This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa
File:                     24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa (raw, json)
Hash identifier:          QvYdUjeoIdGrWjKTy1/PHdcXf7F12JDDO3yR1obHUl8=
Subject key identifier:   86:17:FB:77:CF:78:B7:89:E5:57:65:BE:41:73:75:D6:E3:87:F0:F4
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       5388944415D660D36E410BEB5A46F3724B2C11C7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa
Signing time:             Tue 18 Nov 2025 00:11:11 +0000
ROA not before:           Tue 18 Nov 2025 00:11:11 +0000
ROA not after:            Mon 16 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        130.31.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            53:88:94:44:15:d6:60:d3:6e:41:0b:eb:5a:46:f3:72:4b:2c:11:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 18 00:11:11 2025 GMT
            Not After : Feb 16 23:59:59 2026 GMT
        Subject: serialNumber=fcc4860a37ee935f21692f825a6f24d669b93f3eb53ed649cc037be9154524f8, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:b9:9e:0a:30:55:29:05:eb:33:15:15:9a:42:
                    15:5f:f2:dc:27:ab:78:db:37:a4:d5:c7:59:ad:c9:
                    cf:b2:6e:66:3c:11:22:7a:1c:4d:b7:ba:34:07:89:
                    56:72:19:2c:66:9f:32:6b:b3:c9:3e:73:b6:17:e2:
                    47:18:b2:3a:8b:b0:0b:fd:a0:ee:3f:a2:3a:7b:a6:
                    e3:bc:b1:0b:18:c4:88:a7:c9:4b:a7:d1:d7:72:e5:
                    96:5c:da:76:3d:76:f2:3d:68:41:8c:2d:c4:53:90:
                    68:33:0c:12:82:f0:40:27:85:05:2f:9f:30:d4:bd:
                    8c:d5:06:66:d1:4e:a0:2f:37:e5:09:79:07:17:42:
                    18:4f:80:f3:ea:45:3d:c8:80:f8:ac:cf:7c:75:6c:
                    4b:7a:cc:34:5f:e3:83:03:5f:e4:16:83:0f:21:8d:
                    33:37:9d:9c:6c:de:5f:ae:33:a3:67:fc:30:a5:66:
                    8a:6a:41:50:0d:93:18:22:d0:83:3b:4a:b2:88:38:
                    40:76:5d:4e:50:4f:89:bb:c5:06:9f:00:ec:09:01:
                    c1:cf:b8:e9:8c:60:a3:1a:8f:ba:83:c2:a7:69:01:
                    e3:57:5e:2c:d3:84:6a:e2:30:e6:61:a1:c2:14:d1:
                    f5:97:52:33:dd:15:da:17:e6:13:d0:0b:a3:a2:c5:
                    8d:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:17:FB:77:CF:78:B7:89:E5:57:65:BE:41:73:75:D6:E3:87:F0:F4
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  130.31.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         72:4c:a3:44:b9:03:0a:36:b3:9b:1f:2c:21:55:cc:c3:2c:9c:
         a2:17:fb:54:0c:98:43:af:76:73:6f:d6:0e:45:70:ee:3e:3f:
         98:96:99:c0:31:00:e3:c4:0f:77:f4:7c:38:42:f3:21:62:30:
         90:54:aa:7f:5c:ca:a6:f1:03:a4:12:58:d3:ed:a8:a3:1a:5d:
         37:32:8d:bb:8a:8f:02:cc:28:2a:1b:68:9c:89:cf:fd:af:c6:
         34:6b:49:95:78:63:45:3b:d9:5c:20:c8:1f:63:ff:ea:2b:29:
         1c:e7:c7:85:94:72:56:74:3d:9a:48:dd:fd:dd:ec:45:ce:87:
         23:f3:1e:95:9a:d7:2b:be:6c:f1:f0:fb:0f:08:57:e3:d6:6c:
         b2:4d:b8:cf:58:a5:1d:43:59:3b:14:6c:fd:83:f9:1d:5f:87:
         bf:b6:8b:78:9f:46:c0:dd:3c:a9:19:22:21:0e:9b:1c:ff:a1:
         3b:3f:90:14:25:54:e2:27:b5:03:9f:e7:5b:8a:66:f0:34:72:
         f8:ba:d2:59:75:6b:a0:be:dc:5f:f3:6e:5a:0b:6a:30:de:4d:
         b1:c9:c2:dd:36:56:51:40:d7:49:4d:e1:de:da:d8:0b:85:2f:
         92:a4:1e:7e:ad:96:23:e1:04:05:0e:cc:b3:7f:fa:9f:d1:8f:
         8b:d5:9a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----