This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa
File:                     a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa (raw, json)
Hash identifier:          jH/4vYFtT3mwn65xO2Qydu9+tPKC7745NbjdmmWnz5M=
Subject key identifier:   AC:1A:BE:BE:A8:35:BF:16:06:75:3A:26:02:18:53:1B:96:B0:A3:FE
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       18598939100B00C2454B0B210CF562D95960126F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa
Signing time:             Tue 11 Nov 2025 01:30:16 +0000
ROA not before:           Tue 11 Nov 2025 01:30:16 +0000
ROA not after:            Tue 16 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        13.192.0.0/13 maxlen: 13
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            18:59:89:39:10:0b:00:c2:45:4b:0b:21:0c:f5:62:d9:59:60:12:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 11 01:30:16 2025 GMT
            Not After : Dec 16 23:59:59 2025 GMT
        Subject: serialNumber=4af46ed7311220670e3a93362981e1f4dff3927a4db67e13e4663ff821300d4d, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:82:93:e0:d3:81:76:84:8b:58:55:d9:66:ad:
                    47:0b:b8:ba:42:b0:d6:e1:c8:83:b7:0a:3f:2d:87:
                    d7:f3:47:38:2b:3a:1e:53:29:77:6c:83:8f:02:c4:
                    ed:bd:89:dc:37:d9:7b:29:83:13:ba:03:0b:35:e9:
                    04:66:a6:e7:a0:dc:72:af:02:e7:45:07:2c:63:81:
                    96:ec:68:ca:80:2a:6f:be:2f:57:90:80:1b:1e:34:
                    d7:83:60:19:cc:3e:b2:62:72:dd:a6:83:47:aa:49:
                    5e:4f:f2:f8:e1:ce:60:fd:49:61:0e:8f:94:64:95:
                    b4:a2:49:eb:9b:58:fc:76:c4:4f:da:9d:55:7f:68:
                    fb:78:9f:c8:e5:db:60:db:87:ff:88:86:9e:4e:0b:
                    db:69:ec:ae:5a:f1:92:80:ce:86:e3:21:c4:74:6e:
                    e8:1d:80:3b:ab:96:22:de:9a:4d:60:97:46:6b:71:
                    d7:0c:94:03:ea:76:f9:65:51:51:da:a7:b1:28:9c:
                    c3:ce:56:eb:9d:08:f6:e6:ee:bd:5f:9b:16:86:11:
                    b6:ce:af:d3:5c:6c:62:87:ed:8e:60:59:bb:56:50:
                    cc:32:a4:6b:c9:78:49:e2:8c:42:a4:7e:a2:2e:ff:
                    c4:93:1e:3c:c2:b7:75:47:db:26:b4:ef:d4:3e:fd:
                    af:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:1A:BE:BE:A8:35:BF:16:06:75:3A:26:02:18:53:1B:96:B0:A3:FE
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  13.192.0.0/13

    Signature Algorithm: sha256WithRSAEncryption
         91:25:13:1b:4b:4e:36:ed:d4:7e:e6:e0:5d:53:81:5e:59:d4:
         a6:70:b3:ec:32:2c:32:4d:dc:97:86:b1:95:6e:97:42:87:d5:
         83:72:5e:d4:dc:7c:7c:1c:18:18:dc:df:a2:2f:bb:64:54:37:
         dc:e7:4b:f8:67:97:c4:54:5f:67:1b:dd:a5:93:d1:57:8b:c4:
         1d:d1:44:cb:df:88:ec:77:31:5d:85:23:6a:2f:ae:4f:08:d4:
         de:03:7f:c2:6d:81:f8:d1:95:15:db:cd:34:ac:9b:26:43:2d:
         d6:af:74:c7:6a:db:bb:c6:b4:74:99:19:8b:cd:3e:cd:c4:cc:
         5c:14:b8:7f:c0:52:fc:44:58:79:b4:73:d2:d8:4f:11:6d:f4:
         42:5d:78:b6:34:d2:fb:4b:6a:ee:d3:d3:ce:66:a4:78:3c:06:
         5f:a2:6f:f7:f2:bf:49:c2:5e:9d:ff:51:d9:eb:55:bb:e9:dd:
         7c:86:c3:ff:a1:16:b4:1a:a5:b9:b7:38:a5:15:43:3f:8c:a7:
         60:88:cf:18:a6:4b:bb:f7:96:3d:34:26:89:76:83:24:ab:7a:
         25:80:16:1b:dd:5e:70:c9:ee:f7:01:c7:22:e2:b7:bb:0b:5f:
         63:b7:b3:54:00:16:97:39:4d:4d:e6:84:af:79:7a:20:c7:34:
         f6:18:09:46
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUGFmJORALAMJFSwshDPVi2VlgEm8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTExMDEzMDE2WhcNMjUxMjE2MjM1OTU5
WjB6MUkwRwYDVQQFE0A0YWY0NmVkNzMxMTIyMDY3MGUzYTkzMzYyOTgxZTFmNGRm
ZjM5MjdhNGRiNjdlMTNlNDY2M2ZmODIxMzAwZDRkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDogpPg04F2hItYVdlmrUcLuLpCsNbhyIO3Cj8th9fzRzgr
Oh5TKXdsg48CxO29idw32XspgxO6Aws16QRmpueg3HKvAudFByxjgZbsaMqAKm++
L1eQgBseNNeDYBnMPrJict2mg0eqSV5P8vjhzmD9SWEOj5RklbSiSeubWPx2xE/a
nVV/aPt4n8jl22Dbh/+Ihp5OC9tp7K5a8ZKAzobjIcR0bugdgDurliLemk1gl0Zr
cdcMlAPqdvllUVHap7EonMPOVuudCPbm7r1fmxaGEbbOr9NcbGKH7Y5gWbtWUMwy
pGvJeEnijEKkfqIu/8STHjzCt3VH2ya079Q+/a9TAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUrBq+vqg1vxYGdTomAhhTG5awo/4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2EzY2NjOTc4LTgwZmItNDgwOC1iZjU1LWEyZDUzNGRkYzY5YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwMNwDANBgkqhkiG9w0BAQsFAAOCAQEAkSUTG0tONu3UfubgXVOBXlnUpnCz
7DIsMk3cl4axlW6XQofVg3Je1Nx8fBwYGNzfoi+7ZFQ33OdL+GeXxFRfZxvdpZPR
V4vEHdFEy9+I7HcxXYUjai+uTwjU3gN/wm2B+NGVFdvNNKybJkMt1q90x2rbu8a0
dJkZi80+zcTMXBS4f8BS/ERYebRz0thPEW30Ql14tjTS+0tq7tPTzmakeDwGX6Jv
9/K/ScJenf9R2etVu+ndfIbD/6EWtBqlubc4pRVDP4ynYIjPGKZLu/eWPTQmiXaD
JKt6JYAWG91ecMnu9wHHIuK3uwtfY7ezVAAWlzlNTeaEr3l6IMc09hgJRg==
-----END CERTIFICATE-----