This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa
File:                     61b7b9ae-b712-4a51-b302-aafa1010e46e.roa (raw, json)
Hash identifier:          o15Bwt4ESIuWN5YwmyC1sKNzlO2U8+NcpX87P5DuFR4=
Subject key identifier:   B7:B9:51:8D:AD:C7:C6:D6:38:42:19:D9:0F:65:C6:17:F4:C1:C0:E2
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       746EC31FEDF9AC461016CE2263EBF06BBF8F318A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa
Signing time:             Wed 19 Nov 2025 00:21:20 +0000
ROA not before:           Wed 19 Nov 2025 00:21:20 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        107.176.0.0/15 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            74:6e:c3:1f:ed:f9:ac:46:10:16:ce:22:63:eb:f0:6b:bf:8f:31:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:21:20 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=15acb7757e6604e027e3ad889059e7749cad18ae59528847653f010ff998a9bc, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:39:26:47:f5:9e:e1:ef:64:d4:01:a7:50:e2:
                    53:e9:cf:50:b5:b2:12:0a:f4:72:14:7a:b1:60:ca:
                    74:db:76:a5:b2:5f:86:5e:8f:2f:6e:a6:5a:4d:1b:
                    09:19:4f:01:d7:1d:69:78:bd:57:2f:53:da:a5:6f:
                    2d:2b:f1:87:da:12:3f:da:e9:6e:ef:7f:55:4e:c6:
                    02:61:dc:b9:11:2d:f6:25:c7:aa:06:2b:40:96:b8:
                    b9:c5:82:51:47:13:43:cd:7d:be:4d:35:67:af:b9:
                    b8:d9:b0:a5:a5:81:16:7f:65:af:2e:0e:86:dd:ba:
                    14:74:bd:f4:a8:78:bf:87:e8:75:e5:cf:c6:bf:49:
                    7a:db:44:f7:3b:32:97:00:9a:db:be:6c:b8:76:f0:
                    0c:b4:9e:b1:1a:b9:83:d5:dc:f5:ad:92:9e:6f:75:
                    a9:90:87:45:10:9e:c2:be:d0:4c:64:c8:a0:9a:91:
                    2e:a0:72:df:fd:1b:4f:70:55:9e:6b:f1:88:ed:77:
                    bb:51:12:86:80:23:6e:21:2a:3e:51:b4:ad:c8:bf:
                    12:2e:14:4d:b2:20:10:7d:9a:10:6e:59:77:cc:4b:
                    b4:47:d5:7d:4a:51:6e:aa:a8:f6:10:1a:fa:e6:fc:
                    d2:e3:a9:2c:e7:0e:25:9c:ff:d5:95:8d:16:20:c5:
                    3b:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:B9:51:8D:AD:C7:C6:D6:38:42:19:D9:0F:65:C6:17:F4:C1:C0:E2
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  107.176.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         48:02:ec:4c:38:d6:2c:cc:d8:40:b1:5a:eb:00:0d:f7:d9:db:
         07:68:aa:b8:42:4e:13:c7:00:ac:ef:d1:61:73:db:ba:fd:81:
         17:38:15:3e:4e:ae:1c:e4:90:c5:65:f1:18:95:48:ad:0a:4d:
         e4:ff:2f:78:b2:11:29:73:2b:2e:5f:a7:5d:7c:1a:df:8f:48:
         34:ec:f6:4e:47:83:01:2d:ca:3c:b0:8b:86:3d:fc:2e:50:31:
         08:89:6d:78:88:9b:d1:44:5c:7d:8d:d8:e5:8d:bd:a4:08:b9:
         ab:42:27:e2:39:6e:fd:8c:dd:6e:9c:cd:3b:3a:51:ab:30:ef:
         7b:72:c6:3c:69:60:2e:f4:73:9a:2e:8a:d3:16:8a:3e:9b:71:
         94:4e:b1:26:fb:dc:1a:3a:2a:94:95:5d:f9:c6:58:10:5e:0c:
         35:4a:0e:68:93:10:fd:c2:88:35:5e:18:2b:a3:c5:8d:a1:21:
         d2:c6:b8:af:d7:48:dc:6e:1f:57:ca:16:1b:40:08:1a:9f:52:
         20:a7:e7:bc:3f:d7:b4:a8:ec:d0:ef:58:bd:42:db:86:7b:66:
         af:69:f5:03:15:4b:1a:44:97:8d:6c:52:08:a5:e2:ab:b5:37:
         4e:28:22:01:98:18:c1:0e:a7:97:41:cc:30:75:52:56:aa:b6:
         7f:d9:5e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----