This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36717466-2259-4e4e-aeb2-b21e139325b8.roa
File:                     36717466-2259-4e4e-aeb2-b21e139325b8.roa (raw, json)
Hash identifier:          PRRVnZmMKz958T6m4DbBmut0fEG7qdhiqXb7AMsl37c=
Subject key identifier:   46:03:54:6E:26:68:B2:CB:57:F0:5D:4E:DC:11:68:AA:AF:E1:71:C0
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       29A73158612EB7E83AD2C04A2EA870391E8F0C73
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36717466-2259-4e4e-aeb2-b21e139325b8.roa
Signing time:             Tue 11 Nov 2025 00:40:51 +0000
ROA not before:           Tue 11 Nov 2025 00:40:51 +0000
ROA not after:            Tue 16 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        16.56.0.0/19 maxlen: 19
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            29:a7:31:58:61:2e:b7:e8:3a:d2:c0:4a:2e:a8:70:39:1e:8f:0c:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 11 00:40:51 2025 GMT
            Not After : Dec 16 23:59:59 2025 GMT
        Subject: serialNumber=1d8c0a05c53222f77cadeeab15cc14be87dbb283e58fdaf6f870155bf6573af1, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:8e:87:4b:54:3a:ba:c3:b6:aa:77:a1:89:65:
                    71:52:33:d3:c1:12:8b:e0:8c:71:8f:63:db:06:d7:
                    9e:74:99:28:57:a4:fd:69:31:3f:da:1d:00:66:8d:
                    4d:4f:70:ae:28:97:74:81:d0:e5:5a:3d:8f:83:a2:
                    82:0c:9e:f3:90:2e:a1:f6:22:f4:3b:c6:a4:5a:39:
                    d4:c5:b9:a8:54:eb:9a:c9:cf:21:61:99:e1:dd:f8:
                    b0:97:cd:94:b8:7a:79:1e:2f:6c:02:fe:49:7c:66:
                    5d:4f:6a:50:a6:5c:80:8a:a0:11:76:c2:b8:2f:d9:
                    c8:38:1a:ae:4d:69:2c:99:81:43:b4:74:85:95:48:
                    10:93:ae:49:44:f3:12:02:a9:32:a3:d3:1c:91:7b:
                    35:ee:49:d4:05:9b:f3:40:d7:94:07:5a:b6:e6:3e:
                    5c:16:45:11:2f:29:a1:e8:4f:99:f8:2c:ec:2d:3f:
                    48:20:4a:71:16:3e:14:fc:6a:45:81:7f:d5:76:43:
                    cb:07:e3:bb:17:fb:b7:05:a6:bd:c2:76:47:ef:b6:
                    9c:66:ce:53:30:a1:71:c9:e3:28:9e:13:41:b6:77:
                    8f:20:2f:8c:dc:91:cb:a2:d9:d1:eb:b3:ea:54:a2:
                    11:d7:97:71:7d:24:3a:86:d6:ea:f6:52:c7:93:f8:
                    e3:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:03:54:6E:26:68:B2:CB:57:F0:5D:4E:DC:11:68:AA:AF:E1:71:C0
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36717466-2259-4e4e-aeb2-b21e139325b8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  16.56.0.0/19

    Signature Algorithm: sha256WithRSAEncryption
         29:e8:3b:ba:73:39:22:90:c5:38:f3:d3:52:07:2f:ef:33:db:
         bb:a8:92:8f:58:54:66:18:25:e3:a6:41:72:c7:c0:67:01:a9:
         a6:cd:da:61:9b:81:49:c3:c1:9f:bb:2e:2d:b3:d3:a7:5e:e0:
         7e:b5:d5:6e:43:72:fe:9a:f1:16:f6:bf:77:8b:06:35:69:a9:
         01:7c:25:2a:5a:eb:02:ab:e6:c4:bd:db:71:49:1a:fa:8e:27:
         d1:70:1d:52:59:d2:f6:65:42:1f:5e:09:fc:b2:90:ff:ec:f7:
         6f:aa:14:ef:5f:42:35:70:be:eb:e4:2d:24:33:ff:28:32:07:
         4f:bf:aa:ca:ae:79:69:e4:41:e0:94:7b:ba:35:b1:d0:96:7a:
         7d:30:37:e3:d4:96:5d:33:10:f1:10:ba:56:dc:b1:d3:54:e9:
         05:5b:5f:b5:b9:87:5c:95:3e:75:a1:44:e5:c9:93:db:9c:c4:
         e8:04:3a:bb:dc:64:64:a0:cd:0b:6a:9a:ac:e4:bb:b7:ba:a2:
         ce:31:11:43:ba:a6:db:fe:a8:d9:fc:44:98:62:95:7b:b0:43:
         1e:09:5c:30:aa:bc:7f:a3:74:5a:db:0c:eb:0d:5b:30:45:9f:
         b0:14:9e:fb:0e:02:7a:74:92:d2:5c:a7:1b:f3:40:71:64:39:
         ea:ea:df:de
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUKacxWGEut+g60sBKLqhwOR6PDHMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTExMDA0MDUxWhcNMjUxMjE2MjM1OTU5
WjB6MUkwRwYDVQQFE0AxZDhjMGEwNWM1MzIyMmY3N2NhZGVlYWIxNWNjMTRiZTg3
ZGJiMjgzZTU4ZmRhZjZmODcwMTU1YmY2NTczYWYxMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCpjodLVDq6w7aqd6GJZXFSM9PBEovgjHGPY9sG1550mShX
pP1pMT/aHQBmjU1PcK4ol3SB0OVaPY+DooIMnvOQLqH2IvQ7xqRaOdTFuahU65rJ
zyFhmeHd+LCXzZS4enkeL2wC/kl8Zl1PalCmXICKoBF2wrgv2cg4Gq5NaSyZgUO0
dIWVSBCTrklE8xICqTKj0xyRezXuSdQFm/NA15QHWrbmPlwWRREvKaHoT5n4LOwt
P0ggSnEWPhT8akWBf9V2Q8sH47sX+7cFpr3CdkfvtpxmzlMwoXHJ4yieE0G2d48g
L4zckcui2dHrs+pUohHXl3F9JDqG1ur2UseT+ONPAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQURgNUbiZosstX8F1O3BFoqq/hccAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzM2NzE3NDY2LTIyNTktNGU0ZS1hZWIyLWIyMWUxMzkzMjViOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAUQOAAwDQYJKoZIhvcNAQELBQADggEBACnoO7pzOSKQxTjz01IHL+8z27uo
ko9YVGYYJeOmQXLHwGcBqabN2mGbgUnDwZ+7Li2z06de4H611W5Dcv6a8Rb2v3eL
BjVpqQF8JSpa6wKr5sS923FJGvqOJ9FwHVJZ0vZlQh9eCfyykP/s92+qFO9fQjVw
vuvkLSQz/ygyB0+/qsqueWnkQeCUe7o1sdCWen0wN+PUll0zEPEQulbcsdNU6QVb
X7W5h1yVPnWhROXJk9ucxOgEOrvcZGSgzQtqmqzku7e6os4xEUO6ptv+qNn8RJhi
lXuwQx4JXDCqvH+jdFrbDOsNWzBFn7AUnvsOAnp0ktJcpxvzQHFkOerq394=
-----END CERTIFICATE-----