Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa
File: 38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa (raw, json)
Hash identifier: u/uAY3oBePsFflmvEPKfv/EGkakAOU5C4uY/xi3qzXg=
Subject key identifier: F8:A6:EB:E0:56:D9:B6:43:7A:35:E0:AB:E3:5C:48:4C:B4:8B:BC:9C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0B17C58E5D0BA2AD2CD93A396771E66204621DFE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa
Signing time: Fri 07 Nov 2025 00:50:38 +0000
ROA not before: Fri 07 Nov 2025 00:50:38 +0000
ROA not after: Fri 12 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 23.91.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:17:c5:8e:5d:0b:a2:ad:2c:d9:3a:39:67:71:e6:62:04:62:1d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 7 00:50:38 2025 GMT
Not After : Dec 12 23:59:59 2025 GMT
Subject: serialNumber=3d453c02030cf7866fa01a8c6cee40e1087201424fa91fdf9a8f001a4b4a7a7f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:50:c7:bb:34:60:54:06:14:2b:57:58:3e:21:
14:d4:72:5c:79:3b:8d:2a:a3:53:d2:74:51:6a:4e:
7b:a6:78:af:e1:a4:f8:ae:a4:b7:e0:c8:9c:c6:2e:
cd:f6:f4:b7:60:5a:2a:1a:3b:0d:aa:06:49:28:1b:
24:b6:2d:3e:8e:bc:44:3a:a4:42:55:5a:49:e8:3a:
5a:e0:2a:4f:06:bf:6f:55:df:aa:86:65:b1:49:9d:
c6:0d:76:f4:a8:1c:09:db:df:b2:68:33:1f:55:77:
c8:fa:fc:28:0e:86:b6:b2:71:b5:96:b5:6f:74:e0:
4e:8f:43:40:27:f8:cc:a8:1e:7b:be:9b:ae:9b:d7:
e0:95:2d:31:38:6d:fb:72:c5:10:a7:60:8f:09:b4:
5e:4d:8a:51:be:de:e0:ea:00:e3:79:7e:82:94:2d:
b0:23:55:1d:db:e9:a8:fa:8c:aa:8e:8b:25:4c:88:
5b:f3:9e:17:00:5b:2d:02:ea:53:2d:5a:c6:00:cb:
14:e8:35:24:64:cf:d8:35:e6:dd:d0:34:32:f3:8c:
13:88:05:b4:c6:6a:53:be:91:e4:9a:8c:bd:8d:a2:
58:94:4c:9c:61:0a:f5:84:db:9d:c2:4b:d9:04:62:
d6:58:1b:95:54:d9:47:f5:d7:0e:16:a4:f2:fd:01:
89:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A6:EB:E0:56:D9:B6:43:7A:35:E0:AB:E3:5C:48:4C:B4:8B:BC:9C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.91.15.0/24
Signature Algorithm: sha256WithRSAEncryption
64:eb:8d:29:c5:cb:f4:a7:bf:7a:b9:e7:ac:5d:c0:cd:b5:de:
1a:ef:c6:8a:2c:a8:f5:03:c4:e2:5c:92:98:8e:31:f5:bd:e1:
5f:a0:5e:45:a5:c7:fe:6e:dc:2f:69:ed:73:08:3e:71:8d:04:
53:54:71:aa:8f:2a:fe:dd:62:d8:b5:1d:27:1f:36:6d:d0:89:
01:39:75:37:ad:b1:f8:9a:3e:06:bf:2a:22:cb:c4:de:f4:ab:
69:0c:c2:8f:34:4b:d2:f1:b9:70:23:93:64:6f:21:c9:c3:a2:
a8:65:05:4c:c9:f2:e6:38:42:5b:70:09:47:e2:7f:18:44:56:
15:5a:d3:41:d5:89:d2:ab:d8:08:45:78:d1:5d:38:88:9d:b3:
a2:eb:05:a4:3f:6f:af:88:11:50:07:3c:fd:c6:ed:21:7f:83:
7e:fa:2c:98:cc:81:9b:2c:d2:e5:5f:75:dd:d3:de:d0:50:04:
1c:9c:ef:75:9f:60:2c:ed:ba:49:c8:4b:9e:03:f5:2e:0b:40:
40:65:f1:9a:71:9f:ad:2f:e8:53:02:4a:73:60:b2:91:8e:f6:
16:1a:f1:27:1c:7d:2e:d7:1e:8e:cd:8a:af:36:b2:99:9d:6e:
72:80:21:d4:1d:e7:68:16:a9:57:57:79:7d:69:07:bc:c4:c2:
93:32:f2:d2
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUCxfFjl0Loq0s2To5Z3HmYgRiHf4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTA3MDA1MDM4WhcNMjUxMjEyMjM1OTU5
WjB6MUkwRwYDVQQFE0AzZDQ1M2MwMjAzMGNmNzg2NmZhMDFhOGM2Y2VlNDBlMTA4
NzIwMTQyNGZhOTFmZGY5YThmMDAxYTRiNGE3YTdmMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCRUMe7NGBUBhQrV1g+IRTUclx5O40qo1PSdFFqTnumeK/h
pPiupLfgyJzGLs329LdgWioaOw2qBkkoGyS2LT6OvEQ6pEJVWknoOlrgKk8Gv29V
36qGZbFJncYNdvSoHAnb37JoMx9Vd8j6/CgOhraycbWWtW904E6PQ0An+MyoHnu+
m66b1+CVLTE4bftyxRCnYI8JtF5NilG+3uDqAON5foKULbAjVR3b6aj6jKqOiyVM
iFvznhcAWy0C6lMtWsYAyxToNSRkz9g15t3QNDLzjBOIBbTGalO+keSajL2NoliU
TJxhCvWE253CS9kEYtZYG5VU2Uf11w4WpPL9AYlfAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU+Kbr4FbZtkN6NeCr41xITLSLvJwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzM4ZTVjOGYyLWM5NzQtNDNiNS04ZjQ2LTVjYTI4OWIyODNhZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAXWw8wDQYJKoZIhvcNAQELBQADggEBAGTrjSnFy/Snv3q556xdwM213hrv
xoosqPUDxOJckpiOMfW94V+gXkWlx/5u3C9p7XMIPnGNBFNUcaqPKv7dYti1HScf
Nm3QiQE5dTetsfiaPga/KiLLxN70q2kMwo80S9LxuXAjk2RvIcnDoqhlBUzJ8uY4
QltwCUfifxhEVhVa00HVidKr2AhFeNFdOIids6LrBaQ/b6+IEVAHPP3G7SF/g376
LJjMgZss0uVfdd3T3tBQBByc73WfYCztuknIS54D9S4LQEBl8Zpxn60v6FMCSnNg
spGO9hYa8SccfS7XHo7Niq82spmdbnKAIdQd52gWqVdXeX1pB7zEwpMy8tI=
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:49:36 2025 by rpki-client