This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a012c8-f13b-4d84-8fb0-ec582723cddf.roa
File:                     41a012c8-f13b-4d84-8fb0-ec582723cddf.roa (raw, json)
Hash identifier:          vrkMg6xZvUQw4c7OmmjrGzxSV/GJ68U9G7ijAyef3oU=
Subject key identifier:   64:37:2F:99:56:66:D9:18:E9:C9:D3:2B:19:46:50:B6:2B:6E:51:5D
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       69B9A636106DB8C20B465A5441712B80F0A8E5BB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a012c8-f13b-4d84-8fb0-ec582723cddf.roa
Signing time:             Sat 22 Nov 2025 00:10:04 +0000
ROA not before:           Sat 22 Nov 2025 00:10:04 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        99.77.254.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            69:b9:a6:36:10:6d:b8:c2:0b:46:5a:54:41:71:2b:80:f0:a8:e5:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 00:10:04 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=088a4aedbe210e4608e7bf224a9a7617f22e2a3a52ed3a7de29112231418846d, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:c0:e4:77:eb:c8:8a:df:8b:e0:5d:a6:10:e4:
                    0c:77:42:33:41:ba:ff:e0:c0:d6:40:e1:b9:5b:41:
                    e4:b2:f8:5c:6c:9d:c9:ed:f7:e4:a9:b4:42:3c:c4:
                    21:3c:f4:0f:52:5c:13:bc:92:9a:ad:80:67:f8:70:
                    b4:0a:2c:b1:13:91:a1:3d:d9:47:e3:a6:4a:cd:54:
                    47:4c:2f:6e:80:96:bd:4d:c6:4b:d6:df:3f:58:62:
                    b8:8b:1c:aa:03:1d:b0:92:b6:52:75:4a:29:0b:b9:
                    3b:0a:3c:c7:1f:e9:3a:b5:6e:1e:4d:a5:fe:85:98:
                    98:e6:b8:28:58:bf:84:0a:7a:5e:c9:4c:9e:3e:8c:
                    13:ac:85:75:7a:8a:f5:a9:7c:04:61:60:69:55:c9:
                    42:2e:cc:e9:95:e6:c7:a7:3e:4d:fe:29:77:0f:69:
                    5a:23:23:48:cf:62:c3:69:75:58:4c:7b:bb:65:37:
                    bf:00:a4:32:ce:cb:a7:1f:6a:f1:2e:72:b3:94:91:
                    09:f3:80:af:fe:6e:fb:a8:3a:3a:21:37:df:dc:da:
                    ff:4d:df:f4:1a:26:86:57:1d:9a:28:36:c5:6b:cd:
                    fe:53:5f:11:01:b7:95:be:82:12:b6:db:21:6f:4f:
                    d4:02:4e:41:d3:b6:d7:42:43:2c:f2:19:db:c0:4d:
                    42:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:37:2F:99:56:66:D9:18:E9:C9:D3:2B:19:46:50:B6:2B:6E:51:5D
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a012c8-f13b-4d84-8fb0-ec582723cddf.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  99.77.254.0/24

    Signature Algorithm: sha256WithRSAEncryption
         d1:8d:01:bc:fd:81:0e:24:9b:aa:b4:a3:5c:28:9b:01:92:12:
         de:17:dc:65:d6:c0:c3:4f:34:be:a8:d0:29:fc:03:93:90:78:
         3c:3e:92:1c:1d:2e:25:16:32:78:04:4a:d3:09:54:85:8e:66:
         bf:e4:19:dd:a6:e5:28:f3:78:00:f5:fb:02:e8:14:d1:b8:69:
         60:ce:d0:0b:f9:04:4d:01:40:f4:79:01:33:5c:a0:20:37:b1:
         ca:99:d5:0e:8e:21:2a:e7:05:4d:39:c9:a8:f9:f4:c0:37:29:
         f8:5d:e7:c6:d3:7b:8c:49:b8:d6:0e:57:ce:d7:af:80:1f:a0:
         ab:34:0c:4c:70:2f:c3:ff:fd:4d:1e:48:d6:35:af:25:96:29:
         d5:a2:15:6f:38:04:74:82:a9:03:94:d7:10:ae:c9:6a:e7:c8:
         01:74:73:d2:a2:af:f6:d0:2a:60:88:3c:02:7b:39:69:7b:ce:
         4a:38:b6:71:8d:1e:0c:3c:08:a2:20:22:ab:63:70:2a:45:9a:
         5f:08:5e:e1:01:fd:7c:be:89:94:38:67:14:b1:83:c1:57:f5:
         43:ef:be:63:b3:a5:54:8a:8e:12:dd:de:7f:75:5b:ba:6a:6e:
         43:0d:7d:dd:ac:eb:3e:8c:4f:78:47:1d:5b:d3:89:d1:05:6f:
         04:c2:1c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----