This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa
File:                     04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa (raw, json)
Hash identifier:          PAGXjDXSWhHa77MF0/aGFlDeM0/etBBYTEahX/eqhLQ=
Subject key identifier:   8F:5E:57:D5:DF:18:92:C1:F3:EA:52:9B:67:B1:C2:6D:9F:D7:33:B7
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       5EA73B89FE8F6D7D71701840F81A84B13C043737
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa
Signing time:             Thu 20 Nov 2025 00:31:31 +0000
ROA not before:           Thu 20 Nov 2025 00:31:31 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        209.54.160.0/19 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5e:a7:3b:89:fe:8f:6d:7d:71:70:18:40:f8:1a:84:b1:3c:04:37:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:31:31 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=de6f8243c7a382edc96614c3247d5599ac3d96224ed764bf82c6cc4ee9074256, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:3b:df:b7:55:10:05:a3:77:35:85:18:8d:b5:
                    cc:c6:87:98:8c:75:8e:0e:30:df:b7:4d:39:1d:8a:
                    46:78:7c:7d:79:a5:6e:fc:d5:62:0d:42:13:4a:1e:
                    29:1a:b8:f3:8b:48:85:2d:b8:f4:ce:b4:4c:e7:b4:
                    33:32:1f:df:40:47:41:1a:d2:f5:fc:6f:2a:1d:b7:
                    46:e1:cd:9c:99:fd:fd:d4:89:8b:15:bf:2e:c5:ff:
                    42:17:18:ca:8c:0b:fa:29:a0:87:d5:28:e8:dc:ec:
                    5b:56:cd:66:91:f9:12:1b:c4:8b:6f:cc:b7:ab:73:
                    ba:12:1e:f6:a5:1e:fd:59:4f:46:4b:73:85:c7:2a:
                    f0:b6:54:ee:c6:92:6d:65:aa:be:dd:00:8f:4f:a4:
                    d4:0f:e1:22:04:ea:d5:87:c2:4e:3f:a8:a0:12:99:
                    14:34:1e:18:1c:6b:00:03:91:94:9e:74:3a:80:1f:
                    9d:de:0a:1b:63:6b:09:ad:b6:30:9a:f6:a1:b3:11:
                    41:fe:68:e5:ad:21:a1:2e:9d:0b:f8:dd:29:05:b4:
                    1c:8c:dc:e0:8a:d4:cf:6a:1a:07:ae:ad:ed:a0:96:
                    87:81:bc:bf:d4:2b:12:85:c6:04:16:a2:a5:c6:dc:
                    d4:b1:46:94:d9:b5:38:9d:6b:d0:a7:92:01:97:c0:
                    99:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:5E:57:D5:DF:18:92:C1:F3:EA:52:9B:67:B1:C2:6D:9F:D7:33:B7
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  209.54.160.0/19

    Signature Algorithm: sha256WithRSAEncryption
         82:0d:57:a5:2d:e7:63:0b:e7:39:1b:1a:0e:5d:0b:62:cc:fb:
         03:dc:a7:ca:02:be:c5:a9:60:90:f1:b1:f6:ff:11:57:d5:f9:
         1b:7f:12:86:45:f8:5b:7a:ca:77:b1:cb:6f:f2:ee:b7:c2:8b:
         f4:f2:42:de:3c:c4:e0:63:96:94:30:9a:f2:c3:0f:e4:55:8c:
         94:b0:f2:a1:fd:bb:50:7d:de:e7:3a:47:7f:f6:cb:eb:a1:7b:
         fd:b3:93:01:5b:ff:15:3e:1c:65:22:8e:34:bd:8b:b2:0a:db:
         bb:ba:7b:c0:4e:9c:95:7c:80:85:dc:23:6d:46:e8:37:0b:35:
         4d:8b:d1:90:2f:f7:27:0a:68:85:92:41:a2:cc:00:1d:8c:94:
         e0:b8:ea:bf:62:47:b0:23:75:0e:3d:4d:ce:ba:3a:dc:bd:6e:
         20:3e:a3:ec:05:92:6c:a8:21:42:b5:87:b7:75:04:1f:46:05:
         2a:a1:b0:9a:24:11:94:47:b7:bd:a2:0d:41:2f:cf:f8:69:fc:
         4d:b1:fb:39:5f:b1:fd:b0:89:0d:c2:86:8e:c2:e1:55:a5:4f:
         3f:e0:1d:f2:1f:ba:20:11:c0:4c:34:b8:4d:17:6a:12:34:7e:
         1d:2e:0b:9a:47:d1:36:20:32:ee:f6:a9:eb:2a:cd:83:d5:d0:
         b3:b9:b0:9d
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUXqc7if6PbX1xcBhA+BqEsTwENzcwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDAzMTMxWhcNMjYwMjE4MjM1OTU5
WjB6MUkwRwYDVQQFE0BkZTZmODI0M2M3YTM4MmVkYzk2NjE0YzMyNDdkNTU5OWFj
M2Q5NjIyNGVkNzY0YmY4MmM2Y2M0ZWU5MDc0MjU2MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDRO9+3VRAFo3c1hRiNtczGh5iMdY4OMN+3TTkdikZ4fH15
pW781WINQhNKHikauPOLSIUtuPTOtEzntDMyH99AR0Ea0vX8byodt0bhzZyZ/f3U
iYsVvy7F/0IXGMqMC/opoIfVKOjc7FtWzWaR+RIbxItvzLerc7oSHvalHv1ZT0ZL
c4XHKvC2VO7Gkm1lqr7dAI9PpNQP4SIE6tWHwk4/qKASmRQ0HhgcawADkZSedDqA
H53eChtjawmttjCa9qGzEUH+aOWtIaEunQv43SkFtByM3OCK1M9qGgeure2gloeB
vL/UKxKFxgQWoqXG3NSxRpTZtTida9CnkgGXwJmXAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUj15X1d8YksHz6lKbZ7HCbZ/XM7cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzA0ZWUwM2I3LTEyYTYtNDFhOS1hMGNlLWFiN2UxOTdkMGFjMy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAXRNqAwDQYJKoZIhvcNAQELBQADggEBAIINV6Ut52ML5zkbGg5dC2LM+wPc
p8oCvsWpYJDxsfb/EVfV+Rt/EoZF+Ft6ynexy2/y7rfCi/TyQt48xOBjlpQwmvLD
D+RVjJSw8qH9u1B93uc6R3/2y+uhe/2zkwFb/xU+HGUijjS9i7IK27u6e8BOnJV8
gIXcI21G6DcLNU2L0ZAv9ycKaIWSQaLMAB2MlOC46r9iR7AjdQ49Tc66Oty9biA+
o+wFkmyoIUK1h7d1BB9GBSqhsJokEZRHt72iDUEvz/hp/E2x+zlfsf2wiQ3Cho7C
4VWlTz/gHfIfuiARwEw0uE0XahI0fh0uC5pH0TYgMu72qesqzYPV0LO5sJ0=
-----END CERTIFICATE-----