This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/247d2881-2d48-4314-85b9-5eb26490333e.roa
File:                     247d2881-2d48-4314-85b9-5eb26490333e.roa (raw, json)
Hash identifier:          mw6s3R+k9AN1jYtWIefBgF6cCGLMjCJhXpFKx5xhaLM=
Subject key identifier:   8E:53:6E:98:7E:B0:5B:CB:53:CE:62:26:58:CF:FF:4F:A1:D9:A2:68
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       192A27E6AA2A8E5E9EE2DD9B03589484E8345AA6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/247d2881-2d48-4314-85b9-5eb26490333e.roa
Signing time:             Wed 19 Nov 2025 00:21:12 +0000
ROA not before:           Wed 19 Nov 2025 00:21:12 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        16.181.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            19:2a:27:e6:aa:2a:8e:5e:9e:e2:dd:9b:03:58:94:84:e8:34:5a:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:21:12 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=8e884a4581ad30e5c5afc75a5f602338b77ac36932b8b48d61e3de537a1cd8b5, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:de:6a:f0:bc:a0:30:a3:f0:8e:3c:f3:eb:ef:
                    b4:9f:ec:4d:a9:a0:fe:83:2c:6f:4a:ba:b8:82:94:
                    fd:31:7e:b1:64:c0:db:fa:aa:9c:9d:66:9f:3c:a5:
                    ae:65:38:e6:76:42:91:03:42:04:0b:d0:a6:b2:53:
                    ef:13:5b:a0:37:cb:79:7f:0f:87:3a:94:7c:97:18:
                    ac:36:66:90:b7:2b:27:2c:73:23:e0:ad:8a:b1:cc:
                    9d:d5:15:12:83:63:e2:5c:9d:58:77:00:4a:a6:5a:
                    6a:03:12:a4:a3:ca:a9:07:f2:9d:c4:2b:1d:d6:ad:
                    38:97:5a:73:d2:60:11:c1:b4:aa:f9:dd:06:a2:60:
                    3e:7e:31:2b:c4:df:5a:8e:15:2e:aa:a7:8c:15:74:
                    74:48:b8:64:3d:56:6b:9d:73:5a:33:b3:05:1a:aa:
                    c6:c2:ca:c6:6a:ad:af:25:90:1f:60:70:4a:2d:0e:
                    09:2d:de:5f:db:5d:96:6f:48:cc:57:35:af:f2:12:
                    50:72:43:25:02:5b:76:22:7f:a4:9f:b0:52:5b:5b:
                    d8:e8:4d:a3:0a:4a:bf:17:26:fb:f8:1d:c3:2b:14:
                    cd:5f:0e:37:45:f9:c1:51:9b:c6:9b:63:66:c0:b2:
                    9c:c3:48:b1:44:d0:0f:9f:b1:b4:77:49:7d:3e:b0:
                    1d:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:53:6E:98:7E:B0:5B:CB:53:CE:62:26:58:CF:FF:4F:A1:D9:A2:68
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/247d2881-2d48-4314-85b9-5eb26490333e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  16.181.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         20:82:00:c7:06:3f:85:54:06:de:6a:e6:42:3c:57:14:cf:b0:
         76:02:75:dd:e1:a3:1c:89:e1:80:48:ce:e1:27:08:ef:d9:5c:
         6d:2c:de:ab:5d:b1:04:3e:b2:4b:63:fd:42:76:28:95:47:c3:
         77:38:f6:84:4c:d4:5a:d0:2e:69:93:03:37:ca:9c:6a:ab:8a:
         b4:06:35:7c:cb:6d:c9:40:96:2c:be:37:52:53:9e:fd:7d:12:
         72:f2:91:58:c5:e7:53:c0:09:76:9f:eb:da:70:c6:97:90:7b:
         b9:27:1f:d4:2b:90:09:c7:82:ad:26:56:be:b5:13:da:a9:48:
         84:e8:5e:be:39:5a:2b:e5:e0:27:fe:92:8c:49:08:7d:12:c2:
         b1:61:fc:d7:80:38:71:dd:56:84:d9:22:78:0b:89:98:08:b7:
         6d:6c:95:88:59:13:8f:b6:25:fc:32:88:07:ac:9d:5a:38:35:
         f7:dd:54:ef:bf:4e:53:77:2b:4d:04:7d:ad:61:95:1f:b4:04:
         97:e0:05:63:30:22:7c:4a:61:df:8a:46:3e:d2:02:2a:42:41:
         da:2f:9c:55:5b:f0:85:c3:88:7f:d6:6e:08:6d:06:04:75:5d:
         18:47:fe:2d:72:74:9e:d5:de:fa:34:1d:2f:82:bc:55:01:33:
         f6:5f:3b:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----