This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08aeb1ee-8dd2-47e3-bebf-6e828d4f5d16.roa
File:                     08aeb1ee-8dd2-47e3-bebf-6e828d4f5d16.roa (raw, json)
Hash identifier:          VDw40rKXvBVS6oK+o6xvXKNuy/toGV9vFphdF93RWBA=
Subject key identifier:   57:08:70:BD:EF:CC:FD:A3:5D:EB:94:C6:75:5A:5F:7B:31:CE:A6:27
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       0E853DE02D2CCC0D365202D79766821179D92646
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08aeb1ee-8dd2-47e3-bebf-6e828d4f5d16.roa
Signing time:             Thu 20 Nov 2025 00:30:49 +0000
ROA not before:           Thu 20 Nov 2025 00:30:49 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        40.163.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:85:3d:e0:2d:2c:cc:0d:36:52:02:d7:97:66:82:11:79:d9:26:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:30:49 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=e3ecee531e1c57e04dadd7fb14f225ff2caeea0315ea60cf36d04d685f5c56e3, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:85:62:54:90:99:5e:77:f9:b5:cb:30:48:80:
                    9b:f5:4e:7c:e3:0e:68:78:2b:1c:0c:73:03:d6:a5:
                    72:50:c3:5e:04:8a:25:05:64:29:bc:0b:84:4c:e9:
                    f4:da:a0:04:f4:40:47:33:d1:91:f5:0b:fd:e0:c7:
                    58:52:32:06:04:3e:bb:00:b1:e1:d8:12:e4:09:e8:
                    00:ee:0a:10:a0:7b:fa:f4:32:a7:2a:3a:49:d3:6e:
                    fa:d8:6e:80:01:fe:07:4f:ef:69:26:ed:dc:65:73:
                    7b:be:67:42:e1:b6:bd:ff:1e:29:d7:5d:35:e1:42:
                    85:e9:04:c0:4e:30:f8:d4:2d:24:0c:8b:bb:ea:ab:
                    a8:39:a8:73:b4:29:bc:f6:20:a3:c1:8e:82:f9:7f:
                    ef:97:24:f6:c9:9b:ab:d8:9a:a4:ac:a3:40:9f:ea:
                    fa:4c:34:55:f9:c4:aa:54:b8:be:0f:07:86:8a:35:
                    ad:b5:4c:88:98:6b:a4:67:ff:c9:79:1e:8c:f6:64:
                    06:0f:d9:1b:1a:43:2b:4b:29:04:e9:80:27:11:52:
                    99:7f:62:53:72:98:42:a0:91:07:94:2b:a3:57:27:
                    39:dd:62:f8:ec:37:84:cd:0e:9e:3d:31:6a:98:ef:
                    33:ec:dc:9f:a1:be:36:8f:93:30:e9:95:04:ba:e4:
                    8c:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:08:70:BD:EF:CC:FD:A3:5D:EB:94:C6:75:5A:5F:7B:31:CE:A6:27
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08aeb1ee-8dd2-47e3-bebf-6e828d4f5d16.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  40.163.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         0a:7c:09:e0:7b:8b:a6:4d:7f:30:07:2c:e9:aa:65:d1:96:0d:
         a1:b6:d2:a6:e7:cd:e0:a3:d0:6f:0b:15:50:b7:39:81:93:2a:
         52:cb:ef:ab:d2:de:56:ee:c5:23:0e:12:ac:09:3a:81:55:14:
         21:54:de:c8:6b:d7:fc:1b:62:a3:b7:a7:87:dc:e8:43:c4:45:
         c4:16:f9:a0:a0:68:12:5d:0e:2c:1f:2b:b0:e9:a3:13:0e:da:
         54:ab:ec:1d:b7:a2:c8:b2:b6:d2:f6:10:2e:79:cf:f8:72:35:
         d7:e1:5c:a8:ed:54:03:04:a1:2a:74:76:05:40:49:7a:56:ca:
         12:b9:ce:3d:ba:00:85:49:49:40:aa:4f:e3:a1:6e:57:67:66:
         b5:c7:e8:6c:95:a8:89:03:20:4a:58:b7:a6:c2:f6:73:d3:24:
         dc:94:29:9c:c0:d4:af:af:b4:78:e1:ef:b8:8f:5a:db:31:84:
         4b:66:ed:08:98:2b:61:e6:1f:c6:9f:c4:53:43:41:78:67:fb:
         11:b0:14:a8:04:a3:d9:e5:c5:f8:a4:cd:cf:0a:96:1d:c1:cb:
         bd:51:42:83:ba:26:49:21:7f:ba:ec:ed:d0:1e:56:60:03:7f:
         56:49:5a:ee:12:1e:4e:c1:99:4d:d8:ec:91:0f:20:fe:c7:bb:
         83:99:4b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----