This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05112af9-edc2-463f-88f6-9c849e7e66a0.roa
File:                     05112af9-edc2-463f-88f6-9c849e7e66a0.roa (raw, json)
Hash identifier:          asY6t5doJ+vbQwsQC9tTk0Ya8vMq9uMz8Ltzbcl2KRE=
Subject key identifier:   B9:42:A1:A8:0D:55:C0:A5:4E:D8:38:AA:A8:AB:E1:E7:54:37:3F:DB
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       4CE3779E6154490D65AC7556325CD5657FA31ECB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05112af9-edc2-463f-88f6-9c849e7e66a0.roa
Signing time:             Sat 22 Nov 2025 00:11:01 +0000
ROA not before:           Sat 22 Nov 2025 00:11:01 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        64.252.68.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4c:e3:77:9e:61:54:49:0d:65:ac:75:56:32:5c:d5:65:7f:a3:1e:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 00:11:01 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=a82744e3d2671cd1c0a3cfdd9abbcaea67de59cdf8ac0203612b6e77ff074eb7, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:ba:fe:78:46:4b:c3:07:f3:9f:db:5a:10:8b:
                    55:4e:21:08:0c:f2:4e:21:08:54:e2:cd:66:84:dd:
                    70:65:1e:9b:5e:85:6a:61:e1:db:94:7a:b7:47:73:
                    6e:f6:25:19:5e:94:88:c0:90:a4:5c:26:19:39:cb:
                    1d:fc:77:64:8e:e3:8a:ae:16:40:f4:5e:86:8b:46:
                    2c:34:e4:62:f0:86:45:c6:a5:1e:e0:73:07:e6:c1:
                    f0:77:2a:66:b1:56:81:f3:3b:16:dc:3b:85:23:60:
                    a6:a6:d3:60:22:cb:09:c6:ed:1c:fc:93:e3:3d:f2:
                    2d:ae:53:30:1b:1e:53:d5:52:6e:1f:dc:37:d6:03:
                    5b:01:19:e6:e8:ac:b0:67:33:28:ab:74:ee:65:e4:
                    aa:c1:17:85:af:d0:c9:e5:24:c9:a4:e8:a1:a3:92:
                    f2:27:36:37:43:78:ef:a9:88:4e:1c:4c:4a:af:76:
                    4a:9b:63:7e:9f:ed:66:df:79:60:7c:1c:d5:98:61:
                    b8:52:01:51:1d:f2:37:c1:94:93:ac:fd:94:21:3a:
                    5b:01:be:e9:0d:d6:96:2e:ab:33:a3:84:b2:f1:e9:
                    cc:fa:2f:28:83:b5:d3:e7:ab:91:f3:18:bc:43:e8:
                    96:30:da:b5:6f:9c:0b:7b:54:e6:45:9d:10:fd:10:
                    f2:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:42:A1:A8:0D:55:C0:A5:4E:D8:38:AA:A8:AB:E1:E7:54:37:3F:DB
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05112af9-edc2-463f-88f6-9c849e7e66a0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  64.252.68.0/24

    Signature Algorithm: sha256WithRSAEncryption
         d5:bc:d9:70:d1:78:89:4f:f4:69:ff:71:aa:17:91:82:c4:c5:
         55:2c:c5:b0:8d:69:ca:58:f2:ba:0a:82:b9:7a:69:18:12:8d:
         3e:61:50:76:43:57:24:c6:08:df:79:c2:5c:e1:d7:af:cd:3b:
         38:ab:f6:46:2d:51:02:20:24:cf:f1:af:1b:61:62:5a:68:ca:
         9d:50:40:e5:a7:1d:0b:67:74:00:01:87:24:1c:91:e6:53:75:
         24:4d:75:7f:71:af:d5:23:be:58:29:e4:c9:03:bf:da:ba:62:
         2f:05:b5:df:be:ee:3a:e6:15:2c:e0:c4:40:83:73:af:86:c4:
         71:d1:46:71:69:23:b2:1e:70:0b:a2:19:2c:fa:9e:8a:aa:d6:
         14:4d:04:db:64:d7:8c:66:bd:a7:f8:8d:0f:fb:9b:12:f8:4a:
         ee:f3:54:72:c4:47:32:d1:54:4b:05:0e:4a:58:54:66:e6:f7:
         53:a7:07:26:99:d1:1d:09:28:56:36:bc:06:85:64:92:d4:88:
         b9:28:4b:c2:2d:6a:3c:be:de:13:f3:68:cd:b3:b5:78:7b:02:
         1d:48:ca:b6:a8:f0:9e:c6:e8:bf:f0:b8:77:d0:bc:6b:5e:19:
         ab:9f:be:50:2b:8d:0c:e7:9e:e1:79:b1:60:36:ef:9e:1a:fe:
         b3:3b:a8:5c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUTON3nmFUSQ1lrHVWMlzVZX+jHsswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAxMTAxWhcNMjYwMjIwMjM1OTU5
WjB6MUkwRwYDVQQFE0BhODI3NDRlM2QyNjcxY2QxYzBhM2NmZGQ5YWJiY2FlYTY3
ZGU1OWNkZjhhYzAyMDM2MTJiNmU3N2ZmMDc0ZWI3MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCUuv54RkvDB/Of21oQi1VOIQgM8k4hCFTizWaE3XBlHpte
hWph4duUerdHc272JRlelIjAkKRcJhk5yx38d2SO44quFkD0XoaLRiw05GLwhkXG
pR7gcwfmwfB3KmaxVoHzOxbcO4UjYKam02AiywnG7Rz8k+M98i2uUzAbHlPVUm4f
3DfWA1sBGeborLBnMyirdO5l5KrBF4Wv0MnlJMmk6KGjkvInNjdDeO+piE4cTEqv
dkqbY36f7WbfeWB8HNWYYbhSAVEd8jfBlJOs/ZQhOlsBvukN1pYuqzOjhLLx6cz6
LyiDtdPnq5HzGLxD6JYw2rVvnAt7VOZFnRD9EPKHAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUuUKhqA1VwKVO2DiqqKvh51Q3P9swHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzA1MTEyYWY5LWVkYzItNDYzZi04OGY2LTljODQ5ZTdlNjZhMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABA/EQwDQYJKoZIhvcNAQELBQADggEBANW82XDReIlP9Gn/caoXkYLExVUs
xbCNacpY8roKgrl6aRgSjT5hUHZDVyTGCN95wlzh16/NOzir9kYtUQIgJM/xrxth
Ylpoyp1QQOWnHQtndAABhyQckeZTdSRNdX9xr9Ujvlgp5MkDv9q6Yi8Ftd++7jrm
FSzgxECDc6+GxHHRRnFpI7IecAuiGSz6noqq1hRNBNtk14xmvaf4jQ/7mxL4Su7z
VHLERzLRVEsFDkpYVGbm91OnByaZ0R0JKFY2vAaFZJLUiLkoS8Itajy+3hPzaM2z
tXh7Ah1Iyrao8J7G6L/wuHfQvGteGaufvlArjQznnuF5sWA2754a/rM7qFw=
-----END CERTIFICATE-----