Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa
File: 1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa (raw, json)
Hash identifier: z66dD9yPS3fAERNU7L8icCZg3w1bfC3PlHee6zaMpDI=
Subject key identifier: 6E:3B:28:4F:F5:A4:81:27:58:2C:7A:2D:14:38:DE:AC:2D:AF:68:71
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 69B7800D0557025124B142F64AE542886466E254
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa
Signing time: Wed 12 Nov 2025 00:50:06 +0000
ROA not before: Wed 12 Nov 2025 00:50:06 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f1f::/37 maxlen: 37
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:b7:80:0d:05:57:02:51:24:b1:42:f6:4a:e5:42:88:64:66:e2:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 00:50:06 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=9284128425fdf062fd61a3bbeb848aee1b2020115fe079c99be43b493efc1540, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:da:65:62:15:6d:45:7f:d6:87:5c:93:70:71:
3c:b1:34:8f:ac:d1:18:97:aa:71:fc:71:4f:36:10:
8b:a4:35:90:37:40:ac:b2:0e:a1:dc:bd:24:56:c6:
2b:36:92:86:b7:e3:03:a9:aa:3a:47:25:5f:a6:60:
53:cb:dc:ee:1f:7c:f1:0a:0b:27:a8:21:ee:eb:32:
7f:ca:ec:98:e0:ca:9e:40:9a:1f:f2:2c:87:58:b0:
c1:9f:0a:81:8f:51:b3:c9:30:53:a3:7f:0d:41:8e:
2f:bd:4f:a2:98:fd:0d:6c:5d:d1:f1:35:21:a9:11:
04:bf:95:83:40:18:44:d0:02:f7:1d:4b:08:0f:55:
1d:92:d2:b3:81:3e:9e:55:39:fe:31:f4:91:79:56:
3b:ed:22:84:37:17:10:16:f0:b5:14:31:1d:ab:8a:
ec:4e:ca:0a:a0:a1:b9:f7:4e:12:1a:9d:3b:04:27:
91:dd:eb:fa:f7:7e:99:c1:52:53:60:61:b2:e0:8d:
c7:bb:95:5d:8a:fc:10:7c:f0:35:18:36:92:6d:76:
3a:41:17:12:d3:b7:db:d6:3c:a2:fa:31:c5:3f:4e:
66:0c:7b:d4:1d:4e:4b:b9:19:37:35:c4:59:20:35:
d6:9d:9b:c2:41:80:a2:ac:6e:15:31:4e:b0:87:62:
f6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3B:28:4F:F5:A4:81:27:58:2C:7A:2D:14:38:DE:AC:2D:AF:68:71
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f1f::/37
Signature Algorithm: sha256WithRSAEncryption
71:58:f1:7e:6e:98:a5:1d:8f:c7:de:9e:44:96:dd:27:9a:5e:
37:41:b9:97:c6:e8:1f:c5:08:66:80:20:c9:30:15:d7:d0:d4:
10:df:5a:74:6c:1d:89:35:2b:33:c4:38:1e:c6:4f:b3:13:44:
05:82:29:8e:07:8d:40:93:7d:82:d2:f4:5a:19:65:d8:78:bc:
19:2f:65:f7:26:9d:67:76:3a:f4:bf:73:28:db:bd:b5:a5:45:
9f:e2:20:13:21:0c:c6:54:76:5a:1a:7f:f7:1f:fd:ac:dc:be:
9e:18:b0:fa:ab:e9:cb:ee:69:9a:65:ad:1d:94:9d:ad:6f:e2:
f3:8d:6b:89:df:7d:88:04:8b:18:e1:7c:54:6b:b1:e8:56:66:
54:9a:37:0e:1a:3c:2d:01:c0:c6:7a:e7:da:3e:b8:3b:3b:dc:
1f:6b:11:98:1d:a3:bf:bd:55:fd:df:3c:86:75:d1:da:5c:9b:
3d:b6:9b:2b:8a:af:f7:d8:d2:25:9a:69:31:41:68:44:6e:c7:
fa:88:d3:49:33:a2:08:e2:d8:0e:26:0f:0d:76:98:51:33:fa:
08:02:f9:d1:72:c6:3c:67:f2:73:83:9e:8c:e7:92:e3:20:a4:
8c:2a:55:23:71:6f:35:9d:a7:ed:c5:b8:a5:0e:17:db:a6:d4:
a2:92:0b:f1
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUabeADQVXAlEksUL2SuVCiGRm4lQwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDA1MDA2WhcNMjUxMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0A5Mjg0MTI4NDI1ZmRmMDYyZmQ2MWEzYmJlYjg0OGFlZTFi
MjAyMDExNWZlMDc5Yzk5YmU0M2I0OTNlZmMxNTQwMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCW2mViFW1Ff9aHXJNwcTyxNI+s0RiXqnH8cU82EIukNZA3
QKyyDqHcvSRWxis2koa34wOpqjpHJV+mYFPL3O4ffPEKCyeoIe7rMn/K7Jjgyp5A
mh/yLIdYsMGfCoGPUbPJMFOjfw1Bji+9T6KY/Q1sXdHxNSGpEQS/lYNAGETQAvcd
SwgPVR2S0rOBPp5VOf4x9JF5VjvtIoQ3FxAW8LUUMR2riuxOygqgobn3ThIanTsE
J5Hd6/r3fpnBUlNgYbLgjce7lV2K/BB88DUYNpJtdjpBFxLTt9vWPKL6McU/TmYM
e9QdTku5GTc1xFkgNdadm8JBgKKsbhUxTrCHYvYrAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUbjsoT/WkgSdYLHotFDjerC2vaHEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzFlMDhkYTYwLTMwMTgtNDExZi04MmVhLWVjM2NhYTFkMmNjMy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgMmAB8fADANBgkqhkiG9w0BAQsFAAOCAQEAcVjxfm6YpR2Px96eRJbdJ5pe
N0G5l8boH8UIZoAgyTAV19DUEN9adGwdiTUrM8Q4HsZPsxNEBYIpjgeNQJN9gtL0
Whll2Hi8GS9l9yadZ3Y69L9zKNu9taVFn+IgEyEMxlR2Whp/9x/9rNy+nhiw+qvp
y+5pmmWtHZSdrW/i841rid99iASLGOF8VGux6FZmVJo3Dho8LQHAxnrn2j64Ozvc
H2sRmB2jv71V/d88hnXR2lybPbabK4qv99jSJZppMUFoRG7H+ojTSTOiCOLYDiYP
DXaYUTP6CAL50XLGPGfyc4OejOeS4yCkjCpVI3FvNZ2n7cW4pQ4X26bUopIL8Q==
-----END CERTIFICATE-----
Generated at Tue Nov 18 09:36:53 2025 by rpki-client