This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa
File:                     6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa (raw, json)
Hash identifier:          q/XCPfDoqK/kol+xzmMLunM4e1FMld6xLnIr/h1oUvM=
Subject key identifier:   CC:E0:C7:3D:72:5C:36:F1:76:60:68:22:3F:40:AE:9D:09:FE:A9:21
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       2E62753D5112F019DE58FB1B29869EA7FC48F057
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa
Signing time:             Wed 19 Nov 2025 00:30:16 +0000
ROA not before:           Wed 19 Nov 2025 00:30:16 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        16.75.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:62:75:3d:51:12:f0:19:de:58:fb:1b:29:86:9e:a7:fc:48:f0:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:30:16 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=54fe0260d1652dd9e51b0d0c8bc7b307010cd69dc36ccd5b8ae1a93ecc0c2d19, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:23:78:e0:07:3a:97:cd:a4:48:fb:be:7d:47:
                    05:ea:91:67:a6:48:06:8e:d2:12:67:bf:20:4c:3c:
                    3b:d2:6f:05:a9:88:1d:71:6a:a4:4e:ea:0b:ff:22:
                    ba:ec:a2:1e:f9:2c:f1:b7:fe:0d:62:c5:19:d9:76:
                    9c:77:e9:2b:34:0b:e5:be:69:68:96:43:ee:96:f2:
                    76:47:3d:a1:3a:43:9b:69:bc:30:a3:fa:d0:b6:bf:
                    16:c6:67:88:3b:4d:5e:29:f2:16:a8:f6:57:32:e8:
                    90:92:fb:f1:99:ad:cf:1e:e1:fe:6f:c5:57:90:7a:
                    43:ee:6e:92:73:ea:05:65:f7:1b:45:9f:98:15:2a:
                    02:cb:7b:82:f6:4b:23:5f:74:71:67:c0:25:7e:cd:
                    91:53:3a:4c:ab:dd:a3:b8:40:df:89:b9:36:57:8a:
                    83:8d:16:2e:cd:ac:26:a4:ee:19:1e:46:85:70:2b:
                    a6:59:18:12:78:10:fb:ee:43:96:80:ab:3b:e7:46:
                    3a:ad:55:13:e8:9f:03:ef:9b:4b:80:67:e2:4b:a3:
                    91:bd:8d:0d:14:6f:dc:5f:ce:e0:8b:76:01:10:c2:
                    ca:06:89:d7:de:f4:85:d7:45:3e:e4:f3:ad:1a:86:
                    ab:61:1d:3c:00:40:9c:13:c5:e7:14:2d:80:18:81:
                    13:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:E0:C7:3D:72:5C:36:F1:76:60:68:22:3F:40:AE:9D:09:FE:A9:21
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  16.75.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         03:bd:87:1a:71:99:6a:d9:ce:65:c7:dd:34:91:f6:8a:24:1d:
         0a:b7:34:31:7d:ed:bf:42:d6:00:a2:cd:82:a5:9d:45:f7:e4:
         32:7b:e8:ac:b8:b9:a1:e8:15:3c:f8:28:2f:40:59:4b:2e:28:
         45:ce:18:25:f5:12:88:43:4b:0b:2d:98:0b:d3:e7:18:dd:88:
         4f:ef:c4:39:f1:88:4a:80:cb:49:d1:08:12:9b:38:98:5b:62:
         e9:37:4f:7d:67:4c:12:44:1e:2d:5d:5d:b3:de:7e:8c:71:db:
         8b:f4:d6:12:8c:10:b2:59:59:d1:f2:be:7b:a1:21:7f:b8:2f:
         49:e3:83:60:dd:21:d9:50:5b:04:2b:ab:8f:a7:aa:6c:bc:45:
         9a:a7:5b:54:93:41:89:fa:0a:64:80:c4:b7:0e:0a:a5:e3:2e:
         c1:21:d9:f0:32:07:65:c2:0f:2e:74:4a:89:41:d1:b7:24:9f:
         42:fe:9b:9b:51:59:33:76:d6:22:a8:53:c5:07:95:9a:fc:a3:
         7e:17:49:d7:3f:db:aa:cf:aa:97:3c:33:5e:54:c5:6f:d0:fa:
         56:07:d6:1d:fa:77:ea:4e:f2:3d:72:e2:94:ec:e4:bd:a3:92:
         f0:39:8d:e2:59:83:b8:98:54:25:80:ca:c8:52:8d:81:66:4b:
         84:32:0e:4d
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIULmJ1PVES8BneWPsbKYaep/xI8FcwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE5MDAzMDE2WhcNMjYwMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0A1NGZlMDI2MGQxNjUyZGQ5ZTUxYjBkMGM4YmM3YjMwNzAx
MGNkNjlkYzM2Y2NkNWI4YWUxYTkzZWNjMGMyZDE5MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC5I3jgBzqXzaRI+759RwXqkWemSAaO0hJnvyBMPDvSbwWp
iB1xaqRO6gv/Irrsoh75LPG3/g1ixRnZdpx36Ss0C+W+aWiWQ+6W8nZHPaE6Q5tp
vDCj+tC2vxbGZ4g7TV4p8hao9lcy6JCS+/GZrc8e4f5vxVeQekPubpJz6gVl9xtF
n5gVKgLLe4L2SyNfdHFnwCV+zZFTOkyr3aO4QN+JuTZXioONFi7NrCak7hkeRoVw
K6ZZGBJ4EPvuQ5aAqzvnRjqtVRPonwPvm0uAZ+JLo5G9jQ0Ub9xfzuCLdgEQwsoG
idfe9IXXRT7k860ahqthHTwAQJwTxecULYAYgRMHAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUzODHPXJcNvF2YGgiP0CunQn+qSEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzZjODU4MWQ4LTg2YjgtNGZkYi04YzIzLTg2Y2M1NWRlYTkyNi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwAQSzANBgkqhkiG9w0BAQsFAAOCAQEAA72HGnGZatnOZcfdNJH2iiQdCrc0
MX3tv0LWAKLNgqWdRffkMnvorLi5oegVPPgoL0BZSy4oRc4YJfUSiENLCy2YC9Pn
GN2IT+/EOfGISoDLSdEIEps4mFti6TdPfWdMEkQeLV1ds95+jHHbi/TWEowQsllZ
0fK+e6Ehf7gvSeODYN0h2VBbBCurj6eqbLxFmqdbVJNBifoKZIDEtw4KpeMuwSHZ
8DIHZcIPLnRKiUHRtySfQv6bm1FZM3bWIqhTxQeVmvyjfhdJ1z/bqs+qlzwzXlTF
b9D6VgfWHfp36k7yPXLilOzkvaOS8DmN4lmDuJhUJYDKyFKNgWZLhDIOTQ==
-----END CERTIFICATE-----