This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa
File:                     34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa (raw, json)
Hash identifier:          QiAyd35dyjbIbKKlzuQzxZspSe9DGxTTsMpJAY9ZIc8=
Subject key identifier:   CD:A9:8D:E3:91:03:72:F4:4D:59:0A:24:76:7B:05:92:BB:75:B2:F7
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       2FE8440E2100AF6EFAE12940DDF7F613DC0EB389
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa
Signing time:             Sat 22 Nov 2025 01:00:06 +0000
ROA not before:           Sat 22 Nov 2025 01:00:06 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        99.77.189.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2f:e8:44:0e:21:00:af:6e:fa:e1:29:40:dd:f7:f6:13:dc:0e:b3:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 01:00:06 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=c923ce8ef773336dd925e5901e34daad09fe2a4d05fc72f520fe449ce9f2744e, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:39:89:a2:23:26:cf:95:d9:be:90:0d:f1:4b:
                    a4:d3:d0:b5:e9:6f:03:c2:ac:4d:80:f2:9e:00:cd:
                    3f:ff:41:68:5d:1f:a4:9f:5e:90:25:90:6d:46:b6:
                    c9:8a:d9:d2:7c:58:6c:8b:c8:4a:f6:68:68:98:5d:
                    bd:8e:74:62:6c:0d:d0:1b:56:0d:cf:13:63:b4:27:
                    81:a0:19:d1:ca:74:08:cc:ed:0d:86:1a:07:95:91:
                    43:a3:61:f8:4d:2e:a2:b1:91:a0:72:05:f1:e3:8e:
                    a8:cc:ec:4c:8c:39:a0:86:f5:79:be:32:44:74:b2:
                    56:6f:be:3a:86:91:fe:c6:2d:17:91:01:41:fd:bb:
                    b8:9d:7f:ef:83:37:39:29:d4:00:88:f0:a3:61:c6:
                    4f:db:a5:8e:71:65:32:3a:35:4b:93:62:8e:b0:4f:
                    e9:17:af:d1:5e:e1:09:d0:3b:0c:ac:8e:e3:49:f5:
                    8e:28:05:67:a0:a5:df:22:1d:4a:69:13:85:51:83:
                    67:72:56:61:00:20:d7:ec:0e:30:b4:c3:ef:8d:b6:
                    f8:01:67:98:dc:e8:70:92:32:41:c9:97:62:d7:67:
                    d2:1c:fa:2e:ae:19:95:51:0f:c4:92:f0:d9:a5:d8:
                    ee:28:8a:fb:e0:2f:6c:29:80:80:35:25:15:a3:ac:
                    65:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:A9:8D:E3:91:03:72:F4:4D:59:0A:24:76:7B:05:92:BB:75:B2:F7
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  99.77.189.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8a:dc:75:ab:05:96:58:3d:df:19:ae:44:f2:93:71:36:37:c6:
         01:f7:76:77:37:4a:28:20:2f:d6:8c:be:11:4a:da:9f:05:21:
         62:7d:d4:2f:82:4f:84:90:31:3a:bc:f0:5a:ef:ef:ec:da:1e:
         1a:ff:07:ff:3b:a5:66:a5:14:da:c7:05:af:7c:db:ad:fc:ef:
         e2:f3:0f:26:5d:7f:3b:16:a4:b3:d5:d1:4e:f5:28:71:d2:0c:
         08:05:28:71:49:d3:bb:89:19:8d:12:92:87:69:38:07:e2:f7:
         9f:1e:8c:72:5f:24:14:d3:4c:49:93:f4:77:e0:0d:a2:b1:a1:
         ae:b7:26:6d:e8:83:b9:a1:57:cc:af:eb:e9:a1:9f:99:00:9a:
         97:16:04:25:0e:21:44:e5:c2:22:f2:68:e7:10:02:ad:c8:b8:
         3c:90:97:85:c6:4e:94:9e:0b:13:5b:1c:7e:67:2e:35:3d:41:
         27:a8:74:59:83:c7:d5:ae:0e:aa:88:c1:39:8f:cd:ab:65:ab:
         bb:2f:2f:5a:7f:2d:ae:0e:78:48:96:eb:39:1d:cf:3d:59:8e:
         b7:d6:2d:90:81:98:4d:1a:55:4e:10:ed:d0:18:53:b4:66:76:
         9b:9f:dc:ff:bc:86:04:b5:d4:90:81:b7:b0:20:6e:55:85:f2:
         14:0c:5a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----