Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eaefb9e-609a-4802-b06c-b7139eb4af45.roa
File: 4eaefb9e-609a-4802-b06c-b7139eb4af45.roa (raw, json)
Hash identifier: hhOl1s1e8XbjiMaCTzU3c2e6M8kvVFpTE5sAQMNCLag=
Subject key identifier: AD:4A:44:4E:E9:08:6B:D4:7F:74:05:26:1B:1E:FD:AF:E2:03:14:26
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7DF36120646AD8821114FEC20297E2874FDCB45F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eaefb9e-609a-4802-b06c-b7139eb4af45.roa
Signing time: Sun 16 Nov 2025 00:30:16 +0000
ROA not before: Sun 16 Nov 2025 00:30:16 +0000
ROA not after: Sun 21 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.57.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:f3:61:20:64:6a:d8:82:11:14:fe:c2:02:97:e2:87:4f:dc:b4:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 16 00:30:16 2025 GMT
Not After : Dec 21 23:59:59 2025 GMT
Subject: serialNumber=2429e2b49aa093daf0ddbb42ce84c219f0e5e6a92b9bf3701201593881d5be6f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1c:45:14:8a:11:e0:bf:04:bc:03:56:a2:3b:
a7:87:c6:45:2b:d5:fc:52:ab:9a:70:c7:df:d7:e2:
8a:0e:9e:e2:98:ca:18:a5:7c:e7:5b:65:b8:c6:70:
d7:42:34:94:fa:63:a0:1e:99:79:15:7d:47:98:bb:
63:97:da:9b:6f:4b:cc:0c:d1:f9:ce:93:9c:ea:24:
c0:ee:95:7e:02:75:fa:d2:d1:78:7e:d3:20:a7:e6:
fb:48:b5:ff:92:5c:fa:4a:23:7f:90:2e:63:10:35:
52:32:2d:6d:48:2c:ba:9f:15:30:c9:30:dd:ff:8c:
4e:c5:a1:8d:b7:ab:8d:6a:91:07:79:a7:99:8d:84:
7d:af:e4:47:cb:9f:a0:fc:20:5c:56:c2:9c:ad:be:
d9:4d:d8:06:6f:f7:e5:83:b9:39:5c:e7:e4:b1:e0:
2e:da:c7:9b:b7:47:ec:02:bb:c7:8b:d4:b1:55:61:
4a:38:fa:4e:4e:e4:03:94:0e:87:61:58:28:bb:da:
3f:5a:7e:c3:a1:fd:24:93:a4:35:bc:61:e0:30:1c:
44:91:ab:f4:72:66:39:78:84:ed:e9:2f:a2:ef:b3:
00:4d:dd:ab:8f:e6:83:1d:40:bd:d0:78:f8:63:7c:
5e:5e:46:2f:b6:16:31:37:12:e4:fb:c5:7b:0e:13:
a4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:4A:44:4E:E9:08:6B:D4:7F:74:05:26:1B:1E:FD:AF:E2:03:14:26
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eaefb9e-609a-4802-b06c-b7139eb4af45.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.57.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:c6:aa:57:33:d7:0e:5e:75:4a:3e:3f:f7:58:8b:b9:19:16:
62:55:12:88:63:1a:6d:36:92:61:ab:e8:b9:fc:85:3c:c2:76:
ba:87:9b:ed:84:44:6a:28:28:3f:8b:44:a8:3a:be:b9:56:64:
3d:c3:df:4d:10:30:9e:d4:2e:2c:e3:09:94:f0:f4:1b:cd:67:
a5:7b:d8:62:e4:5b:23:97:70:ab:db:05:36:76:4b:c9:e4:06:
77:95:81:66:fb:a8:75:fa:24:40:06:ed:38:53:43:3a:72:2d:
9d:7e:1d:aa:b8:c1:60:ae:b9:7a:8b:ee:00:ae:0e:b6:f6:6c:
e6:41:da:2e:7a:3b:d4:0d:03:1c:03:20:2b:0a:a9:1d:3e:47:
c8:ba:5d:0b:71:a9:13:25:9e:55:df:57:00:7c:5c:4e:d9:d0:
a7:aa:a4:c8:1e:d0:04:5e:be:3a:a3:9e:8f:6f:a2:5a:df:1c:
af:c8:a7:0d:57:08:06:52:fe:14:aa:f9:9d:22:c3:e0:e8:5d:
fb:49:a4:ee:d9:e1:6c:b4:4d:ad:ff:b6:3e:61:fc:65:30:96:
48:54:dc:90:e7:65:56:b0:64:c4:05:cd:73:6f:8a:0f:95:49:
e5:5b:bd:1c:d5:40:ff:a2:32:75:25:26:32:9b:1d:3a:21:d1:
60:c2:13:4c
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUffNhIGRq2IIRFP7CApfih0/ctF8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE2MDAzMDE2WhcNMjUxMjIxMjM1OTU5
WjB6MUkwRwYDVQQFE0AyNDI5ZTJiNDlhYTA5M2RhZjBkZGJiNDJjZTg0YzIxOWYw
ZTVlNmE5MmI5YmYzNzAxMjAxNTkzODgxZDViZTZmMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC7HEUUihHgvwS8A1aiO6eHxkUr1fxSq5pwx9/X4ooOnuKY
yhilfOdbZbjGcNdCNJT6Y6AemXkVfUeYu2OX2ptvS8wM0fnOk5zqJMDulX4CdfrS
0Xh+0yCn5vtItf+SXPpKI3+QLmMQNVIyLW1ILLqfFTDJMN3/jE7FoY23q41qkQd5
p5mNhH2v5EfLn6D8IFxWwpytvtlN2AZv9+WDuTlc5+Sx4C7ax5u3R+wCu8eL1LFV
YUo4+k5O5AOUDodhWCi72j9afsOh/SSTpDW8YeAwHESRq/RyZjl4hO3pL6LvswBN
3auP5oMdQL3QePhjfF5eRi+2FjE3EuT7xXsOE6S7AgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUrUpETukIa9R/dAUmGx79r+IDFCYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzRlYWVmYjllLTYwOWEtNDgwMi1iMDZjLWI3MTM5ZWI0YWY0NS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA4OTANBgkqhkiG9w0BAQsFAAOCAQEALMaqVzPXDl51Sj4/91iLuRkWYlUS
iGMabTaSYavoufyFPMJ2uoeb7YREaigoP4tEqDq+uVZkPcPfTRAwntQuLOMJlPD0
G81npXvYYuRbI5dwq9sFNnZLyeQGd5WBZvuodfokQAbtOFNDOnItnX4dqrjBYK65
eovuAK4OtvZs5kHaLno71A0DHAMgKwqpHT5HyLpdC3GpEyWeVd9XAHxcTtnQp6qk
yB7QBF6+OqOej2+iWt8cr8inDVcIBlL+FKr5nSLD4Ohd+0mk7tnhbLRNrf+2PmH8
ZTCWSFTckOdlVrBkxAXNc2+KD5VJ5Vu9HNVA/6IydSUmMpsdOiHRYMITTA==
-----END CERTIFICATE-----
Generated at Tue Nov 18 09:36:48 2025 by rpki-client