This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa
File:                     5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa (raw, json)
Hash identifier:          Uvrsa+XUAt5N9P1YOb3/uJ4Y3BN2nYRiyS0KNf3UBPk=
Subject key identifier:   3A:A8:F4:0E:67:E3:5C:64:A8:B8:29:B8:A8:AE:6A:5F:60:F3:0C:DA
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       56003CCEA0E3FD8867155ADDA3D9C1007CE3A075
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa
Signing time:             Wed 19 Nov 2025 00:00:08 +0000
ROA not before:           Wed 19 Nov 2025 00:00:08 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        16.113.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            56:00:3c:ce:a0:e3:fd:88:67:15:5a:dd:a3:d9:c1:00:7c:e3:a0:75
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:00:08 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=b7eb9dae7e502d9baae81b5a7e459166c4ce816e1112653e4c0e1102f0349e85, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:87:49:94:ee:3a:7d:5c:c5:47:8a:0b:51:dc:
                    33:70:ff:13:04:ed:24:7f:c0:b2:b8:06:80:c0:35:
                    28:18:98:17:27:b4:23:66:ca:fb:ee:af:6f:2d:be:
                    44:af:63:84:80:96:b0:9f:17:bf:8e:1d:7f:24:0b:
                    e2:55:c0:8c:70:f2:43:a4:d4:51:74:1b:73:66:fa:
                    ee:22:a4:ec:bf:93:80:06:95:ac:32:d0:ad:f4:f5:
                    d2:95:6c:46:44:82:c5:6a:1f:05:5a:2b:0f:06:b9:
                    ea:08:71:6d:fc:53:41:7f:27:1d:4b:e4:93:1b:e3:
                    d7:02:e0:ae:45:e0:ae:fd:4c:0e:ea:5e:ef:0c:03:
                    25:78:3d:e7:9e:d6:5a:bc:ec:6d:b9:93:4c:e4:78:
                    fa:38:ef:03:2b:1f:19:46:7a:b3:dc:40:26:cc:b0:
                    29:52:30:13:d8:85:20:33:1f:a4:20:8f:c1:5c:63:
                    d6:a2:92:d1:6a:ea:1c:e1:f4:2e:28:cc:20:c3:c6:
                    93:14:26:e9:05:17:fc:e0:97:b2:89:cc:ee:22:44:
                    72:c7:24:dc:50:c2:ca:a5:c6:6a:97:ef:1c:18:1c:
                    ad:0e:c4:fd:54:84:8d:74:9b:e2:3b:d6:66:c7:80:
                    41:c0:01:d1:3b:68:63:0d:e4:1c:bf:b3:57:a4:5e:
                    dd:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:A8:F4:0E:67:E3:5C:64:A8:B8:29:B8:A8:AE:6A:5F:60:F3:0C:DA
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  16.113.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         cf:9b:64:fe:3b:4f:cb:c0:e4:6b:ad:84:26:5b:6e:e2:3c:02:
         52:00:bb:ee:26:e7:b4:ea:8c:77:1f:23:92:f1:88:2b:13:31:
         ec:d1:8b:b8:83:e6:c4:19:59:f1:2c:33:1c:81:7e:33:17:0a:
         c5:b8:de:5a:c7:13:ce:40:c6:b0:32:74:88:2e:d2:5e:1b:e3:
         a9:90:fc:fb:7e:fb:d6:03:c6:4a:fd:59:9e:f3:73:dd:76:73:
         26:b3:e4:64:ca:28:78:3f:50:3f:31:27:13:72:53:c0:88:5f:
         90:44:67:43:eb:11:96:e6:c0:4b:02:ee:e4:19:d0:8c:0f:03:
         2e:bb:35:fe:33:27:c5:ea:62:06:49:a9:01:be:a2:2a:dd:9a:
         7d:41:35:f4:10:c1:b7:6d:7b:58:ec:c9:18:63:d5:25:86:fb:
         11:6f:1f:cb:ab:a1:d3:fe:3e:59:7c:b9:f3:f3:55:3d:7d:de:
         ef:c5:aa:74:96:2a:cd:b4:00:14:92:ec:9a:4d:da:65:59:77:
         db:a8:54:80:e9:39:80:5b:f8:cc:c2:66:ec:74:f7:02:bc:91:
         48:6f:3b:0f:f5:3e:d8:08:77:94:0a:3a:89:2d:c2:59:f0:20:
         b9:53:14:ce:9f:cc:22:12:59:0f:de:72:ac:24:15:bb:85:da:
         d6:49:7d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----