Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c05140f-8629-4f8c-8a1c-6daa9d77eb3b.roa
File: 2c05140f-8629-4f8c-8a1c-6daa9d77eb3b.roa (raw, json)
Hash identifier: 7JzTE533BAwG/wt2SXL7Fm2eP5kHwAA+YFUeZLxhHgc=
Subject key identifier: 63:1F:12:C9:6B:04:46:33:5D:6B:9E:13:68:54:CE:8D:27:6C:5E:5F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 442376ED39480A5FD686482DA057A2B9E8D7A925
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c05140f-8629-4f8c-8a1c-6daa9d77eb3b.roa
Signing time: Wed 12 Nov 2025 00:21:16 +0000
ROA not before: Wed 12 Nov 2025 00:21:16 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f1b:4000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:23:76:ed:39:48:0a:5f:d6:86:48:2d:a0:57:a2:b9:e8:d7:a9:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 00:21:16 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=4f9079053a2407e99118b8ca82df075b0a33cd99a57ac416cfe20894a5095a1e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:dd:65:e7:6f:b0:84:08:5b:78:87:e6:64:
26:37:15:56:4b:96:c2:58:7c:85:e1:d0:dc:02:9b:
76:07:43:b7:6b:1b:d5:9c:65:15:a1:94:25:50:e2:
36:e3:cb:fc:c2:76:df:47:2b:19:b7:0e:9a:17:b1:
a8:21:17:9a:3a:67:50:95:ed:4e:32:d4:47:5c:c5:
97:0c:af:03:39:b2:ab:0f:34:f1:02:77:dd:de:c6:
c0:22:1a:10:19:2e:d5:00:b7:5a:d3:0b:16:94:a3:
7b:fe:eb:3d:d7:a2:bb:23:18:47:f7:f0:54:2f:a2:
41:0b:8b:1a:9c:75:80:d0:7e:1f:3c:3b:7c:8f:20:
17:91:51:67:d9:91:18:17:a3:83:55:84:4d:e3:0b:
a1:d0:42:51:0d:69:01:7c:88:cf:47:20:a3:46:8e:
30:32:06:60:7d:fe:99:33:95:f6:80:68:6e:69:6e:
a7:c6:0f:51:bd:41:f4:e1:8b:3a:12:61:d8:74:e4:
f4:1f:ef:ea:51:52:aa:18:f8:fc:f5:96:86:04:aa:
b5:3d:ca:16:27:1c:5c:16:b5:1b:9e:c2:2f:a5:23:
4f:94:c5:7d:6f:60:f8:81:23:22:85:e1:37:de:6a:
70:4f:1d:e1:d8:61:b5:1a:f5:7c:f4:b8:a0:e3:02:
f0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:1F:12:C9:6B:04:46:33:5D:6B:9E:13:68:54:CE:8D:27:6C:5E:5F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c05140f-8629-4f8c-8a1c-6daa9d77eb3b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f1b:4000::/36
Signature Algorithm: sha256WithRSAEncryption
6e:95:d6:94:ef:fa:85:49:97:f8:15:0f:73:87:d1:df:86:c7:
b7:02:bf:9a:57:a2:99:38:6a:ef:6e:9a:db:ff:b0:16:76:4c:
7e:73:23:c7:d7:09:66:76:a6:78:d5:31:7d:94:ff:15:9a:00:
83:d2:48:18:2a:5a:a1:78:30:b6:8a:87:7c:c0:b1:7b:80:fb:
ad:a9:e9:83:90:a4:97:ea:08:c2:d1:4a:05:55:65:39:ae:2f:
69:02:8a:2d:dc:01:a1:65:7f:fb:9c:73:22:24:6c:fa:03:c7:
c5:0a:c9:b9:6d:d4:5b:d4:86:84:39:f5:c3:b3:9e:42:03:18:
2d:f7:ba:56:23:6f:e9:e3:9d:f6:1d:27:8d:c2:d9:08:e2:be:
5c:c2:62:c8:c6:86:78:03:b3:86:6a:43:9a:2c:07:69:14:92:
8b:14:c2:5c:a9:cb:49:74:ed:30:c5:1b:b8:b5:c8:77:51:55:
0c:ba:1e:32:b8:e1:23:c4:2b:0f:73:36:75:f1:ef:d9:f3:68:
33:d3:2b:81:d0:50:31:cf:dd:6c:6b:90:88:fc:26:ec:9d:5c:
25:a2:78:19:7a:89:b1:88:db:ea:73:76:3c:b9:61:fa:8a:3d:
1e:68:82:3b:4d:cb:c0:8e:17:b3:46:b6:d1:29:8c:1c:35:b2:
4f:c4:2c:50
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIURCN27TlICl/WhkgtoFeiuejXqSUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDAyMTE2WhcNMjUxMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0A0ZjkwNzkwNTNhMjQwN2U5OTExOGI4Y2E4MmRmMDc1YjBh
MzNjZDk5YTU3YWM0MTZjZmUyMDg5NGE1MDk1YTFlMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC9bt1l52+whAhbeIfmZCY3FVZLlsJYfIXh0NwCm3YHQ7dr
G9WcZRWhlCVQ4jbjy/zCdt9HKxm3DpoXsaghF5o6Z1CV7U4y1EdcxZcMrwM5sqsP
NPECd93exsAiGhAZLtUAt1rTCxaUo3v+6z3XorsjGEf38FQvokELixqcdYDQfh88
O3yPIBeRUWfZkRgXo4NVhE3jC6HQQlENaQF8iM9HIKNGjjAyBmB9/pkzlfaAaG5p
bqfGD1G9QfThizoSYdh05PQf7+pRUqoY+Pz1loYEqrU9yhYnHFwWtRuewi+lI0+U
xX1vYPiBIyKF4TfeanBPHeHYYbUa9Xz0uKDjAvAHAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUYx8SyWsERjNda54TaFTOjSdsXl8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzJjMDUxNDBmLTg2MjktNGY4Yy04YTFjLTZkYWE5ZDc3ZWIzYi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgQmAB8bQDANBgkqhkiG9w0BAQsFAAOCAQEAbpXWlO/6hUmX+BUPc4fR34bH
twK/mleimThq726a2/+wFnZMfnMjx9cJZnameNUxfZT/FZoAg9JIGCpaoXgwtoqH
fMCxe4D7ranpg5Ckl+oIwtFKBVVlOa4vaQKKLdwBoWV/+5xzIiRs+gPHxQrJuW3U
W9SGhDn1w7OeQgMYLfe6ViNv6eOd9h0njcLZCOK+XMJiyMaGeAOzhmpDmiwHaRSS
ixTCXKnLSXTtMMUbuLXId1FVDLoeMrjhI8QrD3M2dfHv2fNoM9MrgdBQMc/dbGuQ
iPwm7J1cJaJ4GXqJsYjb6nN2PLlh+oo9HmiCO03LwI4Xs0a20SmMHDWyT8QsUA==
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:22 2025 by rpki-client