This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa
File:                     79931b83-9888-42c4-8cab-49d3b3177907.roa (raw, json)
Hash identifier:          UMLMy73OTr0Sg/PDs9OVuI90583/ashwdyqMS9zXYX8=
Subject key identifier:   FA:14:AA:EF:AB:0B:1C:E2:19:E4:FF:E3:A2:1B:D3:C2:6A:DF:50:B7
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       346D0CF7AF26459F5AF29D5C5B715C4CC3E29E00
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa
Signing time:             Sat 22 Nov 2025 01:00:09 +0000
ROA not before:           Sat 22 Nov 2025 01:00:09 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        64.252.103.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            34:6d:0c:f7:af:26:45:9f:5a:f2:9d:5c:5b:71:5c:4c:c3:e2:9e:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 01:00:09 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=3210fa77ce6e73459cf751e4ace8e9f1847262b3d53a015a0bbb3086f1cbe814, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:78:ad:34:18:46:19:9d:b5:ff:4c:87:57:f4:
                    66:50:ba:61:a9:b2:11:43:b2:25:0b:78:98:9a:6d:
                    a3:9a:52:0f:f6:3e:57:f3:93:74:4f:09:1b:ca:57:
                    55:19:03:6f:d8:d5:a7:a7:eb:52:24:6c:77:13:34:
                    ca:d3:78:ef:da:26:ec:f2:a6:e3:99:1c:34:17:52:
                    59:80:e5:d9:b2:21:5a:c7:05:0c:5c:3b:b2:36:09:
                    32:90:7c:20:08:7e:50:30:47:83:20:66:3d:82:ba:
                    d9:de:f8:54:c9:dd:7e:43:3d:30:35:46:40:b6:f1:
                    d5:25:0d:32:48:62:37:ad:ba:73:17:06:65:a8:1f:
                    36:4b:84:75:30:6d:41:b4:e4:dd:be:72:c2:b0:84:
                    c9:02:87:36:76:69:01:07:74:3c:05:c9:38:23:c4:
                    4c:e5:8a:4b:c1:71:6a:5d:4c:99:20:2f:a3:2e:b7:
                    a1:dc:73:3c:61:57:60:6f:06:59:e4:10:a6:ca:ec:
                    e2:e6:61:ce:c0:3e:31:a5:ff:69:dc:76:e5:97:47:
                    91:a3:41:fc:ef:4f:dd:9e:99:5d:ce:eb:ff:40:80:
                    f8:39:80:e8:25:6c:c9:99:aa:ea:14:e3:48:17:b9:
                    24:d2:9e:5d:84:2a:21:e7:c8:61:e8:70:f3:3b:70:
                    67:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:14:AA:EF:AB:0B:1C:E2:19:E4:FF:E3:A2:1B:D3:C2:6A:DF:50:B7
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  64.252.103.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a6:f5:f9:ad:3f:59:9b:ae:15:1e:ce:b4:38:aa:17:98:6b:45:
         b7:6b:d2:b8:e8:88:2b:36:d4:2a:fc:ea:aa:4e:8c:ed:9f:ea:
         81:52:83:34:1d:77:72:b2:ad:2c:bf:8a:8a:78:25:7f:62:f9:
         f9:ef:60:ff:1a:dc:f5:0d:86:77:70:b7:f6:91:cd:33:33:3f:
         90:b9:ca:f2:04:a9:7f:ce:f8:ae:fb:11:db:92:02:64:27:c9:
         8d:1b:15:41:16:d6:a6:6a:6d:38:b7:34:cb:e9:bd:f1:4d:a7:
         75:b3:fa:5d:41:d7:ad:5c:37:84:68:23:27:cd:0f:67:87:ae:
         60:3f:3c:1b:8d:fe:89:8e:f1:3f:27:e6:8b:a6:ac:1e:63:8e:
         da:a5:f8:65:d6:af:89:a2:28:d2:94:2e:84:9f:28:7b:d7:64:
         a4:f4:57:b0:32:72:7f:bc:60:4b:50:7e:43:02:37:37:ed:f5:
         68:42:45:aa:4d:9a:b8:25:1c:53:b3:f1:89:0d:05:1f:c3:7b:
         75:4c:a4:52:6f:3a:6a:13:ac:57:31:c7:6f:03:15:c0:87:fd:
         42:b1:e9:fd:c8:de:06:cd:6f:9c:17:e8:88:cc:14:78:54:12:
         91:d7:54:0d:34:4a:b4:7f:d1:82:58:20:69:b1:2c:3f:05:48:
         43:a0:7b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----