Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3d568b3-98ee-45ff-97df-8b3fdeeaaade.roa
File: d3d568b3-98ee-45ff-97df-8b3fdeeaaade.roa (raw, json)
Hash identifier: opvreolXAQ5TUV6TMZBYtg8zeZlrlOJKOUds/xXHY7Q=
Subject key identifier: 57:57:54:77:58:F8:EC:BC:A0:76:66:EC:AA:C3:43:C1:1E:6D:A5:77
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 09DBA2D26AC1C1DCFB90B3998F9F79649B2A0693
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3d568b3-98ee-45ff-97df-8b3fdeeaaade.roa
Signing time: Sat 25 Oct 2025 00:00:36 +0000
ROA not before: Sat 25 Oct 2025 00:00:36 +0000
ROA not after: Sat 29 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 160.223.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:db:a2:d2:6a:c1:c1:dc:fb:90:b3:99:8f:9f:79:64:9b:2a:06:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 25 00:00:36 2025 GMT
Not After : Nov 29 23:59:59 2025 GMT
Subject: serialNumber=9634310541e120347b9f7b4b2d672cc1d39919ed3c69c33da458bbb0bf6865ba, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b2:76:9e:f2:24:53:20:71:6f:89:04:14:57:
57:4c:70:91:da:5d:68:47:34:96:31:37:b2:a5:51:
ad:ce:20:bd:c7:df:8d:b8:39:c4:ae:5a:d7:68:cf:
9f:ef:7c:a4:6b:74:49:34:aa:a1:c3:08:76:63:8e:
a2:c7:7f:93:dd:80:c9:10:b8:56:bd:c5:04:97:7f:
9a:84:7c:a0:c1:3d:37:a0:67:53:c7:98:08:5f:09:
85:c8:47:79:1f:7a:72:d6:ea:0f:2f:41:dc:30:a3:
2e:3c:0c:b4:b7:d8:e0:71:4d:c6:46:34:69:6e:c4:
90:3d:97:59:6a:64:e6:ee:f8:d5:ee:19:68:2b:e1:
9a:88:cd:fd:7a:7c:80:d2:05:97:c6:c6:8d:ca:e4:
49:69:43:ac:41:ab:14:70:15:c1:e4:4a:04:94:8c:
51:bd:d0:e0:0b:68:27:7f:ba:fd:07:d4:f1:45:16:
03:60:91:46:2a:62:f1:a5:da:45:7a:18:dc:0b:53:
16:d8:a3:01:22:bd:07:5b:bf:0c:ed:33:0b:aa:48:
72:c7:a9:d2:b4:00:c4:33:2f:cf:e0:40:f9:d8:2a:
00:18:22:93:83:1f:07:16:bd:ba:3a:9a:10:43:d1:
d1:ab:8b:e3:92:5b:25:24:85:42:56:b0:1c:79:f2:
38:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:57:54:77:58:F8:EC:BC:A0:76:66:EC:AA:C3:43:C1:1E:6D:A5:77
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3d568b3-98ee-45ff-97df-8b3fdeeaaade.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.223.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8e:92:12:e1:0f:f7:ac:df:ab:56:36:f7:57:4c:8d:13:44:72:
78:48:a8:83:79:7b:d1:2d:ea:d7:11:99:1c:49:87:c2:79:1f:
f8:2f:7a:be:da:3c:f0:eb:e6:81:a1:d1:97:3b:9c:c8:1c:01:
a9:7c:1c:08:26:d4:64:27:e7:bf:88:89:5e:d3:f9:96:17:24:
f5:0d:49:8d:1c:df:93:32:0f:4b:4b:0c:27:73:bd:c0:c4:22:
b6:59:75:58:d6:fa:32:4c:20:43:31:34:e2:da:cd:5d:d1:49:
f3:6f:8d:f3:76:f1:88:3a:23:e2:2d:71:bd:ac:f7:6d:21:4f:
d1:f8:3b:c4:9d:36:3e:b7:16:6e:bd:05:86:c0:98:b1:0f:dc:
d5:29:8d:59:38:6f:ec:7a:ff:cc:63:83:23:d6:71:3e:37:67:
79:f1:d9:ae:ba:05:09:9a:ff:e7:f7:2c:1f:11:fa:c0:7f:50:
47:1a:bc:e1:70:6f:68:b7:df:ef:78:ac:12:e9:ca:71:c8:57:
9a:44:7f:fd:71:18:02:ab:54:a5:e2:c8:9b:9c:55:72:71:44:
e8:7d:b2:52:6e:8e:ab:42:7f:56:8f:52:68:47:9d:29:57:2f:
03:10:86:79:93:74:33:9f:84:01:bc:f5:7b:ce:4e:2b:6f:a6:
c8:77:78:27
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUCdui0mrBwdz7kLOZj595ZJsqBpMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMDI1MDAwMDM2WhcNMjUxMTI5MjM1OTU5
WjB6MUkwRwYDVQQFE0A5NjM0MzEwNTQxZTEyMDM0N2I5ZjdiNGIyZDY3MmNjMWQz
OTkxOWVkM2M2OWMzM2RhNDU4YmJiMGJmNjg2NWJhMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCesnae8iRTIHFviQQUV1dMcJHaXWhHNJYxN7KlUa3OIL3H
3424OcSuWtdoz5/vfKRrdEk0qqHDCHZjjqLHf5PdgMkQuFa9xQSXf5qEfKDBPTeg
Z1PHmAhfCYXIR3kfenLW6g8vQdwwoy48DLS32OBxTcZGNGluxJA9l1lqZObu+NXu
GWgr4ZqIzf16fIDSBZfGxo3K5ElpQ6xBqxRwFcHkSgSUjFG90OALaCd/uv0H1PFF
FgNgkUYqYvGl2kV6GNwLUxbYowEivQdbvwztMwuqSHLHqdK0AMQzL8/gQPnYKgAY
IpODHwcWvbo6mhBD0dGri+OSWyUkhUJWsBx58jhBAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUV1dUd1j47LygdmbsqsNDwR5tpXcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2QzZDU2OGIzLTk4ZWUtNDVmZi05N2RmLThiM2ZkZWVhYWFkZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAeg3wAwDQYJKoZIhvcNAQELBQADggEBAI6SEuEP96zfq1Y291dMjRNEcnhI
qIN5e9Et6tcRmRxJh8J5H/gver7aPPDr5oGh0Zc7nMgcAal8HAgm1GQn57+IiV7T
+ZYXJPUNSY0c35MyD0tLDCdzvcDEIrZZdVjW+jJMIEMxNOLazV3RSfNvjfN28Yg6
I+Itcb2s920hT9H4O8SdNj63Fm69BYbAmLEP3NUpjVk4b+x6/8xjgyPWcT43Z3nx
2a66BQma/+f3LB8R+sB/UEcavOFwb2i33+94rBLpynHIV5pEf/1xGAKrVKXiyJuc
VXJxROh9slJujqtCf1aPUmhHnSlXLwMQhnmTdDOfhAG89XvOTitvpsh3eCc=
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:39:29 2025 by rpki-client