This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62086a8c-d18a-4908-a1f6-71630fcdf8fe.roa
File:                     62086a8c-d18a-4908-a1f6-71630fcdf8fe.roa (raw, json)
Hash identifier:          ojKwf+teD2/R8EdyIDtYlUOlOKuDSMEv0nfmAjRQnOw=
Subject key identifier:   9E:A1:5C:B8:B7:14:7C:E1:9C:0F:91:E7:4B:7C:50:51:B2:F8:3D:0D
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       01C4C3932463BFBF74B0F27D3F631B7326A43429
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62086a8c-d18a-4908-a1f6-71630fcdf8fe.roa
Signing time:             Thu 20 Nov 2025 00:21:17 +0000
ROA not before:           Thu 20 Nov 2025 00:21:17 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        56.114.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:c4:c3:93:24:63:bf:bf:74:b0:f2:7d:3f:63:1b:73:26:a4:34:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:21:17 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=dd0931fd9cf53a75f0a829762bafa37c4bc97703b343181dc6103a4c78fdc893, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:70:a5:df:31:84:cd:de:7f:af:0a:c4:7e:ae:
                    94:5c:fa:ab:a5:fd:5e:7f:00:aa:cf:4f:8c:e1:0a:
                    16:ce:0a:71:69:d2:1b:ae:d8:0e:66:4c:1f:af:30:
                    ac:d3:53:9a:05:1b:af:f4:da:e4:94:7e:5c:53:f8:
                    ca:2f:0a:fa:ba:35:74:0c:a7:9f:c4:4f:5e:d0:64:
                    76:d5:c4:3f:4c:ee:59:97:03:c8:3d:2d:e1:10:f5:
                    6f:49:ab:66:33:a5:0d:bc:f3:18:45:20:d3:af:60:
                    56:4c:cb:e9:f6:9c:d8:4f:76:b9:7a:a6:cb:a6:11:
                    7e:78:bc:f8:09:05:61:ad:40:d9:c5:72:4d:4a:3d:
                    ae:86:d2:a5:14:cd:ef:4a:d4:98:1b:d3:d3:fe:54:
                    4b:4f:43:ad:e9:0e:2d:d5:5a:8b:a0:95:7d:45:2f:
                    d5:d9:e6:03:a2:1e:9e:6e:ff:49:6c:c5:51:17:60:
                    95:8b:1b:02:9d:dd:b2:84:31:1f:e4:e4:fb:3e:42:
                    35:b3:7d:95:97:d8:06:bb:df:c7:51:5d:ac:2b:ce:
                    57:a0:75:a9:ec:9b:e7:1d:98:1c:93:b0:f7:a4:24:
                    8a:27:cb:ee:7a:9f:8c:b9:07:0c:6c:20:b4:7b:b5:
                    4a:4f:83:ca:af:c5:a4:c0:0a:17:ad:2c:2e:06:18:
                    cd:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:A1:5C:B8:B7:14:7C:E1:9C:0F:91:E7:4B:7C:50:51:B2:F8:3D:0D
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62086a8c-d18a-4908-a1f6-71630fcdf8fe.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.114.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         0d:55:e8:a8:98:bc:69:41:b1:b5:b3:2e:9c:1e:14:fd:1e:fd:
         8d:c9:64:1a:13:10:7c:e9:2b:05:d0:d8:5c:a0:65:75:d4:fe:
         2c:af:aa:93:fb:40:93:00:87:8d:6d:27:3d:01:50:3d:a8:e6:
         25:2b:80:65:d1:12:3e:4c:00:3e:b4:28:d5:44:f9:b5:38:dc:
         d0:02:12:98:7d:1a:a3:e8:c1:c5:a5:3e:9c:4d:76:ac:e8:a5:
         08:f4:8c:b5:c9:94:56:ba:d3:64:ba:5d:51:6e:5a:74:5a:af:
         4f:a1:26:24:d6:cf:c8:e8:f3:f9:0d:86:4b:0c:28:66:f0:1f:
         c4:1d:74:75:e9:88:e9:63:45:f2:12:a8:13:36:91:1d:14:30:
         84:50:78:ae:92:42:86:9d:50:59:3b:23:78:3c:6c:ca:af:07:
         67:b9:c6:25:82:90:93:c0:b3:3f:a3:e2:ae:66:d9:b9:60:eb:
         e9:0b:ce:e4:4e:b2:24:ae:c1:e2:e9:ed:49:6b:4d:16:ac:d2:
         e9:c5:40:83:17:0b:2c:63:45:72:29:44:7f:50:65:8e:9d:1c:
         3a:03:cd:74:b2:7c:a2:0d:bf:9f:77:85:36:2e:d4:a7:82:df:
         63:c3:87:eb:03:1f:09:50:7b:ea:39:0c:e0:0c:79:7d:80:97:
         37:d7:84:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----