This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa
File:                     17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa (raw, json)
Hash identifier:          1TMFklP+9WVbubKvDY5nVPAXIIxkLTE2gna4Lxr4hic=
Subject key identifier:   36:7B:54:A1:FD:2B:A2:08:7B:A7:89:45:B4:59:BD:54:0B:3D:7A:DC
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       2B66A5F2BD4A6FF347FA754B50F7F4F42641A216
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa
Signing time:             Sun 16 Nov 2025 00:21:12 +0000
ROA not before:           Sun 16 Nov 2025 00:21:12 +0000
ROA not after:            Sun 21 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        165.113.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2b:66:a5:f2:bd:4a:6f:f3:47:fa:75:4b:50:f7:f4:f4:26:41:a2:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 16 00:21:12 2025 GMT
            Not After : Dec 21 23:59:59 2025 GMT
        Subject: serialNumber=91eec10d97a3b6599d97cc047aafb310948b9590b7fda1561d6f3e63e42c68fd, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:ce:ff:10:48:01:56:5c:95:9c:be:ea:da:42:
                    87:8f:03:ea:d3:35:8c:32:35:f0:f4:44:ee:60:79:
                    aa:f2:67:48:fc:b5:57:1d:76:d8:bc:2d:5b:b0:c0:
                    f1:0a:b0:77:c8:ef:95:70:44:0d:87:d4:ed:d7:7e:
                    17:36:3a:c2:f2:df:26:06:22:53:6a:72:9e:84:fc:
                    5c:23:39:9f:51:fc:c9:ca:11:fd:75:a0:73:83:9c:
                    84:9e:02:9e:c3:e7:61:d5:ee:f4:ad:df:9a:88:e9:
                    7a:53:1f:9f:ed:02:68:ce:9b:65:7f:26:04:32:8d:
                    19:0e:37:14:04:8e:88:b3:2b:23:33:d5:c5:8e:d5:
                    8d:a0:1c:89:9a:fe:46:c9:f2:2c:1f:31:e1:44:ce:
                    2c:5a:21:cf:e3:05:05:c6:a4:78:64:c8:98:9b:55:
                    d4:b6:48:34:01:9e:39:ab:43:e1:73:10:68:37:48:
                    f5:93:9a:96:69:c1:cf:fc:34:5a:a9:8c:85:0f:65:
                    21:e5:dd:12:9c:6c:b3:54:22:6c:4c:4b:b3:cb:2c:
                    07:20:a7:db:80:58:fe:90:e9:c1:7f:51:10:3b:a8:
                    df:bb:2e:6b:2b:9a:bd:3e:81:91:63:20:04:fc:9b:
                    33:e0:cf:ee:b3:0e:ca:45:83:3f:3d:8d:ad:a4:f5:
                    ac:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:7B:54:A1:FD:2B:A2:08:7B:A7:89:45:B4:59:BD:54:0B:3D:7A:DC
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  165.113.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         c9:29:df:a7:1c:fc:48:b6:4e:e2:e5:17:30:5e:67:f6:10:7a:
         cb:a4:0c:43:c2:e4:76:8a:40:d4:5c:7e:11:df:b4:e1:6d:9c:
         3c:f9:6d:91:bc:4f:54:59:15:c2:0b:d4:0a:65:db:b9:e1:30:
         82:77:92:f0:fc:e6:6c:cd:f7:2d:00:86:af:54:fd:73:d7:d3:
         34:6e:20:bb:6f:72:74:48:e3:29:ea:7d:c4:2f:70:ce:9e:81:
         33:c0:c3:3d:e1:e8:49:57:13:e3:86:72:6a:22:c4:3e:59:3e:
         2f:ab:03:70:90:af:ae:1d:50:66:a1:d8:db:8e:22:35:86:c4:
         67:9d:26:7c:04:96:3d:c6:f1:30:e7:cd:91:6b:f4:e8:e2:58:
         a2:af:c6:59:74:6c:cf:de:7f:97:42:ea:22:6a:c3:59:b8:b0:
         0e:cc:5c:71:e6:18:95:62:61:3f:db:9a:df:e7:d9:54:36:26:
         53:95:6d:6d:39:e7:41:c7:c5:ac:99:ad:1c:73:85:41:e9:6f:
         2c:4c:49:dd:42:ca:98:76:5f:ec:9b:bc:dc:9e:f6:7c:7a:25:
         7e:e2:9a:aa:d3:a9:13:77:57:b2:37:86:77:44:5d:c0:39:6b:
         ec:87:16:7a:d9:34:d0:18:d9:51:bf:58:80:ab:df:2a:af:96:
         94:69:30:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----