This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940e6819-f33a-487b-a1bc-7e71b4c73025.roa
File:                     940e6819-f33a-487b-a1bc-7e71b4c73025.roa (raw, json)
Hash identifier:          5fNxHWW+mi0u/ZNUV0+HO284l980V8UfVeElOwPVU9I=
Subject key identifier:   4E:F4:A0:D4:C3:2E:32:75:BE:F5:B6:58:54:FE:8D:9D:79:38:38:D5
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       04D134110761D6061048D9C8B97147DC92268C62
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940e6819-f33a-487b-a1bc-7e71b4c73025.roa
Signing time:             Tue 11 Nov 2025 00:40:10 +0000
ROA not before:           Tue 11 Nov 2025 00:40:10 +0000
ROA not after:            Tue 16 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        161.178.0.0/19 maxlen: 19
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d1:34:11:07:61:d6:06:10:48:d9:c8:b9:71:47:dc:92:26:8c:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 11 00:40:10 2025 GMT
            Not After : Dec 16 23:59:59 2025 GMT
        Subject: serialNumber=0809552b67433ec8eae766215742c3b65cccee0b3d9d64deb0f3dda3ff983ee8, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:7a:3c:8f:cd:f7:60:db:9e:22:41:22:21:ce:
                    97:d8:f5:8c:72:3d:96:a9:9b:e7:c6:ac:cd:7e:7a:
                    49:1c:9d:e0:cf:b7:38:87:ce:5f:f2:d0:b8:a6:fe:
                    35:ea:80:50:40:6f:ab:2c:55:b0:b3:e0:53:d5:f3:
                    1e:6a:a4:c5:a2:3c:56:3c:b5:38:26:7d:7e:bc:54:
                    e4:9e:d3:03:c3:46:e0:d9:08:03:31:32:03:cc:5b:
                    1a:66:a5:c3:36:72:2a:85:7d:86:a1:f6:3c:09:bd:
                    30:7e:f4:96:30:91:f2:7a:12:bf:87:f5:eb:ec:ba:
                    1a:cf:5f:3c:b7:2d:01:2f:c1:5f:b4:34:e0:84:8a:
                    52:fe:b0:d8:44:ce:19:fa:f8:03:07:dc:0d:7b:bb:
                    76:74:ce:1f:17:e6:04:f2:aa:18:51:6b:67:37:8c:
                    95:86:5a:3f:8e:c5:bf:bd:bb:ec:e1:d9:38:10:63:
                    6e:21:c8:9a:d4:96:e7:47:42:aa:17:01:65:63:0c:
                    1f:2c:57:cd:b7:0c:38:52:f8:7f:1d:2f:7d:fd:5b:
                    d2:97:a2:21:0a:97:a0:72:2e:8a:5c:c4:34:73:ae:
                    7d:8a:05:7d:b9:7c:63:53:f3:0e:42:c1:e9:a8:01:
                    34:5f:12:3e:a7:bb:5c:54:10:da:99:99:9e:16:cf:
                    52:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:F4:A0:D4:C3:2E:32:75:BE:F5:B6:58:54:FE:8D:9D:79:38:38:D5
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940e6819-f33a-487b-a1bc-7e71b4c73025.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  161.178.0.0/19

    Signature Algorithm: sha256WithRSAEncryption
         6a:d9:c4:bf:bb:78:b1:22:a9:56:24:0a:ac:bf:63:97:2b:a6:
         4e:c3:03:ae:f0:ed:fa:c3:11:e2:9e:9a:be:4a:00:c3:22:6a:
         1a:0f:0f:98:a1:a2:60:fb:c5:a0:87:49:4d:fe:f1:3e:85:3a:
         46:29:59:18:0f:8e:13:74:df:99:80:48:f0:8a:5a:0d:5b:5f:
         f6:31:4c:0c:94:81:34:85:4d:66:95:52:f3:8e:a5:e5:93:61:
         d7:76:05:85:3f:04:a5:90:26:47:e0:94:b4:e9:c2:17:7a:b7:
         6f:cf:ce:94:7c:b3:60:8b:bc:b5:fd:53:79:d1:da:69:ad:32:
         6b:44:90:e5:4c:b2:f6:88:e6:3c:ab:0e:6e:a2:48:8d:b2:50:
         11:a3:66:3c:e3:90:51:d3:85:6c:f2:b3:3f:e5:02:16:e9:9a:
         f4:12:be:47:67:76:30:4c:65:8c:3b:82:a4:27:53:34:67:40:
         02:64:fb:ee:1d:b8:09:0e:e2:8a:43:2c:bc:53:a1:dd:a6:1f:
         60:db:f4:9e:9d:4a:b3:60:fb:d6:34:d0:c3:40:b9:f5:25:7f:
         b2:10:db:6a:ad:e6:92:7c:56:ce:6d:a9:4b:74:9b:95:5f:e2:
         48:cc:4c:6b:da:90:bf:53:34:b0:a8:02:62:3b:75:65:ab:2d:
         cf:04:75:df
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUBNE0EQdh1gYQSNnIuXFH3JImjGIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTExMDA0MDEwWhcNMjUxMjE2MjM1OTU5
WjB6MUkwRwYDVQQFE0AwODA5NTUyYjY3NDMzZWM4ZWFlNzY2MjE1NzQyYzNiNjVj
Y2NlZTBiM2Q5ZDY0ZGViMGYzZGRhM2ZmOTgzZWU4MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCqejyPzfdg254iQSIhzpfY9YxyPZapm+fGrM1+ekkcneDP
tziHzl/y0Lim/jXqgFBAb6ssVbCz4FPV8x5qpMWiPFY8tTgmfX68VOSe0wPDRuDZ
CAMxMgPMWxpmpcM2ciqFfYah9jwJvTB+9JYwkfJ6Er+H9evsuhrPXzy3LQEvwV+0
NOCEilL+sNhEzhn6+AMH3A17u3Z0zh8X5gTyqhhRa2c3jJWGWj+Oxb+9u+zh2TgQ
Y24hyJrUludHQqoXAWVjDB8sV823DDhS+H8dL339W9KXoiEKl6ByLopcxDRzrn2K
BX25fGNT8w5CwemoATRfEj6nu1xUENqZmZ4Wz1KDAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUTvSg1MMuMnW+9bZYVP6NnXk4ONUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzk0MGU2ODE5LWYzM2EtNDg3Yi1hMWJjLTdlNzFiNGM3MzAyNS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAWhsgAwDQYJKoZIhvcNAQELBQADggEBAGrZxL+7eLEiqVYkCqy/Y5crpk7D
A67w7frDEeKemr5KAMMiahoPD5ihomD7xaCHSU3+8T6FOkYpWRgPjhN035mASPCK
Wg1bX/YxTAyUgTSFTWaVUvOOpeWTYdd2BYU/BKWQJkfglLTpwhd6t2/PzpR8s2CL
vLX9U3nR2mmtMmtEkOVMsvaI5jyrDm6iSI2yUBGjZjzjkFHThWzysz/lAhbpmvQS
vkdndjBMZYw7gqQnUzRnQAJk++4duAkO4opDLLxTod2mH2Db9J6dSrNg+9Y00MNA
ufUlf7IQ22qt5pJ8Vs5tqUt0m5Vf4kjMTGvakL9TNLCoAmI7dWWrLc8Edd8=
-----END CERTIFICATE-----