This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/750c6639-e3eb-480d-90fc-80f03249cf86.roa
File:                     750c6639-e3eb-480d-90fc-80f03249cf86.roa (raw, json)
Hash identifier:          v/Lknv2FygNV3kK1J46AvnLwxtzpcy0Nko0LBE5p6Mc=
Subject key identifier:   05:D1:73:93:67:D4:79:23:A6:05:A1:7F:83:16:A2:FA:C0:BA:83:A6
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       317CA2A1AC0F23734C46B2156477AFE5C7698421
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/750c6639-e3eb-480d-90fc-80f03249cf86.roa
Signing time:             Sat 22 Nov 2025 00:00:49 +0000
ROA not before:           Sat 22 Nov 2025 00:00:49 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        99.83.101.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            31:7c:a2:a1:ac:0f:23:73:4c:46:b2:15:64:77:af:e5:c7:69:84:21
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 00:00:49 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=23bead2d80f8aabbc74b561e740a5b28342e2ba3cc53fa7f5d4471b010c48d16, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:e8:e4:46:42:ea:ae:7a:71:24:67:5f:71:c7:
                    63:bd:ae:7f:b1:95:b7:30:20:f4:9a:ca:51:e2:b6:
                    8a:02:8a:34:12:10:19:b4:78:62:b1:48:6b:fd:b6:
                    fe:1a:8f:27:0d:9f:07:7d:ad:a8:da:1a:06:4a:c4:
                    7f:d1:5d:22:14:01:6d:58:af:ad:73:74:b1:84:9e:
                    43:8d:d7:df:3e:a0:e8:71:f3:6b:fe:4e:0f:c2:6e:
                    f4:64:b3:17:91:d7:ce:ba:a0:14:b7:3b:1e:f0:c4:
                    c4:b1:68:30:85:3a:86:62:1e:1f:21:7e:e8:df:8d:
                    1b:e4:c2:da:60:bc:26:05:1d:cf:37:b7:e2:cc:ce:
                    b9:8e:08:ac:6e:35:94:ce:0b:95:2d:d1:a7:6a:93:
                    eb:42:5d:a1:93:eb:6f:50:a5:8b:dc:e8:ab:ff:8a:
                    b8:f7:10:87:e6:37:40:54:95:6e:33:f0:81:d8:2b:
                    dd:8d:f6:fd:2a:e8:bb:89:df:3a:a8:6a:e2:8f:93:
                    d3:b7:f7:d0:f9:ec:81:ba:fb:65:fa:bb:f1:09:96:
                    1d:e0:e4:09:f0:8a:d8:1a:e5:eb:13:fa:5d:4a:fc:
                    4f:f9:20:d1:13:ab:9b:86:0f:d4:6d:ec:b0:a0:a2:
                    32:e3:33:df:28:62:60:c1:94:0a:1f:a7:ff:70:44:
                    38:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:D1:73:93:67:D4:79:23:A6:05:A1:7F:83:16:A2:FA:C0:BA:83:A6
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/750c6639-e3eb-480d-90fc-80f03249cf86.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  99.83.101.0/24

    Signature Algorithm: sha256WithRSAEncryption
         70:d2:22:99:de:be:46:e0:5b:42:bc:c3:ac:54:9b:0f:4e:1b:
         54:94:e9:21:d4:e0:8b:ae:fc:63:ee:be:42:28:18:a4:ff:16:
         7e:d1:54:4e:59:8b:fb:0e:5c:1c:c8:d3:b5:59:c0:8a:f4:b8:
         e6:54:b2:63:07:a1:53:4d:66:02:e0:db:87:99:86:00:31:30:
         c0:3f:1d:05:85:dc:99:2c:9b:a4:01:2d:5d:c3:f8:19:2a:ba:
         30:79:8e:9f:83:c5:24:f5:7e:ec:a6:88:f6:fe:c4:22:14:58:
         ad:83:96:f6:ad:4d:8d:f3:f4:ce:d0:41:0e:68:3c:6f:93:8f:
         8f:c6:1b:71:9c:ec:ed:33:eb:ed:30:f6:9e:ba:10:f9:0c:19:
         33:c3:26:b0:f7:ab:34:56:3a:94:f1:0c:e0:6c:db:6d:dc:9a:
         c3:2e:84:69:ac:b3:9d:e3:16:70:4c:b3:65:eb:ed:b6:95:ab:
         f0:11:2b:7c:68:90:9c:65:34:02:d6:b8:f3:73:10:7d:23:b1:
         85:28:22:81:ea:dc:73:8a:bd:2c:32:07:5c:bd:ed:b0:6b:57:
         d0:0d:48:af:63:1e:e8:fb:af:0e:10:33:5c:74:4b:4e:67:84:
         b1:e1:29:3a:cc:c0:e8:26:41:ea:ec:97:00:a4:1a:f4:b1:31:
         2e:75:97:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----