This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa
File:                     5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa (raw, json)
Hash identifier:          EbK5baHzKepibaLm1KCuwgxjF9A4lgYx29kX2EM3Tvc=
Subject key identifier:   BF:3D:E0:AD:C3:FC:A3:56:07:18:02:A6:9C:8E:D7:4E:A1:EC:9D:71
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       5798C9B87B53622B9F5887929F4873A7F740854E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa
Signing time:             Thu 20 Nov 2025 00:10:45 +0000
ROA not before:           Thu 20 Nov 2025 00:10:45 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        56.52.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            57:98:c9:b8:7b:53:62:2b:9f:58:87:92:9f:48:73:a7:f7:40:85:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:10:45 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=55d9547ab05305d76cda27fd043ba86a564a0e6e87b795588a56b57500325560, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:89:92:5f:36:b5:d5:a6:7a:af:d6:e8:43:2a:
                    0c:2b:dc:92:74:2e:84:79:b7:c2:e6:e9:d4:f7:0e:
                    4b:7d:44:9d:b4:bd:38:54:b8:6d:3f:1f:ee:fe:34:
                    e0:31:9e:9b:b4:2c:a8:bf:6f:e6:ea:fe:69:65:4a:
                    06:71:a3:e6:64:e2:bd:a8:e3:a8:c8:16:f3:f1:8c:
                    e9:0b:77:02:73:29:8c:66:1d:fb:c0:6d:79:69:c2:
                    8d:d0:6d:ff:f1:5a:2c:1a:b4:d6:12:fd:99:c4:f8:
                    17:de:a0:25:06:27:84:b0:b0:97:1d:08:57:14:3b:
                    94:f1:d7:f2:c1:9d:2e:f6:33:6d:99:f2:fe:ff:39:
                    30:6b:c1:a5:64:b4:a4:bf:2d:35:30:01:16:de:10:
                    c0:83:88:73:43:e5:75:52:ef:1a:20:3d:cc:db:a5:
                    96:1e:cb:32:74:39:9e:f3:c1:71:db:b7:9f:1a:23:
                    c8:61:cb:a6:56:b3:03:25:dd:e9:9b:7d:cc:eb:8c:
                    00:b5:c2:e5:e3:66:0d:80:2b:e1:86:fc:15:f4:92:
                    6e:34:d1:51:c2:d6:06:48:8d:99:84:6b:f8:e1:83:
                    56:15:02:ef:32:fe:95:16:9b:38:b2:b9:cd:44:27:
                    96:53:20:3d:2c:f6:9e:49:e3:80:1c:74:a6:d9:69:
                    17:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:3D:E0:AD:C3:FC:A3:56:07:18:02:A6:9C:8E:D7:4E:A1:EC:9D:71
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.52.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         d8:2d:7a:25:82:db:76:e8:e4:7e:1d:2a:cd:0c:d5:87:2d:80:
         ac:a9:ae:99:35:82:44:45:67:1a:ae:62:07:b0:a3:94:6b:62:
         11:ca:c1:45:e1:da:3a:5b:01:9a:ca:24:1f:1f:20:10:ec:dd:
         9e:e2:75:76:3b:33:b2:6d:82:84:5c:9f:96:45:02:27:ab:be:
         73:fc:29:fa:24:4e:f4:8d:ac:d8:90:f0:5e:86:11:63:fd:a3:
         c6:00:36:3c:6f:8c:a9:0c:a2:17:20:17:53:49:97:03:aa:53:
         16:1f:20:26:0f:bc:f5:d7:ae:eb:3e:a7:99:cd:31:48:30:ea:
         f8:69:59:25:34:11:f5:c0:e0:a7:c3:89:10:80:38:cf:9d:9f:
         98:b9:26:a4:dd:5f:dd:dc:89:15:12:a0:0b:6d:1d:1e:84:d0:
         4c:43:a3:05:0d:14:de:68:cd:4f:0e:11:ee:e0:c2:e3:a1:d2:
         8a:f6:86:bc:83:92:90:50:d0:10:66:6e:30:8d:d0:64:d2:41:
         1e:67:c0:90:0a:61:05:11:6b:a2:2f:a3:4f:76:3f:d2:88:5d:
         a2:76:a9:b4:44:cf:33:64:39:3b:a2:e3:0f:e6:60:f0:a5:42:
         8f:17:bb:27:a8:e3:7e:90:72:18:09:77:d7:d3:de:34:bf:a1:
         1a:14:f8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----