Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d80389f0-7be4-4924-87be-9b2327840b94.roa
File: d80389f0-7be4-4924-87be-9b2327840b94.roa (raw, json)
Hash identifier: vqpQ3ahPA6tok6lDio0eHbp6jVT8BTf0cjs5xUhuwr4=
Subject key identifier: D2:33:A0:1B:BD:AE:DC:6E:89:D9:F1:A1:29:94:72:ED:C8:80:24:B6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 665AD786239F66F4DC8FD167A36D7A6CB6698E63
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d80389f0-7be4-4924-87be-9b2327840b94.roa
Signing time: Wed 12 Nov 2025 01:00:13 +0000
ROA not before: Wed 12 Nov 2025 01:00:13 +0000
ROA not after: Wed 17 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f1f::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:5a:d7:86:23:9f:66:f4:dc:8f:d1:67:a3:6d:7a:6c:b6:69:8e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 12 01:00:13 2025 GMT
Not After : Dec 17 23:59:59 2025 GMT
Subject: serialNumber=84999580019b684551886608d6ab8579ecdb932afab286f91f331ba5f90305bc, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:7a:3c:ad:34:0d:e5:8a:0c:ea:fe:bb:57:
7b:1d:37:72:73:85:04:fe:a6:dd:98:04:66:4f:61:
54:51:b6:03:26:c5:a8:a0:c1:de:3b:40:87:ac:50:
7a:8f:78:ce:ca:31:ba:5e:43:a6:5c:9d:31:0f:91:
18:fb:0d:15:95:6a:29:32:85:ab:47:b3:61:fa:81:
e9:a8:5d:5a:5b:b1:7a:76:92:af:c1:67:0d:f9:57:
40:21:34:fc:d3:e2:14:99:83:5d:73:7d:da:9a:bb:
3c:bb:1a:d3:2d:b5:87:7e:75:8a:a0:bc:a9:e3:31:
1c:d0:b3:40:7e:d7:4f:6d:f2:77:ed:3e:9c:33:9c:
b3:12:7b:7b:e0:ff:5f:81:56:94:63:dd:2c:ad:18:
ec:29:08:c2:ec:c9:27:21:4a:be:d9:ae:48:6f:d7:
26:df:c2:e9:76:72:12:5f:f1:dd:d0:f8:e3:f9:aa:
42:ea:9c:28:8f:c3:da:bb:5a:df:ab:b1:42:12:9c:
09:49:39:e2:cc:6b:a6:50:98:f4:74:7e:b4:8e:8f:
a0:ca:0d:00:6b:1c:8a:4e:41:53:b7:9b:8b:a8:9a:
60:39:a4:76:7e:dd:9f:03:35:14:0d:99:04:11:4f:
f5:ea:e2:9b:69:60:06:1c:7f:c4:64:72:58:e7:3d:
77:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:33:A0:1B:BD:AE:DC:6E:89:D9:F1:A1:29:94:72:ED:C8:80:24:B6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d80389f0-7be4-4924-87be-9b2327840b94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f1f::/36
Signature Algorithm: sha256WithRSAEncryption
46:0f:c0:8a:ed:86:6b:76:b0:06:e0:6c:27:a8:02:8f:61:36:
2c:3a:b6:a8:34:54:ef:52:e8:ed:e4:92:6d:cc:01:f6:49:c0:
42:9b:26:d1:ba:81:39:71:78:39:57:79:26:41:a0:62:0c:94:
62:27:0d:2f:98:5b:bc:e8:ad:5d:b5:ba:86:7b:04:b2:f6:cb:
9b:87:16:00:bb:29:35:e7:a1:78:a0:83:c3:04:2b:ac:c1:7c:
e0:04:c9:b1:8b:8d:9e:3b:c3:8f:e9:2c:d0:54:c3:05:c6:35:
7d:40:8b:2d:8f:66:09:c4:fd:d2:ed:66:d7:6e:73:cc:3a:4d:
2f:04:93:28:2d:d0:8d:a0:7f:57:38:3e:3d:53:db:67:a8:9d:
67:4b:d8:5b:84:db:55:8d:41:cb:a5:3f:ba:75:0b:53:c6:56:
af:bf:40:e0:18:f3:d8:b2:77:e3:aa:4a:63:86:6a:ea:94:45:
27:b5:a2:05:5a:f6:2e:01:30:43:65:14:90:e9:0b:eb:53:96:
59:db:63:30:1a:aa:66:34:79:9f:10:7c:78:00:e5:b5:4b:c2:
69:6e:29:07:52:2d:a2:35:59:50:33:4a:81:50:17:88:a0:6c:
63:a6:cb:21:e4:00:fe:1c:49:17:13:5a:70:f5:b5:d8:0e:08:
6b:94:a1:91
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUZlrXhiOfZvTcj9Fno216bLZpjmMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDEwMDEzWhcNMjUxMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0A4NDk5OTU4MDAxOWI2ODQ1NTE4ODY2MDhkNmFiODU3OWVj
ZGI5MzJhZmFiMjg2ZjkxZjMzMWJhNWY5MDMwNWJjMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCsSno8rTQN5YoM6v67V3sdN3JzhQT+pt2YBGZPYVRRtgMm
xaigwd47QIesUHqPeM7KMbpeQ6ZcnTEPkRj7DRWVaikyhatHs2H6gemoXVpbsXp2
kq/BZw35V0AhNPzT4hSZg11zfdqauzy7GtMttYd+dYqgvKnjMRzQs0B+109t8nft
PpwznLMSe3vg/1+BVpRj3SytGOwpCMLsySchSr7Zrkhv1ybfwul2chJf8d3Q+OP5
qkLqnCiPw9q7Wt+rsUISnAlJOeLMa6ZQmPR0frSOj6DKDQBrHIpOQVO3m4uommA5
pHZ+3Z8DNRQNmQQRT/Xq4ptpYAYcf8RkcljnPXd7AgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQU0jOgG72u3G6J2fGhKZRy7ciAJLYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2Q4MDM4OWYwLTdiZTQtNDkyNC04N2JlLTliMjMyNzg0MGI5NC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgQmAB8fADANBgkqhkiG9w0BAQsFAAOCAQEARg/Aiu2Ga3awBuBsJ6gCj2E2
LDq2qDRU71Lo7eSSbcwB9knAQpsm0bqBOXF4OVd5JkGgYgyUYicNL5hbvOitXbW6
hnsEsvbLm4cWALspNeeheKCDwwQrrMF84ATJsYuNnjvDj+ks0FTDBcY1fUCLLY9m
CcT90u1m125zzDpNLwSTKC3QjaB/Vzg+PVPbZ6idZ0vYW4TbVY1By6U/unULU8ZW
r79A4Bjz2LJ346pKY4Zq6pRFJ7WiBVr2LgEwQ2UUkOkL61OWWdtjMBqqZjR5nxB8
eADltUvCaW4pB1ItojVZUDNKgVAXiKBsY6bLIeQA/hxJFxNacPW12A4Ia5ShkQ==
-----END CERTIFICATE-----
Generated at Tue Nov 18 05:47:51 2025 by rpki-client