This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa
File:                     3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa (raw, json)
Hash identifier:          VN7QUkvU2CV5MZ9X6zAW4rs1yd3Ktl68yFa2DAtgK1k=
Subject key identifier:   45:A8:44:E0:2F:5D:D5:C4:8D:2E:A1:A3:7E:B3:DD:AB:CF:87:56:32
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       0CA4FE7841514C779F47E196D41024CAC9E8F363
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa
Signing time:             Thu 13 Nov 2025 00:00:47 +0000
ROA not before:           Thu 13 Nov 2025 00:00:47 +0000
ROA not after:            Thu 18 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        56.255.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:a4:fe:78:41:51:4c:77:9f:47:e1:96:d4:10:24:ca:c9:e8:f3:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 13 00:00:47 2025 GMT
            Not After : Dec 18 23:59:59 2025 GMT
        Subject: serialNumber=121821f357b04b8423b24cd5c9eca6ae4f67303fdb2df4371ba75ef73a4e8ba1, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:67:62:b7:52:9a:85:57:65:9a:5b:c0:e3:e5:
                    26:c4:4f:12:40:0e:16:b5:52:02:d1:c3:cf:87:cb:
                    2e:4d:8b:49:4c:7b:48:82:c5:c3:5e:b7:a4:4c:4c:
                    6d:67:05:1f:6d:30:81:43:bd:fa:d9:a1:91:92:c0:
                    a6:50:59:b1:4a:d3:8d:38:91:3d:a3:8a:1f:d8:6a:
                    23:a7:15:c0:71:54:db:0e:f3:96:0f:95:13:e8:ed:
                    21:0e:f1:fd:f0:05:7f:d0:52:3c:2e:5c:51:91:e4:
                    a8:1d:63:8f:68:74:af:e1:5a:ca:79:aa:44:a3:77:
                    f0:e9:35:64:7d:60:3d:61:2d:74:8b:f6:17:eb:5c:
                    10:4d:e4:3e:8f:da:70:2d:40:8b:15:c6:b5:05:63:
                    72:62:da:33:1f:78:af:03:4e:c8:c4:23:44:c0:52:
                    32:68:1e:75:7e:bc:7e:1e:a4:41:a9:54:84:22:5d:
                    29:1b:5b:97:a2:74:85:3f:46:58:a7:e2:7e:ab:e2:
                    05:fc:25:f4:15:c4:e2:d8:9d:49:39:26:47:9f:5f:
                    a8:f5:53:df:66:05:88:40:3c:c9:d0:65:35:ec:35:
                    ed:bf:b0:dd:55:76:1f:f3:01:bf:9d:55:f1:c3:e1:
                    dd:d0:c9:ba:24:be:c4:20:a3:4f:16:e5:3e:00:81:
                    3b:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:A8:44:E0:2F:5D:D5:C4:8D:2E:A1:A3:7E:B3:DD:AB:CF:87:56:32
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.255.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         2b:f4:c6:bb:01:d7:6a:fd:28:22:66:63:11:99:05:a0:0e:2a:
         29:19:27:16:7e:60:4e:e0:b9:b1:7f:79:d9:d7:9d:65:4f:d2:
         c2:8f:7e:6e:4a:3d:f8:b1:0c:48:20:a7:f0:b7:d6:64:6b:fc:
         a8:c9:9c:e8:70:58:a3:d3:9a:b5:26:5a:66:e7:0b:bb:39:8e:
         3f:aa:61:97:06:b4:36:e9:91:5a:fe:05:8e:a9:ad:0b:d9:e4:
         59:2d:05:6f:91:33:71:62:a0:ff:f5:03:b1:a1:4c:c6:fc:0b:
         b2:b1:06:e3:cf:0d:ee:9a:e8:a9:ad:ee:a8:49:b6:15:0b:04:
         83:8e:8d:04:de:ff:bd:ef:24:f3:e7:a2:43:78:f1:c1:36:19:
         09:4b:c5:cd:69:29:ad:36:1c:42:3b:a0:23:e7:92:a9:79:2c:
         fd:ce:7d:d6:07:57:c5:98:a7:07:c1:6d:65:a8:60:fa:c1:4b:
         f1:62:9c:23:72:11:a9:f2:d7:b1:4c:81:8e:e4:65:d4:e3:19:
         00:c5:5e:a4:7a:2d:7f:83:bb:19:3d:52:74:90:17:6f:ab:fe:
         31:ba:d7:df:3b:75:ca:e1:21:09:1e:95:55:52:f5:c5:6f:93:
         10:75:73:c6:55:94:4b:b4:76:40:0b:3d:11:90:fd:f8:82:e7:
         d9:2b:0a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 21 09:33:38 2025 by rpki-client