Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfba1111-275c-4bb2-8e3f-5ad74cc65c55.roa
File: cfba1111-275c-4bb2-8e3f-5ad74cc65c55.roa (raw, json)
Hash identifier: GW1EZNPc2EN8eNRTnYxS0oQC4YI598OyRYFs8vpZTRc=
Subject key identifier: 23:0C:A8:1B:FF:93:98:8B:A1:CB:1A:87:61:03:5D:B1:95:32:6F:93
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 34FF55AA61D100BF7DF4EC530F47BA624E123D12
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfba1111-275c-4bb2-8e3f-5ad74cc65c55.roa
Signing time: Thu 13 Nov 2025 00:20:42 +0000
ROA not before: Thu 13 Nov 2025 00:20:42 +0000
ROA not after: Thu 18 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.8.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:ff:55:aa:61:d1:00:bf:7d:f4:ec:53:0f:47:ba:62:4e:12:3d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 13 00:20:42 2025 GMT
Not After : Dec 18 23:59:59 2025 GMT
Subject: serialNumber=0dd50f26d611094ed3b6e24ccbe949412ad8b267febece1b275ccae1e5eb385a, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:23:f3:ca:a0:db:f5:17:59:ac:1c:70:ce:12:
86:93:95:27:5f:de:53:ef:d6:dc:0c:16:81:a7:8e:
13:5f:18:ab:a5:f2:d0:3b:78:0c:7b:98:55:eb:a6:
73:ac:ee:e3:da:3f:13:0c:71:2f:59:67:8b:cd:4d:
00:e0:b9:a8:44:07:9b:ba:6d:e4:03:b3:aa:03:d8:
50:0a:3a:dc:49:77:78:9f:d6:d6:e9:6a:39:4f:d1:
b6:32:32:7f:20:9d:9a:d9:1f:9b:19:e8:83:d4:ce:
8b:f1:fd:d0:0d:7a:ac:37:98:d1:e5:4d:58:bf:b2:
fa:15:03:55:e8:a9:c6:eb:79:75:56:4e:99:6b:6e:
aa:f4:97:59:49:2f:54:3a:be:21:44:61:9f:ff:db:
7e:09:e4:84:89:10:d5:09:17:d7:4d:08:14:a1:f8:
2d:84:be:a2:5d:20:72:db:63:94:52:f8:0f:24:68:
00:06:92:50:62:cf:dc:3d:c0:ea:3a:0c:91:c5:12:
a2:8d:54:8a:e9:74:23:79:30:5a:81:57:44:35:71:
23:d8:65:f7:03:65:9b:1e:b9:da:ac:ac:e2:b6:4a:
b1:14:cc:4f:37:a3:1b:e1:9b:f5:0e:a9:7a:d3:f4:
fd:2c:35:41:a3:5f:98:fd:e3:56:0b:87:f4:7f:18:
73:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0C:A8:1B:FF:93:98:8B:A1:CB:1A:87:61:03:5D:B1:95:32:6F:93
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfba1111-275c-4bb2-8e3f-5ad74cc65c55.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.8.0.0/16
Signature Algorithm: sha256WithRSAEncryption
12:34:59:13:d2:e8:70:8d:a0:64:2b:68:3f:9f:81:3a:c2:75:
a4:9d:ab:22:d0:8f:cd:b8:77:74:93:14:0b:34:51:e0:da:02:
67:1f:5d:73:aa:c8:e7:4b:02:fa:e4:9c:33:cd:22:76:89:c9:
d4:1c:f6:0a:ac:b4:65:d3:80:96:ed:ff:1c:c9:d3:58:91:d8:
be:ac:a1:56:fd:3d:cb:2e:05:9e:58:ff:4b:c1:18:6b:74:22:
4a:f0:13:bf:b9:d6:c4:b6:42:c6:39:20:c2:94:44:71:81:4b:
ce:bc:b7:79:a1:b9:1a:fe:81:c8:a8:c1:bb:ff:83:42:eb:84:
dd:be:fb:ba:c1:87:a3:9b:1a:47:00:fd:af:0a:81:5c:0e:e3:
47:bb:14:ee:62:00:72:84:6a:0e:68:bf:a1:d4:8a:55:3d:73:
5d:47:78:80:ba:94:34:88:08:62:d3:6e:22:69:ce:36:ae:a1:
24:81:9c:41:34:32:d3:c3:e3:37:92:9f:5e:fe:1e:fd:00:d3:
25:b6:41:58:d0:56:76:12:4a:68:9a:72:4a:7c:e4:ff:fd:9a:
df:64:92:d2:14:c5:66:c5:12:3f:fd:21:86:8e:28:85:b2:10:
5d:79:2f:90:68:46:dd:6e:49:fb:f3:71:a2:59:c1:97:4f:18:
76:b0:82:be
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUNP9VqmHRAL999OxTD0e6Yk4SPRIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEzMDAyMDQyWhcNMjUxMjE4MjM1OTU5
WjB6MUkwRwYDVQQFE0AwZGQ1MGYyNmQ2MTEwOTRlZDNiNmUyNGNjYmU5NDk0MTJh
ZDhiMjY3ZmViZWNlMWIyNzVjY2FlMWU1ZWIzODVhMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCxI/PKoNv1F1msHHDOEoaTlSdf3lPv1twMFoGnjhNfGKul
8tA7eAx7mFXrpnOs7uPaPxMMcS9ZZ4vNTQDguahEB5u6beQDs6oD2FAKOtxJd3if
1tbpajlP0bYyMn8gnZrZH5sZ6IPUzovx/dANeqw3mNHlTVi/svoVA1XoqcbreXVW
Tplrbqr0l1lJL1Q6viFEYZ//234J5ISJENUJF9dNCBSh+C2EvqJdIHLbY5RS+A8k
aAAGklBiz9w9wOo6DJHFEqKNVIrpdCN5MFqBV0Q1cSPYZfcDZZseudqsrOK2SrEU
zE83oxvhm/UOqXrT9P0sNUGjX5j941YLh/R/GHN7AgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUIwyoG/+TmIuhyxqHYQNdsZUyb5MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2NmYmExMTExLTI3NWMtNGJiMi04ZTNmLTVhZDc0Y2M2NWM1NS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA4CDANBgkqhkiG9w0BAQsFAAOCAQEAEjRZE9LocI2gZCtoP5+BOsJ1pJ2r
ItCPzbh3dJMUCzRR4NoCZx9dc6rI50sC+uScM80idonJ1Bz2Cqy0ZdOAlu3/HMnT
WJHYvqyhVv09yy4Fnlj/S8EYa3QiSvATv7nWxLZCxjkgwpREcYFLzry3eaG5Gv6B
yKjBu/+DQuuE3b77usGHo5saRwD9rwqBXA7jR7sU7mIAcoRqDmi/odSKVT1zXUd4
gLqUNIgIYtNuImnONq6hJIGcQTQy08PjN5KfXv4e/QDTJbZBWNBWdhJKaJpySnzk
//2a32SS0hTFZsUSP/0hho4ohbIQXXkvkGhG3W5J+/NxolnBl08YdrCCvg==
-----END CERTIFICATE-----
Generated at Tue Nov 18 08:23:54 2025 by rpki-client