This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62f1c6ae-c3ca-4326-b75a-fa2d7d8712d9.roa
File:                     62f1c6ae-c3ca-4326-b75a-fa2d7d8712d9.roa (raw, json)
Hash identifier:          jQpyrvoSw8LiS7ghhTk5BPHRVeVxpdJdfdMGrWsWBpk=
Subject key identifier:   28:82:6F:B9:F3:B9:FC:13:B6:E3:A2:32:78:3C:E7:81:B8:82:F7:14
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       6253E1F48352A0D38B223001CBA3B082FB4B5E9E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62f1c6ae-c3ca-4326-b75a-fa2d7d8712d9.roa
Signing time:             Thu 13 Nov 2025 00:11:16 +0000
ROA not before:           Thu 13 Nov 2025 00:11:16 +0000
ROA not after:            Thu 18 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        2600:1ff3:8040::/46 maxlen: 48
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            62:53:e1:f4:83:52:a0:d3:8b:22:30:01:cb:a3:b0:82:fb:4b:5e:9e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 13 00:11:16 2025 GMT
            Not After : Dec 18 23:59:59 2025 GMT
        Subject: serialNumber=dec0237f35458cec62372b6829cab52bf3ae702c75f2959be7767a15223bf197, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:73:94:24:2c:aa:9d:68:68:36:49:9d:92:83:
                    6e:15:77:a5:62:04:89:5c:df:65:e4:3c:ed:ea:66:
                    9e:83:f8:ae:5d:80:e2:d0:5a:ff:3a:e7:00:ee:12:
                    bc:8d:62:73:97:17:b5:3a:85:a3:c1:d6:65:de:86:
                    da:5b:ba:76:35:c0:4a:90:31:4b:2f:26:f3:a8:ea:
                    63:55:5a:5b:16:a6:33:7e:dc:21:f0:e5:fe:79:02:
                    a4:14:30:5b:7f:b3:29:14:41:e3:a8:cf:4f:e8:fe:
                    42:3e:08:9b:13:05:7b:8c:2d:68:35:bb:0d:c0:63:
                    7e:89:f3:4e:d7:fe:f6:6d:ce:58:b9:5b:0b:dd:5b:
                    e6:78:27:73:1a:b6:43:71:9f:d3:87:1d:92:a2:3c:
                    a3:e6:fb:f5:40:65:59:32:81:98:45:3b:7f:f9:32:
                    1c:f4:1b:93:cd:87:f5:68:fb:a0:06:20:59:67:d7:
                    44:6c:bc:93:86:5d:e9:b5:19:8a:d7:08:43:81:61:
                    55:88:15:87:1e:31:5e:df:86:2d:21:0e:b9:0d:de:
                    91:b4:d7:9a:fa:e4:05:a6:5c:44:fa:fd:b6:2a:e0:
                    cb:1c:8b:24:87:91:ec:64:0c:d8:ce:42:21:fa:8a:
                    14:4b:73:31:7b:8d:79:d7:ca:18:c2:62:39:ba:ad:
                    7b:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:82:6F:B9:F3:B9:FC:13:B6:E3:A2:32:78:3C:E7:81:B8:82:F7:14
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62f1c6ae-c3ca-4326-b75a-fa2d7d8712d9.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2600:1ff3:8040::/46

    Signature Algorithm: sha256WithRSAEncryption
         41:75:82:16:8d:d7:58:f1:3e:34:c4:91:73:dd:0a:3b:ec:63:
         31:b9:78:fe:07:78:da:94:8e:68:ac:bb:e4:e7:fd:82:f6:dc:
         c6:1e:b4:33:97:40:1b:17:78:bc:b1:66:9a:3b:40:aa:8e:51:
         05:90:7c:54:5a:ee:5a:d9:13:30:44:d9:ec:70:67:1b:06:68:
         67:1b:6e:d5:4f:df:4d:98:50:4c:cb:49:4c:ad:5e:8f:e9:0b:
         03:9c:39:50:dd:b5:c2:d8:59:a3:b0:a6:79:0a:04:e9:1d:14:
         77:23:99:3d:0d:b5:26:f4:b0:fd:aa:04:85:0d:69:a5:48:a4:
         f4:d7:d2:37:14:56:b9:69:c0:5a:16:2b:79:e6:74:3b:d0:af:
         7e:63:c0:e8:9e:a3:d3:3f:a7:33:4c:18:37:ee:fb:1c:1c:ca:
         5e:dd:8a:49:34:37:6c:5d:5c:8d:7b:1c:bb:ec:85:0f:14:3a:
         96:ec:0b:ff:0f:b1:d3:40:68:d1:e0:e3:fe:02:e7:74:1a:6e:
         13:5c:61:81:81:ec:43:7f:f1:c8:e7:3e:69:c6:68:95:23:0f:
         3a:0e:8f:fe:22:f7:c2:ed:bb:50:94:8b:c7:d6:dc:ac:c5:09:
         b8:6e:3d:77:34:27:6b:04:fd:f1:07:07:84:2f:bb:32:23:05:
         29:ab:df:72
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----