Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa
File: e5a52770-75fd-4126-9116-3362d8dc25af.roa (raw, json)
Hash identifier: E1tetze5FJp3zIDFjRzi+wbcljBgIcKuc3fVFH6FGH0=
Subject key identifier: AC:24:8B:14:FD:43:05:DC:33:64:08:B0:32:45:9A:BF:7E:3B:AC:97
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 53ED92026F05DE193704392E9C3324CD29C3B172
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa
Signing time: Fri 17 Oct 2025 00:51:55 +0000
ROA not before: Fri 17 Oct 2025 00:51:55 +0000
ROA not after: Fri 21 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.16.108.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:ed:92:02:6f:05:de:19:37:04:39:2e:9c:33:24:cd:29:c3:b1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 17 00:51:55 2025 GMT
Not After : Nov 21 23:59:59 2025 GMT
Subject: serialNumber=a30644832c5b5c4b6c4e1ace70454fe5d8256c41014c25e54cb22876a448dd55, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:09:1d:d3:de:59:4e:d7:a4:3a:a6:61:24:2e:
c0:90:e6:fa:d7:b3:79:90:81:73:b5:48:e9:8e:bb:
0e:80:4a:4d:4c:aa:03:1d:96:23:43:15:9c:ac:58:
cf:63:75:44:bf:05:97:ea:67:cb:11:14:af:0c:30:
91:ba:d2:fe:8f:90:70:63:df:c3:1e:59:a1:c8:20:
fa:d6:b5:8e:3c:45:e2:bb:c8:47:6d:a7:8e:3c:2b:
42:4f:c4:4c:01:b0:f7:e8:21:0f:b4:64:f0:ab:67:
40:af:54:a8:99:bf:c4:f1:60:de:d2:21:0e:1b:c5:
91:b7:a1:ee:c6:18:0d:fb:81:e4:19:e8:ee:50:e0:
18:42:ac:19:6d:0d:35:a5:0e:78:d3:03:71:c6:16:
10:2b:f7:c7:1a:89:14:ea:fa:fd:d2:5a:2a:1b:a9:
fd:94:81:35:e1:f6:df:86:22:f6:58:90:aa:98:a5:
33:c9:42:e9:e2:61:0c:f4:e5:ec:eb:cd:4f:0f:e9:
be:1d:fe:f6:ae:02:d4:7f:25:82:73:9f:bb:0a:67:
1d:a2:a6:7c:31:9e:73:45:a7:2d:3c:df:e4:2b:4a:
ca:e1:7a:b7:54:e9:09:1b:f3:33:80:95:1d:7d:b1:
ad:3d:b5:96:34:33:e0:b8:5b:1e:a1:43:73:fa:79:
e4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:24:8B:14:FD:43:05:DC:33:64:08:B0:32:45:9A:BF:7E:3B:AC:97
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.16.108.0/23
Signature Algorithm: sha256WithRSAEncryption
63:c4:dc:98:35:c7:fe:63:23:e5:47:0f:80:56:37:95:d3:5f:
8b:8c:cc:ff:d9:92:f8:87:ca:c8:47:ce:c4:b7:62:cb:e7:a1:
72:5a:95:0f:f4:12:03:0e:c9:d7:29:6d:f7:02:49:70:c6:0b:
31:d6:ee:45:34:e3:64:15:f6:24:40:9f:2e:65:39:8d:53:c6:
ac:3c:5d:5e:f0:37:b5:60:dd:b8:e8:c4:34:7c:d2:96:4a:3e:
5b:2a:9c:5f:33:df:db:fa:53:2e:ed:02:21:f1:43:74:c0:ae:
ee:c1:40:53:37:e2:66:f8:e2:bb:6b:39:a7:45:ee:cb:82:28:
4b:76:d0:ba:5c:b4:03:e2:9a:6b:dd:b6:d6:59:3a:76:db:fe:
af:f8:bc:1d:68:87:46:d0:19:c4:58:5d:42:d6:e8:e9:03:dc:
e2:e1:cd:c3:90:c6:8d:9d:c0:55:b6:97:02:62:34:56:93:98:
44:a6:96:44:07:96:bb:a0:42:0a:9d:bc:06:82:e7:f2:0c:d7:
84:5e:e0:ca:17:92:d3:b0:00:f7:d7:e1:f2:76:7e:c9:db:8b:
7c:d6:21:e2:d5:78:d6:c5:75:58:e6:b0:b6:71:2e:22:e2:ba:
68:98:58:5f:40:02:98:f7:a6:24:42:e2:3d:6e:9e:ab:c9:95:
57:42:3a:1c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUU+2SAm8F3hk3BDkunDMkzSnDsXIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDE3MDA1MTU1WhcNMjUxMTIxMjM1OTU5
WjB6MUkwRwYDVQQFE0BhMzA2NDQ4MzJjNWI1YzRiNmM0ZTFhY2U3MDQ1NGZlNWQ4
MjU2YzQxMDE0YzI1ZTU0Y2IyMjg3NmE0NDhkZDU1MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDFCR3T3llO16Q6pmEkLsCQ5vrXs3mQgXO1SOmOuw6ASk1M
qgMdliNDFZysWM9jdUS/BZfqZ8sRFK8MMJG60v6PkHBj38MeWaHIIPrWtY48ReK7
yEdtp448K0JPxEwBsPfoIQ+0ZPCrZ0CvVKiZv8TxYN7SIQ4bxZG3oe7GGA37geQZ
6O5Q4BhCrBltDTWlDnjTA3HGFhAr98caiRTq+v3SWiobqf2UgTXh9t+GIvZYkKqY
pTPJQuniYQz05ezrzU8P6b4d/vauAtR/JYJzn7sKZx2ipnwxnnNFpy083+QrSsrh
erdU6Qkb8zOAlR19sa09tZY0M+C4Wx6hQ3P6eeTfAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUrCSLFP1DBdwzZAiwMkWav347rJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2U1YTUyNzcwLTc1ZmQtNDEyNi05MTE2LTMzNjJkOGRjMjVhZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAEQEGwwDQYJKoZIhvcNAQELBQADggEBAGPE3Jg1x/5jI+VHD4BWN5XTX4uM
zP/ZkviHyshHzsS3YsvnoXJalQ/0EgMOydcpbfcCSXDGCzHW7kU042QV9iRAny5l
OY1Txqw8XV7wN7Vg3bjoxDR80pZKPlsqnF8z39v6Uy7tAiHxQ3TAru7BQFM34mb4
4rtrOadF7suCKEt20LpctAPimmvdttZZOnbb/q/4vB1oh0bQGcRYXULW6OkD3OLh
zcOQxo2dwFW2lwJiNFaTmESmlkQHlrugQgqdvAaC5/IM14Re4MoXktOwAPfX4fJ2
fsnbi3zWIeLVeNbFdVjmsLZxLiLiumiYWF9AApj3piRC4j1unqvJlVdCOhw=
-----END CERTIFICATE-----
Generated at Mon Oct 20 16:19:15 2025 by rpki-client