Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da693591-855b-455b-a808-33c8fa0c4089.roa
File: da693591-855b-455b-a808-33c8fa0c4089.roa (raw, json)
Hash identifier: 53HDPVbyglLN0FxI+PwH4eyy91rXqlmqnijY9vHYIOU=
Subject key identifier: 13:BC:5A:3D:BA:9B:12:51:11:1F:99:4C:09:32:EF:6E:57:30:CB:79
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 22FA78F1354E89AB0E2AD915EEBFF345223873C5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da693591-855b-455b-a808-33c8fa0c4089.roa
Signing time: Mon 06 Oct 2025 16:38:26 +0000
ROA not before: Mon 06 Oct 2025 16:38:26 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 50.19.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:fa:78:f1:35:4e:89:ab:0e:2a:d9:15:ee:bf:f3:45:22:38:73:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 16:38:26 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=4defb168aa080ac233a0f60a3a33a2d169ab3bd27ef3317a152dccfe470c2a14, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:02:79:36:21:90:c8:95:e7:91:45:9e:0f:46:
f2:f2:61:d9:ab:28:aa:38:02:06:9d:3d:8d:f7:84:
cc:da:64:34:7e:71:ea:20:1f:f0:fd:d9:01:dc:5c:
57:32:20:74:15:88:60:56:57:b9:a4:23:f1:b8:07:
6e:f9:de:0e:08:73:c0:c3:de:0a:39:35:f3:af:b7:
5d:c5:f5:8a:1d:01:37:f0:59:bb:1b:0c:27:d9:8e:
91:67:ec:57:e8:eb:eb:06:91:eb:36:e6:8b:43:2b:
82:c2:5a:a8:74:e6:08:27:bd:ee:2a:21:18:8f:12:
3e:fd:f6:1a:bf:74:ed:a8:59:42:74:9a:a6:2c:ca:
b7:06:3d:04:f6:10:a2:1d:9d:ef:f3:01:11:98:b0:
fc:40:c5:b8:56:0e:d0:7b:ac:2c:06:21:58:ec:ae:
18:e0:91:19:c2:b2:70:0b:18:0d:fd:9d:1c:20:ac:
6f:5a:e2:a9:33:d8:73:ad:fe:5e:58:0e:a0:81:25:
3e:9a:cf:96:0b:09:cd:03:dc:89:1a:b8:1f:af:5a:
b9:7d:5a:f2:70:f6:0d:bb:76:cc:24:4a:a1:6c:34:
ab:4e:0c:0e:c3:b1:19:f3:61:41:c7:cb:1e:04:77:
7b:10:13:33:f9:77:88:5b:b8:c1:9c:e6:fc:89:57:
9a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BC:5A:3D:BA:9B:12:51:11:1F:99:4C:09:32:EF:6E:57:30:CB:79
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da693591-855b-455b-a808-33c8fa0c4089.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.19.64.0/20
Signature Algorithm: sha256WithRSAEncryption
ad:ad:74:af:1e:f4:49:d9:03:34:f7:51:61:1c:af:76:5c:3b:
e3:66:d0:57:9e:64:37:4b:4c:59:25:9e:5f:0f:b0:e5:10:1a:
38:ea:1c:01:01:6a:4c:94:9d:22:67:0e:34:55:85:82:07:32:
b8:a8:b5:29:81:04:91:b2:af:93:0b:0b:6c:74:4a:27:d1:90:
6e:c6:60:56:8b:4f:d8:82:88:e7:50:6f:36:62:bd:d4:af:1a:
82:7a:cb:5d:92:83:9f:76:eb:cc:20:29:75:dc:a8:87:fb:ca:
9c:1e:85:9e:45:c0:78:d2:61:aa:2a:6b:4f:29:85:28:e0:e2:
f6:91:2e:18:70:a5:02:1a:87:23:1a:c3:6e:41:8a:aa:3d:e5:
9d:e8:c8:c1:a2:f5:c5:29:c9:00:5f:59:6d:bb:a7:a0:80:7f:
5c:1e:4e:10:a4:d9:62:bb:f6:00:ab:7b:83:06:19:d2:7e:30:
0d:23:c7:40:75:0a:f4:e5:a6:2b:c5:05:f1:43:22:94:f7:0a:
6e:32:0d:96:d5:71:72:66:94:ab:1c:ad:67:9d:15:46:f9:bb:
ab:26:eb:34:69:1c:4e:db:a5:97:a0:34:55:e0:a7:a2:b9:b9:
ba:ac:1a:a5:ac:32:19:9a:49:45:7b:97:e8:e0:01:ad:8d:61:
28:b2:58:46
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUIvp48TVOiasOKtkV7r/zRSI4c8UwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDA2MTYzODI2WhcNMjUxMTEwMjM1OTU5
WjB6MUkwRwYDVQQFE0A0ZGVmYjE2OGFhMDgwYWMyMzNhMGY2MGEzYTMzYTJkMTY5
YWIzYmQyN2VmMzMxN2ExNTJkY2NmZTQ3MGMyYTE0MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCWAnk2IZDIleeRRZ4PRvLyYdmrKKo4AgadPY33hMzaZDR+
ceogH/D92QHcXFcyIHQViGBWV7mkI/G4B2753g4Ic8DD3go5NfOvt13F9YodATfw
WbsbDCfZjpFn7Ffo6+sGkes25otDK4LCWqh05ggnve4qIRiPEj799hq/dO2oWUJ0
mqYsyrcGPQT2EKIdne/zARGYsPxAxbhWDtB7rCwGIVjsrhjgkRnCsnALGA39nRwg
rG9a4qkz2HOt/l5YDqCBJT6az5YLCc0D3IkauB+vWrl9WvJw9g27dswkSqFsNKtO
DA7DsRnzYUHHyx4Ed3sQEzP5d4hbuMGc5vyJV5pBAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUE7xaPbqbElERH5lMCTLvblcwy3kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2RhNjkzNTkxLTg1NWItNDU1Yi1hODA4LTMzYzhmYTBjNDA4OS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQyE0AwDQYJKoZIhvcNAQELBQADggEBAK2tdK8e9EnZAzT3UWEcr3ZcO+Nm
0FeeZDdLTFklnl8PsOUQGjjqHAEBakyUnSJnDjRVhYIHMriotSmBBJGyr5MLC2x0
SifRkG7GYFaLT9iCiOdQbzZivdSvGoJ6y12Sg59268wgKXXcqIf7ypwehZ5FwHjS
Yaoqa08phSjg4vaRLhhwpQIahyMaw25Biqo95Z3oyMGi9cUpyQBfWW27p6CAf1we
ThCk2WK79gCre4MGGdJ+MA0jx0B1CvTlpivFBfFDIpT3Cm4yDZbVcXJmlKscrWed
FUb5u6sm6zRpHE7bpZegNFXgp6K5ubqsGqWsMhmaSUV7l+jgAa2NYSiyWEY=
-----END CERTIFICATE-----
Generated at Wed Oct 8 21:19:53 2025 by rpki-client