Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d67408e2-8822-4175-82d4-aedc96dd832f.roa
File: d67408e2-8822-4175-82d4-aedc96dd832f.roa (raw, json)
Hash identifier: fJqSAKwuWHwbNE0lr7pV81a7YE2/F4ArKDM8AVUW538=
Subject key identifier: 6E:7B:1D:EF:12:26:3D:3F:02:B5:8A:DB:6B:36:55:6F:FA:AF:1B:1C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2071A067AAEB4C87063F744B01F8027CAC97939F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d67408e2-8822-4175-82d4-aedc96dd832f.roa
Signing time: Sat 18 Oct 2025 01:50:52 +0000
ROA not before: Sat 18 Oct 2025 01:50:52 +0000
ROA not after: Sat 22 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 65.8.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:71:a0:67:aa:eb:4c:87:06:3f:74:4b:01:f8:02:7c:ac:97:93:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 18 01:50:52 2025 GMT
Not After : Nov 22 23:59:59 2025 GMT
Subject: serialNumber=7838c73e96119081d06eb4b07a46d15748b4788d838118d938ab93121f2da58f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fc:0c:e3:cd:f6:ac:7e:76:56:a1:1b:e6:b6:
82:db:3c:af:f8:a2:68:92:2b:07:cd:8f:79:ec:99:
70:48:e3:7f:a6:68:d3:26:42:37:48:43:67:03:f0:
75:c6:55:95:aa:a3:6f:b8:db:30:4c:d0:94:66:5a:
a2:3e:4b:6e:f1:9d:5a:e0:62:63:25:f9:1b:4e:c8:
a5:b1:39:79:d1:41:98:eb:6d:fb:d1:9f:cd:0b:41:
a2:e1:df:0e:d0:60:ab:73:e4:23:c8:6c:4b:18:3d:
30:ff:02:3d:25:af:7c:82:f4:5d:6c:33:1c:e6:38:
ea:a6:55:80:31:c4:1e:f3:9c:66:84:2d:81:ef:ff:
5b:6f:16:6c:13:a7:72:db:de:4e:53:34:61:6f:c6:
a8:45:73:41:50:1a:d2:c0:f1:13:a1:1b:14:ef:8b:
79:d3:5b:2f:58:36:5d:fc:21:48:11:10:d5:ac:1e:
20:4e:18:93:24:3d:74:92:4b:43:ff:d8:42:91:3b:
a9:f3:d8:55:73:ee:62:f7:9a:37:a1:0e:a4:5d:f4:
7e:a1:08:5a:d9:f9:f2:c0:da:ab:13:9e:a8:11:aa:
60:8b:8a:f5:3d:c9:55:de:4d:9f:9e:f4:86:57:47:
d9:02:18:e2:a6:29:4b:dc:27:25:19:79:dc:66:71:
a8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7B:1D:EF:12:26:3D:3F:02:B5:8A:DB:6B:36:55:6F:FA:AF:1B:1C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d67408e2-8822-4175-82d4-aedc96dd832f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.8.162.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:1f:30:4a:c2:8a:51:c7:c4:ec:b9:b1:fb:da:3b:82:5e:f7:
4d:89:32:88:34:e4:22:2a:07:1d:9a:94:aa:06:d2:cf:b4:9a:
8f:03:53:02:ee:2d:fb:84:41:03:b1:26:ba:2e:17:94:16:b3:
89:64:ab:d1:97:79:9d:ba:ff:84:4d:41:19:bf:1e:23:8e:73:
87:66:23:99:72:2b:53:b9:ea:2b:d3:6f:ee:1e:bb:4e:a2:cc:
44:8d:e2:b3:ff:d5:05:ff:ac:d6:3a:8e:93:12:52:da:e9:b1:
65:81:77:d5:6f:f2:cd:ef:29:3e:98:49:77:28:d4:e8:b1:9f:
c2:22:89:7c:45:c0:27:74:cd:14:10:34:a2:72:82:8c:3e:ff:
42:05:bc:f9:a3:19:f7:36:d8:77:f6:5e:0f:96:0e:a7:d2:d8:
f0:c2:98:53:a8:a0:1c:02:33:b7:f8:d6:8a:a3:98:26:e4:6b:
5b:0e:23:be:a3:60:c9:e7:20:40:5d:1a:cb:60:c0:67:be:a0:
e9:46:b7:7d:95:45:9a:c8:a6:5c:34:fc:0b:e5:65:bc:f0:60:
78:50:79:73:ab:b2:05:db:bb:81:1b:a6:5f:c4:1a:ee:f3:57:
08:25:bf:cd:e0:2e:5f:91:1f:30:9f:77:57:22:d7:c9:41:95:
55:9f:35:da
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUIHGgZ6rrTIcGP3RLAfgCfKyXk58wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE4MDE1MDUyWhcNMjUxMTIyMjM1OTU5
WjB6MUkwRwYDVQQFE0A3ODM4YzczZTk2MTE5MDgxZDA2ZWI0YjA3YTQ2ZDE1NzQ4
YjQ3ODhkODM4MTE4ZDkzOGFiOTMxMjFmMmRhNThmMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCc/AzjzfasfnZWoRvmtoLbPK/4omiSKwfNj3nsmXBI43+m
aNMmQjdIQ2cD8HXGVZWqo2+42zBM0JRmWqI+S27xnVrgYmMl+RtOyKWxOXnRQZjr
bfvRn80LQaLh3w7QYKtz5CPIbEsYPTD/Aj0lr3yC9F1sMxzmOOqmVYAxxB7znGaE
LYHv/1tvFmwTp3Lb3k5TNGFvxqhFc0FQGtLA8ROhGxTvi3nTWy9YNl38IUgRENWs
HiBOGJMkPXSSS0P/2EKRO6nz2FVz7mL3mjehDqRd9H6hCFrZ+fLA2qsTnqgRqmCL
ivU9yVXeTZ+e9IZXR9kCGOKmKUvcJyUZedxmcajzAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUbnsd7xImPT8CtYrbazZVb/qvGxwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2Q2NzQwOGUyLTg4MjItNDE3NS04MmQ0LWFlZGM5NmRkODMyZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABBCKIwDQYJKoZIhvcNAQELBQADggEBAD8fMErCilHHxOy5sfvaO4Je902J
Mog05CIqBx2alKoG0s+0mo8DUwLuLfuEQQOxJrouF5QWs4lkq9GXeZ26/4RNQRm/
HiOOc4dmI5lyK1O56ivTb+4eu06izESN4rP/1QX/rNY6jpMSUtrpsWWBd9Vv8s3v
KT6YSXco1Oixn8IiiXxFwCd0zRQQNKJygow+/0IFvPmjGfc22Hf2Xg+WDqfS2PDC
mFOooBwCM7f41oqjmCbka1sOI76jYMnnIEBdGstgwGe+oOlGt32VRZrIplw0/Avl
ZbzwYHhQeXOrsgXbu4Ebpl/EGu7zVwglv83gLl+RHzCfd1ci18lBlVWfNdo=
-----END CERTIFICATE-----
Generated at Mon Oct 20 15:19:37 2025 by rpki-client