This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba022e7-1cb6-4fe8-b561-6e77abb73dd2.roa
File:                     6ba022e7-1cb6-4fe8-b561-6e77abb73dd2.roa (raw, json)
Hash identifier:          wzH2DLHuST4HqofsdUx1a7L/jCmWmka80r1ETWYvuU0=
Subject key identifier:   BC:A3:80:24:E2:E8:16:AF:1F:06:BC:F9:FA:12:FD:64:EF:57:31:29
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       472FCAC7ED89CC82FAA3BBC5F7B6AA92D1D9EB54
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba022e7-1cb6-4fe8-b561-6e77abb73dd2.roa
Signing time:             Wed 19 Nov 2025 00:21:21 +0000
ROA not before:           Wed 19 Nov 2025 00:21:21 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        107.176.0.0/15 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            47:2f:ca:c7:ed:89:cc:82:fa:a3:bb:c5:f7:b6:aa:92:d1:d9:eb:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:21:21 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=cf9d8b86f7e024b197d0665dcf79dfc3696e08d99834b32df0b7d4a3d3994d90, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:92:56:c1:a1:7e:06:d1:2e:64:b6:fa:cb:19:
                    8f:f5:7c:d7:bd:9b:f7:99:04:db:57:85:67:57:47:
                    19:77:26:0e:9d:fe:85:f9:a1:58:ea:b3:23:f6:e1:
                    d8:5a:e4:94:33:63:c5:b6:86:80:b2:0f:c6:f9:56:
                    f9:21:b0:05:56:2d:1d:2e:10:53:9b:be:45:c4:f4:
                    f7:01:64:9c:4f:db:8e:b0:4c:ad:95:67:78:7a:92:
                    5a:0a:f4:92:d5:90:c9:48:b2:b1:8d:d8:a2:ad:f7:
                    bd:bf:a9:05:c1:51:58:5e:fc:70:16:83:a4:27:c8:
                    a1:03:93:a1:c9:7e:a1:fc:2d:5d:58:1a:b9:e3:7a:
                    3e:28:d1:48:a5:63:b4:19:0d:b5:3d:c3:4a:56:bd:
                    13:18:79:1e:2a:4c:a2:c6:a1:05:d5:9c:fa:26:3f:
                    ad:c3:b8:25:2a:63:30:62:9e:31:73:f8:0d:f4:a4:
                    19:36:39:75:0f:4c:c4:f1:3e:8d:34:bb:29:45:fa:
                    02:46:7f:40:5e:ae:91:01:1a:d9:eb:9e:4f:a0:16:
                    f4:05:72:07:f9:1d:6f:0e:06:57:24:21:6d:ba:51:
                    29:be:76:b4:c7:1e:6a:1c:42:22:64:4d:52:29:59:
                    cf:01:84:e3:68:04:0b:74:e8:cf:72:46:3e:5c:7b:
                    c2:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:A3:80:24:E2:E8:16:AF:1F:06:BC:F9:FA:12:FD:64:EF:57:31:29
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba022e7-1cb6-4fe8-b561-6e77abb73dd2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  107.176.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         5e:95:ec:e1:d6:16:c0:cd:1e:77:73:12:57:86:c8:4f:6d:c8:
         32:fa:5d:d1:30:23:96:86:2a:69:3c:46:b8:81:98:c5:d8:df:
         e2:69:a7:12:9b:9a:39:dd:08:53:e5:6c:fa:28:e0:9f:b9:4d:
         c8:c7:ca:dc:98:7e:60:9a:48:12:10:e9:ff:b6:51:4b:0b:0f:
         6c:8a:43:93:28:f1:23:17:5b:6c:79:5e:58:ff:0c:cd:95:46:
         a5:be:d1:66:a0:6d:d1:56:93:7e:57:e3:fa:bd:92:ad:b1:de:
         d0:4e:24:4c:bd:00:26:89:d6:fa:e5:f7:3e:d9:3c:48:6f:61:
         10:01:28:c1:db:72:86:4f:77:af:b3:79:58:90:a4:77:fb:88:
         ca:ea:f5:3d:ee:e9:8f:ff:98:76:6e:9c:19:78:93:ec:b7:2e:
         3a:21:bf:bf:c2:6a:96:f1:cc:40:e0:b3:ea:99:68:dd:6b:b5:
         0d:5f:ef:21:3b:1e:ff:32:64:8b:ff:76:9d:ce:ac:89:3b:70:
         81:c5:26:ee:e4:32:51:bd:16:d3:5e:27:d6:5f:82:49:b1:96:
         5d:d3:c8:0e:5c:ab:6c:ce:dc:aa:50:dc:b5:9a:db:95:d9:47:
         f8:a4:2c:97:fe:0a:3f:5e:53:0f:8d:55:b2:16:94:13:52:a9:
         af:90:86:93
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIURy/Kx+2JzIL6o7vF97aqktHZ61QwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE5MDAyMTIxWhcNMjYwMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0BjZjlkOGI4NmY3ZTAyNGIxOTdkMDY2NWRjZjc5ZGZjMzY5
NmUwOGQ5OTgzNGIzMmRmMGI3ZDRhM2QzOTk0ZDkwMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDzklbBoX4G0S5ktvrLGY/1fNe9m/eZBNtXhWdXRxl3Jg6d
/oX5oVjqsyP24dha5JQzY8W2hoCyD8b5VvkhsAVWLR0uEFObvkXE9PcBZJxP246w
TK2VZ3h6kloK9JLVkMlIsrGN2KKt972/qQXBUVhe/HAWg6QnyKEDk6HJfqH8LV1Y
Grnjej4o0UilY7QZDbU9w0pWvRMYeR4qTKLGoQXVnPomP63DuCUqYzBinjFz+A30
pBk2OXUPTMTxPo00uylF+gJGf0BerpEBGtnrnk+gFvQFcgf5HW8OBlckIW26USm+
drTHHmocQiJkTVIpWc8BhONoBAt06M9yRj5ce8LtAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUvKOAJOLoFq8fBrz5+hL9ZO9XMSkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzZiYTAyMmU3LTFjYjYtNGZlOC1iNTYxLTZlNzdhYmI3M2RkMi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwFrsDANBgkqhkiG9w0BAQsFAAOCAQEAXpXs4dYWwM0ed3MSV4bIT23IMvpd
0TAjloYqaTxGuIGYxdjf4mmnEpuaOd0IU+Vs+ijgn7lNyMfK3Jh+YJpIEhDp/7ZR
SwsPbIpDkyjxIxdbbHleWP8MzZVGpb7RZqBt0VaTflfj+r2SrbHe0E4kTL0AJonW
+uX3Ptk8SG9hEAEowdtyhk93r7N5WJCkd/uIyur1Pe7pj/+Ydm6cGXiT7LcuOiG/
v8JqlvHMQOCz6plo3Wu1DV/vITse/zJki/92nc6siTtwgcUm7uQyUb0W014n1l+C
SbGWXdPIDlyrbM7cqlDctZrbldlH+KQsl/4KP15TD41VshaUE1Kpr5CGkw==
-----END CERTIFICATE-----