Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa
File: 10e8eaff-a969-4014-aee5-0177cbb5381e.roa (raw, json)
Hash identifier: MiSeB0NUcNG56FAAeCw1s3mKE8fEQ1jXGKEv4UNi71U=
Subject key identifier: 3E:FB:23:FF:6F:97:49:1B:48:FD:66:EA:DA:6A:D6:66:CB:4C:7C:91
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 04277A399A8B5FED333ECFEB524020AADB66CB87
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa
Signing time: Tue 11 Nov 2025 00:21:14 +0000
ROA not before: Tue 11 Nov 2025 00:21:14 +0000
ROA not after: Tue 16 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.162.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:27:7a:39:9a:8b:5f:ed:33:3e:cf:eb:52:40:20:aa:db:66:cb:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 00:21:14 2025 GMT
Not After : Dec 16 23:59:59 2025 GMT
Subject: serialNumber=372cf37a65a79f226ad8f6025c64b2afa63c84aaa0a78821a2e26fb7b2e27ed8, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:20:a5:6f:9f:6d:36:6a:5e:78:cd:52:ae:6f:
6c:e5:61:05:65:6f:2c:5e:e5:13:88:91:74:83:62:
02:ef:36:0a:fd:25:8c:14:a6:b4:81:ef:a4:dc:be:
cf:14:d2:12:58:ef:cf:6f:93:d4:27:eb:25:62:ec:
a9:8e:26:12:1f:c5:79:38:ea:d5:c9:aa:a4:d6:8a:
b0:ef:58:15:1b:f7:bd:2a:6b:60:73:ac:c8:1f:3d:
68:d3:d9:05:74:c3:7f:aa:21:a8:2d:9e:f1:94:4b:
7c:9a:f6:87:13:23:0f:90:53:34:78:e6:be:22:79:
b0:6c:57:8c:7e:4b:8e:89:64:0b:8d:c7:ce:54:3c:
83:f1:d0:89:01:c9:3f:99:83:b4:83:e0:9d:52:d0:
70:76:d3:b0:2e:21:f9:2e:7e:fc:61:ce:13:4f:ba:
a6:85:d8:bd:2e:4a:78:d0:d5:c2:ae:cd:91:30:c6:
a2:54:e9:ca:9e:7a:bc:1e:2d:64:bb:e1:76:0f:a4:
71:17:1c:f7:af:d2:7f:44:43:80:fa:a8:01:c0:4d:
ff:11:6f:ed:a8:32:67:e5:14:88:e5:13:4b:48:75:
24:c2:d8:ec:98:04:a9:e9:f9:6b:b4:9e:3a:94:d2:
d2:aa:80:7b:60:9a:59:23:1f:6e:98:69:1d:f1:32:
29:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FB:23:FF:6F:97:49:1B:48:FD:66:EA:DA:6A:D6:66:CB:4C:7C:91
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.162.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b9:71:fa:cd:b9:98:b4:32:f0:02:61:a1:93:2c:05:8b:e9:72:
01:d1:70:27:7a:56:00:df:b0:c4:87:50:fb:64:90:95:08:b9:
f1:2f:76:7b:01:fe:1f:01:c3:05:d8:16:0f:9d:d5:24:95:20:
91:01:89:ae:c3:0d:b0:ec:d8:87:62:2a:57:44:ce:ca:30:ff:
f1:18:be:ef:80:67:4c:61:be:39:4a:6a:15:a5:ec:c3:98:08:
e8:bb:1d:53:f3:c7:a4:7c:89:9c:c6:59:6c:92:33:d7:31:96:
2a:47:ee:88:e7:84:9a:d1:1d:45:02:e5:61:4e:8f:3d:48:68:
e2:95:9a:04:6d:d6:92:8b:03:5c:54:ff:ab:69:1c:8b:5b:99:
0c:f4:38:bf:92:2b:fd:b9:43:db:2c:ca:38:31:c2:68:08:6a:
a4:65:81:37:5f:91:2a:79:3e:e4:35:8e:dd:98:96:ce:c9:f6:
43:52:34:49:02:63:15:06:02:33:5e:74:5c:07:09:27:a4:64:
dd:3c:3d:8f:2a:74:76:07:44:ba:fa:bd:26:93:95:7d:a8:ca:
b3:b4:2b:7f:68:ce:14:35:0a:eb:4a:99:d4:18:8f:dd:17:ef:
15:38:69:e8:d8:26:60:a5:56:5a:9c:bb:a4:50:48:69:56:38:
a3:aa:a7:b6
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUBCd6OZqLX+0zPs/rUkAgqttmy4cwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTExMDAyMTE0WhcNMjUxMjE2MjM1OTU5
WjB6MUkwRwYDVQQFE0AzNzJjZjM3YTY1YTc5ZjIyNmFkOGY2MDI1YzY0YjJhZmE2
M2M4NGFhYTBhNzg4MjFhMmUyNmZiN2IyZTI3ZWQ4MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCfIKVvn202al54zVKub2zlYQVlbyxe5ROIkXSDYgLvNgr9
JYwUprSB76Tcvs8U0hJY789vk9Qn6yVi7KmOJhIfxXk46tXJqqTWirDvWBUb970q
a2BzrMgfPWjT2QV0w3+qIagtnvGUS3ya9ocTIw+QUzR45r4iebBsV4x+S46JZAuN
x85UPIPx0IkByT+Zg7SD4J1S0HB207AuIfkufvxhzhNPuqaF2L0uSnjQ1cKuzZEw
xqJU6cqeerweLWS74XYPpHEXHPev0n9EQ4D6qAHATf8Rb+2oMmflFIjlE0tIdSTC
2OyYBKnp+Wu0njqU0tKqgHtgmlkjH26YaR3xMik5AgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUPvsj/2+XSRtI/Wbq2mrWZstMfJEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzEwZThlYWZmLWE5NjktNDAxNC1hZWU1LTAxNzdjYmI1MzgxZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwEQojANBgkqhkiG9w0BAQsFAAOCAQEAuXH6zbmYtDLwAmGhkywFi+lyAdFw
J3pWAN+wxIdQ+2SQlQi58S92ewH+HwHDBdgWD53VJJUgkQGJrsMNsOzYh2IqV0TO
yjD/8Ri+74BnTGG+OUpqFaXsw5gI6LsdU/PHpHyJnMZZbJIz1zGWKkfuiOeEmtEd
RQLlYU6PPUho4pWaBG3WkosDXFT/q2kci1uZDPQ4v5Ir/blD2yzKODHCaAhqpGWB
N1+RKnk+5DWO3ZiWzsn2Q1I0SQJjFQYCM150XAcJJ6Rk3Tw9jyp0dgdEuvq9JpOV
fajKs7Qrf2jOFDUK60qZ1BiP3RfvFThp6NgmYKVWWpy7pFBIaVY4o6qntg==
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:25 2025 by rpki-client