This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa
File:                     0343534b-f673-4820-a35c-761953dd8136.roa (raw, json)
Hash identifier:          mt42BUrqnhkbKo4nGyOhfXftwx5f05HVnVKXI989sw4=
Subject key identifier:   45:D0:BE:59:EB:0F:53:16:69:80:54:FC:CA:DB:53:C8:7A:7E:06:2B
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       46A44976CBBA8D8B4595AB089BF8F12016AB6942
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa
Signing time:             Thu 20 Nov 2025 00:30:09 +0000
ROA not before:           Thu 20 Nov 2025 00:30:09 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        216.73.208.0/21 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            46:a4:49:76:cb:ba:8d:8b:45:95:ab:08:9b:f8:f1:20:16:ab:69:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:30:09 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=8d306656abd026b050ba0e5fde5f4d2a0e0c668eecb0739c8e1b9881911a4c93, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:5e:a0:22:f4:9c:9f:e0:8d:5c:f5:c1:9d:e1:
                    e4:c6:99:dd:b6:5c:33:82:cd:6a:7e:5d:5b:bc:fc:
                    de:76:a4:f1:5f:46:2b:a0:80:86:22:96:22:82:14:
                    f4:4d:bd:73:e0:9a:53:c3:ba:65:34:da:e5:85:29:
                    72:44:ef:b4:72:55:6e:b9:d9:54:30:6d:fa:6f:ef:
                    cf:35:c6:56:69:a3:87:70:c7:1f:3f:e7:72:12:07:
                    0b:cf:28:9b:ed:88:3d:71:88:08:71:37:ec:8e:80:
                    76:4f:b1:1c:08:bd:b8:5a:5d:46:5a:2e:93:7a:35:
                    63:35:38:41:38:42:37:c3:d0:54:7c:7f:10:11:12:
                    e0:df:a4:f8:42:dc:2b:87:78:b3:e0:fe:50:d1:51:
                    54:75:61:2c:6d:fe:2a:57:94:70:fc:c3:7e:6e:97:
                    02:eb:e5:5c:ba:d6:95:37:d3:3e:a9:a6:78:40:b6:
                    29:e2:84:d9:01:97:3f:6a:9d:4c:13:43:64:da:32:
                    b3:b1:fb:00:c5:f5:56:9c:2c:ab:b5:54:69:b1:bd:
                    d3:a8:64:93:8d:ee:ad:bd:08:6c:f4:92:93:b0:37:
                    53:10:4c:5a:10:9d:ee:cc:19:95:ef:3e:9a:c9:9b:
                    4a:f6:95:72:aa:19:d0:cb:9e:9e:01:bb:10:c5:ee:
                    12:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:D0:BE:59:EB:0F:53:16:69:80:54:FC:CA:DB:53:C8:7A:7E:06:2B
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  216.73.208.0/21

    Signature Algorithm: sha256WithRSAEncryption
         d0:95:62:55:e0:05:b1:b6:6b:a8:6b:dd:2d:b4:72:18:ee:cd:
         b2:10:f1:fe:7c:3b:6c:23:f5:55:7f:16:e7:6e:ee:46:a6:ea:
         85:20:a8:63:7f:07:fe:05:2f:50:23:07:0f:25:b9:d0:f7:1c:
         06:30:62:31:b7:8c:6b:ed:bd:b7:de:85:e5:4e:8e:1a:bd:f5:
         bc:ed:14:bf:65:e6:18:f5:e4:f7:a9:9c:03:f4:4c:92:da:c4:
         e5:b9:fb:76:37:eb:c8:f4:40:19:a5:dc:51:d9:ba:6d:7a:95:
         ef:6d:13:01:0c:9a:82:70:35:cf:96:87:e5:f0:ba:d3:db:c9:
         8a:69:0d:57:90:6d:19:ae:61:b8:e4:28:54:1a:3c:dd:0f:3b:
         64:21:a7:4e:16:12:b9:a8:ec:d7:d6:03:f6:72:c3:a1:d3:aa:
         85:09:87:b2:e9:c0:9d:56:43:5f:16:36:4d:f8:7d:c2:d7:c8:
         70:64:71:5a:7d:62:15:96:f5:ab:60:66:2a:28:d2:06:54:de:
         ee:98:97:a0:f7:54:0d:71:c5:ba:e2:b2:be:ba:84:b9:4f:dd:
         72:a2:f6:4c:9e:7c:aa:cc:e6:c9:79:de:55:b8:7a:f6:1b:cf:
         ce:df:59:35:8f:57:27:90:19:05:b5:86:2f:64:0a:06:78:f6:
         4b:0d:3b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----