b8:43:0c:55:3e:52:41:d7:c1:a7:ea:83:00:0a:66:
f5:10:07:f8:0e:db:f3:c5:cd:05:f1:88:db:cb:d8:f9:14:79:
be:fa:fb:34:1e:a6:60:69:a2:32:4e:e5:cb:f7:07:13:82:06:
b0:7e:e8:1d
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUSxvUA6PGzdgpTWSm1475Tqiak4MwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA3MDA1MjQwWhcNMjUxMTExMjM1OTU5
WjB6MUkwRwYDVQQFE0BmMzMzYjcwZDMyMjBmMGRmNTA1NmM5NDE5NzZlNjhjN2M0
NzM5MDQ3YzYyMjM2NjAyODEzNDQzYmRkMzEzYzlkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCo2P6P2d0o8lYfdNkjuQqM3WYbuIvagDoX81kAcFVExnXs
ZujJOWsiEK8CyKQ6zEr2c4kE/JN7DK/9TvZHbqUXic3oQkloeK1mZPwP+FYBP/Z+
W4Z1OwrBkk4MPUSba2LWKU6iSd5tufjJ8Pq5Xhx4YGosfCATgVaApQe367MlDnUQ
QXO/271nf6mu7YPEmhxh9ZHQtBy90MIN6td0OODpcsaJNR2X8aLrsgDF/Fp+MUWr
DluvOnJk7u+pkSSArNXuqKU/iLdmwujrDIlfLHfZfsv7XtI08OaEZ6fyqHYzDkYO
/Pnbw02z7fAgTJqyxKLoQWuoyxRajZ1mxJpnuXInAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUbbL82rbAdj4HCWm2qKUQFXLryg4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2QxMDRmZDYzLTA2NTQtNDg3ZS04NTA5LWU2M2ViOTAxYmNkNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAcyEAAwDQYJKoZIhvcNAQELBQADggEBAMCL0nAvxxZ6N56Jl6iSWNDWHMFq
vdd05Z4+KxLc9hdvenzmpbmXqVjYHC6ulCbvQPuiOAcsXFhBYFfTN3H1rlY6mTAB
Wb7EoDoOWtxMgU1Mfe8pspXQhV01wwBIWvuQsVihV5Uk+lqsrgHj/WJoh1od3TUw
k/ivAOrSpkDIWchsZ2IzANbSkOl9hCpXFZ9g52P04Z0A77jq/NCKniA3Mzta1TFt
SsbMooejweigpdCd/AaZ/V+6BF0srkQkw92wrK4YS6a0ICvJyLhDDFU+UkHXwafq
gwAKZvUQB/gO2/PFzQXxiNvL2PkUeb76+zQepmBpojJO5cv3BxOCBrB+6B0=
-----END CERTIFICATE-----
Generated at Mon Oct 20 12:51:52 2025 by rpki-client