Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa
File: 5e83772b-20e7-44cd-b060-03d5950ee025.roa (raw, json)
Hash identifier: Kr4BQobv2qihIU4P9gki8UBm7wWww//J2u9JXB2LqRc=
Subject key identifier: D9:4A:1D:A9:DF:8D:16:6F:A2:0C:B6:F8:02:BC:C7:14:3D:45:0F:99
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4DA2C7550F7AE47BF49E5FB5EC1548D23C3651BB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa
Signing time: Wed 22 Oct 2025 00:31:57 +0000
ROA not before: Wed 22 Oct 2025 00:31:57 +0000
ROA not after: Wed 26 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.149.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:a2:c7:55:0f:7a:e4:7b:f4:9e:5f:b5:ec:15:48:d2:3c:36:51:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 22 00:31:57 2025 GMT
Not After : Nov 26 23:59:59 2025 GMT
Subject: serialNumber=c3feccc046009380c96af87306445bc225d0d7ed25d85a54f95b1b368fea1a72, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d8:c7:cd:5e:cb:75:a1:26:50:9a:b9:27:8a:
2e:16:c3:81:99:bf:a7:cb:05:14:fe:67:27:39:8a:
a9:dd:9a:c0:a8:72:d8:14:bc:23:bb:ea:6b:30:c2:
e3:69:91:8e:26:eb:65:99:48:ee:f1:85:f7:84:84:
a2:19:a2:25:e4:4c:aa:bc:e1:0e:c7:39:ee:48:91:
40:b0:07:a9:01:23:c2:e6:c5:d5:5f:d3:ff:46:6e:
a7:4d:93:e6:86:61:49:17:3c:71:5d:3e:35:73:fc:
c1:d8:93:32:62:0b:43:2a:95:16:7b:61:bc:0d:ab:
7e:9c:91:dc:24:ed:2e:f1:71:ee:aa:34:00:fb:af:
04:ba:9a:93:0e:70:ee:0e:dd:0f:32:4d:9e:9a:78:
c3:82:63:3c:15:c4:74:5f:65:f2:b4:db:f8:8e:14:
e5:1d:b5:89:c0:47:ff:b3:69:06:1b:95:18:7d:d8:
fa:bd:05:4a:8f:f8:a1:24:58:d4:82:09:b9:fe:5c:
f8:0d:b0:8a:10:9f:60:75:e8:da:d9:7d:0f:b3:8f:
cf:ba:78:ad:d1:03:c2:e6:ca:63:b8:31:07:15:cf:
46:5f:c2:ef:51:d7:6c:09:9b:fc:80:b2:97:72:85:
df:ee:92:60:d2:ed:de:31:e9:43:83:95:8c:5d:5f:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4A:1D:A9:DF:8D:16:6F:A2:0C:B6:F8:02:BC:C7:14:3D:45:0F:99
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.149.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4a:75:7a:da:a5:15:e5:87:d6:2b:88:d9:2b:65:fc:9e:a1:6c:
e9:f3:70:94:b2:6e:ac:4a:a8:c7:bc:a5:bf:fe:17:0b:d9:15:
b4:27:d1:32:9e:04:b1:3e:f8:f4:2a:65:98:cd:f0:e3:31:e9:
54:6d:9a:8e:93:ad:17:38:d1:14:dc:27:18:69:af:5b:a1:b6:
66:60:76:97:41:af:c6:1e:49:22:9e:2c:68:fe:d5:e4:11:44:
4e:a1:22:c2:60:29:e0:fd:62:ed:86:bd:07:0f:22:69:6b:be:
84:78:74:af:a7:51:da:94:e8:96:03:86:c0:c0:30:8d:55:31:
6e:e5:f7:4d:c2:ce:86:24:bb:9d:dc:33:80:2e:33:4b:de:56:
f1:13:fe:9d:6b:8d:ee:b8:ea:0b:0f:83:e5:ea:a0:af:cf:14:
40:09:31:d2:3a:b3:e3:be:d5:b6:35:52:fa:2c:d9:22:c7:2d:
5b:c3:b3:d7:12:ee:61:31:c5:62:8b:64:20:e2:e9:3a:a3:09:
47:8f:c1:2a:16:ab:cb:e1:89:1b:54:97:6c:03:6a:87:c8:ad:
5b:80:46:d5:c9:c0:3a:23:7b:4d:38:0a:95:63:27:c9:d8:30:
6d:dd:81:d4:ef:a5:ec:3d:19:95:aa:69:ad:b9:90:00:5d:0f:
64:00:70:db
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUTaLHVQ965Hv0nl+17BVI0jw2UbswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDIyMDAzMTU3WhcNMjUxMTI2MjM1OTU5
WjB6MUkwRwYDVQQFE0BjM2ZlY2NjMDQ2MDA5MzgwYzk2YWY4NzMwNjQ0NWJjMjI1
ZDBkN2VkMjVkODVhNTRmOTViMWIzNjhmZWExYTcyMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDb2MfNXst1oSZQmrknii4Ww4GZv6fLBRT+Zyc5iqndmsCo
ctgUvCO76mswwuNpkY4m62WZSO7xhfeEhKIZoiXkTKq84Q7HOe5IkUCwB6kBI8Lm
xdVf0/9GbqdNk+aGYUkXPHFdPjVz/MHYkzJiC0MqlRZ7YbwNq36ckdwk7S7xce6q
NAD7rwS6mpMOcO4O3Q8yTZ6aeMOCYzwVxHRfZfK02/iOFOUdtYnAR/+zaQYblRh9
2Pq9BUqP+KEkWNSCCbn+XPgNsIoQn2B16NrZfQ+zj8+6eK3RA8LmymO4MQcVz0Zf
wu9R12wJm/yAspdyhd/ukmDS7d4x6UODlYxdX3GlAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQU2Uodqd+NFm+iDLb4ArzHFD1FD5kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzVlODM3NzJiLTIwZTctNDRjZC1iMDYwLTAzZDU5NTBlZTAyNS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA4lTANBgkqhkiG9w0BAQsFAAOCAQEASnV62qUV5YfWK4jZK2X8nqFs6fNw
lLJurEqox7ylv/4XC9kVtCfRMp4EsT749CplmM3w4zHpVG2ajpOtFzjRFNwnGGmv
W6G2ZmB2l0Gvxh5JIp4saP7V5BFETqEiwmAp4P1i7Ya9Bw8iaWu+hHh0r6dR2pTo
lgOGwMAwjVUxbuX3TcLOhiS7ndwzgC4zS95W8RP+nWuN7rjqCw+D5eqgr88UQAkx
0jqz477VtjVS+izZIsctW8Oz1xLuYTHFYotkIOLpOqMJR4/BKhary+GJG1SXbANq
h8itW4BG1cnAOiN7TTgKlWMnydgwbd2B1O+l7D0ZlapprbmQAF0PZABw2w==
-----END CERTIFICATE-----
Generated at Sun Nov 2 15:29:30 2025 by rpki-client