This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa
File:                     4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa (raw, json)
Hash identifier:          h6E9MA2exO++hKi7xdFgY+nxg/KbVTDqwlmFXrnCQaQ=
Subject key identifier:   6D:73:83:B6:1E:89:70:36:C3:11:B4:B3:34:86:2B:DD:E2:06:0C:FC
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       478005CC56BE3F8238C5088DD5C2091A3C2DEB25
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa
Signing time:             Thu 13 Nov 2025 00:10:44 +0000
ROA not before:           Thu 13 Nov 2025 00:10:44 +0000
ROA not after:            Thu 18 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        136.18.50.0/23 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            47:80:05:cc:56:be:3f:82:38:c5:08:8d:d5:c2:09:1a:3c:2d:eb:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 13 00:10:44 2025 GMT
            Not After : Dec 18 23:59:59 2025 GMT
        Subject: serialNumber=01bf156dd81991d4abbcbe2d7cd81d2a2446f94199ce53d289b24d8ee5782f2c, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:c6:6f:54:93:d5:f9:32:a8:a5:7c:f6:05:e0:
                    c2:ed:06:30:d7:3b:d3:a7:1d:d2:f9:d0:61:45:c5:
                    75:3a:0b:e5:6e:72:4b:da:ee:3f:6f:1f:99:b7:e5:
                    b4:6f:65:71:05:30:76:49:9b:eb:70:34:64:42:fd:
                    45:93:32:1e:f3:9e:4f:05:b4:9b:bf:80:76:47:ba:
                    f1:f8:40:e7:2d:c0:4f:77:74:87:7e:6a:50:f5:7b:
                    8f:24:2f:07:ff:d1:00:9f:1e:16:56:72:1c:0b:bc:
                    d6:1b:6f:53:3f:3c:71:4c:e3:e1:5e:d3:9e:4a:04:
                    35:7c:de:18:70:17:58:07:6e:aa:d7:02:94:d9:ee:
                    e3:7e:6b:5b:aa:1f:9c:08:eb:49:a7:49:c7:77:af:
                    a4:27:e2:ac:2f:1c:66:b4:fb:b9:f9:27:ce:de:8d:
                    ad:73:0e:b4:ed:5f:87:b1:1c:27:6c:d8:a6:9a:f3:
                    bb:cd:f0:b1:68:74:36:0d:5d:89:01:95:b1:30:83:
                    62:c9:0e:41:1c:06:48:a7:23:a9:cf:60:f1:a9:6c:
                    e5:b5:0f:5f:2d:08:0b:21:7e:f6:ab:d9:6e:e3:90:
                    b8:81:16:3c:93:67:d4:57:73:fa:c0:76:a5:8a:08:
                    0f:4a:16:2f:1c:10:36:fb:ee:06:bb:e7:fe:d0:36:
                    59:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:73:83:B6:1E:89:70:36:C3:11:B4:B3:34:86:2B:DD:E2:06:0C:FC
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  136.18.50.0/23

    Signature Algorithm: sha256WithRSAEncryption
         d7:e7:5a:a0:ff:a5:69:57:af:55:28:33:fb:17:69:34:b3:22:
         3f:be:47:3f:4e:1b:d2:82:db:c4:85:a1:5e:e2:7c:c6:b6:b4:
         b0:18:7b:ea:9e:50:bc:c6:8b:1a:01:9a:dc:34:d5:aa:59:17:
         5b:67:fc:7b:b8:fc:5c:43:3c:16:73:50:96:3f:a6:35:76:13:
         a9:da:b4:1b:ed:07:b9:dc:5c:2b:0c:c2:66:ca:af:59:65:06:
         0c:61:a2:f5:c4:ad:5b:97:2c:d3:f9:c0:eb:db:f1:5e:d7:4e:
         4b:fc:21:1f:d2:c0:dc:43:29:41:dd:a3:34:d4:fd:87:c1:a0:
         29:a8:1a:f8:b4:31:11:39:62:2d:3f:0e:89:7f:78:57:f2:f9:
         db:cb:71:52:c9:48:a2:36:eb:79:a2:b5:2a:13:cf:b3:5c:5e:
         01:fd:fe:0c:d5:d8:66:10:cb:f8:17:24:eb:b8:45:7e:83:71:
         04:72:03:44:45:8e:15:c3:6f:a4:95:7f:87:43:b4:84:cd:00:
         45:65:25:0b:52:18:e0:f3:c4:ae:ce:43:a6:9c:ed:87:7e:6b:
         09:d3:ce:a3:6a:f4:7c:e2:5c:65:1c:d8:c3:a4:1f:17:e2:a8:
         68:b3:8f:4c:03:6d:73:fe:4b:d9:0b:a2:53:26:20:21:5c:57:
         c4:ac:d6:25
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUR4AFzFa+P4I4xQiN1cIJGjwt6yUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEzMDAxMDQ0WhcNMjUxMjE4MjM1OTU5
WjB6MUkwRwYDVQQFE0AwMWJmMTU2ZGQ4MTk5MWQ0YWJiY2JlMmQ3Y2Q4MWQyYTI0
NDZmOTQxOTljZTUzZDI4OWIyNGQ4ZWU1NzgyZjJjMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC6xm9Uk9X5MqilfPYF4MLtBjDXO9OnHdL50GFFxXU6C+Vu
ckva7j9vH5m35bRvZXEFMHZJm+twNGRC/UWTMh7znk8FtJu/gHZHuvH4QOctwE93
dId+alD1e48kLwf/0QCfHhZWchwLvNYbb1M/PHFM4+Fe055KBDV83hhwF1gHbqrX
ApTZ7uN+a1uqH5wI60mnScd3r6Qn4qwvHGa0+7n5J87eja1zDrTtX4exHCds2Kaa
87vN8LFodDYNXYkBlbEwg2LJDkEcBkinI6nPYPGpbOW1D18tCAshfvar2W7jkLiB
FjyTZ9RXc/rAdqWKCA9KFi8cEDb77ga75/7QNlnLAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUbXODth6JcDbDEbSzNIYr3eIGDPwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzRjZjY3MjRmLTNhM2YtNDhkNC05Zjc5LWM1Nzg5NGEzMzZkZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAGIEjIwDQYJKoZIhvcNAQELBQADggEBANfnWqD/pWlXr1UoM/sXaTSzIj++
Rz9OG9KC28SFoV7ifMa2tLAYe+qeULzGixoBmtw01apZF1tn/Hu4/FxDPBZzUJY/
pjV2E6natBvtB7ncXCsMwmbKr1llBgxhovXErVuXLNP5wOvb8V7XTkv8IR/SwNxD
KUHdozTU/YfBoCmoGvi0MRE5Yi0/Dol/eFfy+dvLcVLJSKI263mitSoTz7NcXgH9
/gzV2GYQy/gXJOu4RX6DcQRyA0RFjhXDb6SVf4dDtITNAEVlJQtSGODzxK7OQ6ac
7Yd+awnTzqNq9HziXGUc2MOkHxfiqGizj0wDbXP+S9kLolMmICFcV8Ss1iU=
-----END CERTIFICATE-----