Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa
File: 25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa (raw, json)
Hash identifier: i3BAA93/YUB9oHo9NFyDAcf8LyBfnGCQg8SdoAMSiX4=
Subject key identifier: 5B:CA:8C:87:94:B0:68:FF:D4:9A:08:55:CD:FD:D4:46:D8:5C:4E:33
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 69DC7FAEE532ACDD4FA79CC2E203374E12173102
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa
Signing time: Wed 12 Nov 2025 01:10:14 +0000
ROA not before: Wed 12 Nov 2025 01:10:14 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 54.25.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:dc:7f:ae:e5:32:ac:dd:4f:a7:9c:c2:e2:03:37:4e:12:17:31:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 01:10:14 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=849f74100620e827ecabe041532408b46ad7aa839b8aa9dece9cd0dfc4f703a3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5a:06:9b:42:92:ad:0b:12:c0:1c:4a:7a:89:
65:51:d9:e4:d7:f0:36:38:86:e1:1f:f7:f5:88:50:
9f:c4:5f:9f:c8:22:2b:9b:8e:ea:a0:04:12:0d:b8:
e8:d8:53:17:47:60:26:bb:39:e3:de:3a:b2:f0:1a:
79:76:35:cc:8b:8f:d6:30:b6:da:f8:3e:b3:05:2b:
8d:50:0f:18:07:33:5f:83:42:50:4c:a5:07:11:95:
94:ea:09:c3:e8:9c:0c:8f:91:75:ec:ae:8b:59:52:
a9:5d:04:9a:1f:d7:b2:ff:83:36:d0:bd:cb:f8:24:
42:1a:ab:18:54:da:b3:b9:cd:57:dc:c3:6a:59:42:
d9:95:1e:11:97:d7:73:da:81:e7:54:73:01:f2:c3:
73:e9:ac:c0:9a:80:6f:2f:88:fd:2f:ee:7f:a6:2b:
64:75:9c:83:35:1c:5c:72:95:38:bb:63:70:3d:0d:
35:89:16:7f:65:dc:4b:93:dd:5d:31:82:86:93:a9:
7e:41:ab:78:62:b0:76:d6:93:77:c4:a9:20:d7:8f:
a4:7c:ff:0a:de:ca:fc:1e:ea:9d:09:36:27:19:0e:
2f:09:95:28:2e:58:0d:16:af:42:74:6c:38:f1:82:
62:f3:84:b4:ce:36:02:9d:a5:50:af:31:c7:67:f4:
71:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:CA:8C:87:94:B0:68:FF:D4:9A:08:55:CD:FD:D4:46:D8:5C:4E:33
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.25.68.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:fa:71:7c:0b:93:b7:47:e0:93:dd:ca:df:1b:36:31:26:34:
8f:78:e1:a8:61:9f:0d:54:4d:42:56:93:e7:40:60:04:d5:fb:
45:03:a4:f7:7b:6e:17:f2:b0:bc:70:03:6f:ff:12:1e:04:aa:
13:29:60:ea:13:aa:2b:64:5f:7e:da:22:25:66:68:2f:97:fd:
bf:60:22:df:47:ce:22:ca:a3:e7:34:81:13:d9:4d:1d:b0:71:
40:40:c8:7e:26:e5:d5:10:92:ec:37:aa:c6:82:78:2e:72:48:
7d:00:fe:f4:35:1d:ad:10:91:de:0b:be:ba:85:81:47:e7:9b:
4e:dd:01:e7:1b:1a:73:ab:3c:e7:fb:a1:91:32:89:63:bb:c5:
1e:7c:51:4f:0b:9d:97:b7:f7:59:aa:27:3d:1d:21:4a:4d:1d:
91:12:16:30:a6:3c:53:f7:88:d0:dd:36:05:e6:7f:58:fe:c9:
0a:e9:3a:fd:86:b9:ae:ed:5d:5b:9e:db:00:c4:fe:8d:07:15:
72:f3:f8:1d:f7:41:db:0c:a2:32:b5:02:61:6a:a2:a6:15:39:
b9:ec:2c:f5:c6:bb:87:6d:da:7a:17:c9:bd:7d:4e:1d:f2:6e:
c8:f3:86:b5:f3:bf:2a:95:3c:cb:42:26:69:17:f5:35:9d:63:
31:56:ab:97
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUadx/ruUyrN1Pp5zC4gM3ThIXMQIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDExMDE0WhcNMjUxMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0A4NDlmNzQxMDA2MjBlODI3ZWNhYmUwNDE1MzI0MDhiNDZh
ZDdhYTgzOWI4YWE5ZGVjZTljZDBkZmM0ZjcwM2EzMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDUWgabQpKtCxLAHEp6iWVR2eTX8DY4huEf9/WIUJ/EX5/I
IiubjuqgBBINuOjYUxdHYCa7OePeOrLwGnl2NcyLj9Ywttr4PrMFK41QDxgHM1+D
QlBMpQcRlZTqCcPonAyPkXXsrotZUqldBJof17L/gzbQvcv4JEIaqxhU2rO5zVfc
w2pZQtmVHhGX13PagedUcwHyw3PprMCagG8viP0v7n+mK2R1nIM1HFxylTi7Y3A9
DTWJFn9l3EuT3V0xgoaTqX5Bq3hisHbWk3fEqSDXj6R8/wreyvwe6p0JNicZDi8J
lSguWA0Wr0J0bDjxgmLzhLTONgKdpVCvMcdn9HGnAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUW8qMh5SwaP/UmghVzf3URthcTjMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzI1MTU1ZjBlLTMwNmUtNGFkYi04ZTVlLThmMWVlODc3OTZlMS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAA2GUQwDQYJKoZIhvcNAQELBQADggEBAL36cXwLk7dH4JPdyt8bNjEmNI94
4ahhnw1UTUJWk+dAYATV+0UDpPd7bhfysLxwA2//Eh4EqhMpYOoTqitkX37aIiVm
aC+X/b9gIt9HziLKo+c0gRPZTR2wcUBAyH4m5dUQkuw3qsaCeC5ySH0A/vQ1Ha0Q
kd4LvrqFgUfnm07dAecbGnOrPOf7oZEyiWO7xR58UU8LnZe391mqJz0dIUpNHZES
FjCmPFP3iNDdNgXmf1j+yQrpOv2Gua7tXVue2wDE/o0HFXLz+B33QdsMojK1AmFq
oqYVObnsLPXGu4dt2noXyb19Th3ybsjzhrXzvyqVPMtCJmkX9TWdYzFWq5c=
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:32 2025 by rpki-client