This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95efdbdf-e7ba-4335-8016-acab505b79ac.roa
File:                     95efdbdf-e7ba-4335-8016-acab505b79ac.roa (raw, json)
Hash identifier:          uQIYZt6FCLltuCKb5ipn99UynG4KVnUWzHUaIaswenI=
Subject key identifier:   C5:9E:EF:59:4C:FF:C3:E5:45:7D:79:6D:4B:B9:B2:19:86:61:B1:E3
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       5588EFFE4A60E4FD6BCA598A7545525EB6255AF6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95efdbdf-e7ba-4335-8016-acab505b79ac.roa
Signing time:             Thu 13 Nov 2025 00:41:38 +0000
ROA not before:           Thu 13 Nov 2025 00:41:38 +0000
ROA not after:            Thu 18 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        75.101.160.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            55:88:ef:fe:4a:60:e4:fd:6b:ca:59:8a:75:45:52:5e:b6:25:5a:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 13 00:41:38 2025 GMT
            Not After : Dec 18 23:59:59 2025 GMT
        Subject: serialNumber=20935e628acc5a75deacd5c27d1e90824273a556ff0f75b190ef124deed8fa61, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:90:8c:3f:3a:a3:9f:29:60:4a:62:74:99:7c:
                    ea:e2:20:57:d2:4b:f6:e5:23:bd:13:25:9d:41:9e:
                    a6:fa:35:3f:cb:9d:97:c1:3f:9c:bb:09:63:bb:e2:
                    6b:c1:2a:da:c2:e6:a9:27:9f:09:e8:49:db:d1:85:
                    fc:f6:58:a8:ff:b1:cd:b2:7e:7c:1c:de:f2:84:14:
                    15:f5:37:e5:91:6b:b2:1c:ff:47:5d:8e:85:40:75:
                    17:0b:6f:cf:42:c4:b3:1f:e4:d8:78:c7:6f:28:c0:
                    90:fe:f4:af:d1:f6:83:21:ac:6c:32:36:8f:a3:af:
                    61:f7:78:2e:08:01:72:8c:e9:65:37:c0:12:d3:29:
                    67:e5:06:35:86:5c:83:9d:3c:b4:10:cd:64:c2:c8:
                    ef:74:88:24:9a:7c:3e:64:02:f7:5d:71:e1:0b:25:
                    b1:af:11:74:51:ca:e2:b8:ea:41:79:23:77:a9:66:
                    df:14:2f:29:38:ec:67:10:80:41:58:49:92:99:43:
                    54:1a:a0:e5:50:d6:34:79:52:c2:00:0f:32:d7:47:
                    03:69:70:2d:ab:5e:7b:51:6b:d4:c6:0d:5c:5c:92:
                    e2:e8:da:a4:7a:00:bf:ec:48:aa:fd:af:61:4c:90:
                    7b:3a:a2:cd:c8:83:36:98:32:d3:00:4d:50:5f:cc:
                    38:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:9E:EF:59:4C:FF:C3:E5:45:7D:79:6D:4B:B9:B2:19:86:61:B1:E3
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95efdbdf-e7ba-4335-8016-acab505b79ac.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  75.101.160.0/24

    Signature Algorithm: sha256WithRSAEncryption
         35:8d:49:eb:1c:1e:49:2d:99:f8:b7:d3:d2:18:b4:e9:18:c9:
         d9:c6:ef:75:ce:d3:51:94:23:35:84:e7:bf:28:06:79:b3:59:
         8c:54:c2:1c:9e:1c:23:af:f5:d4:0b:ac:1a:a7:73:0a:11:c3:
         3a:1a:60:c8:d8:9a:4a:52:18:e9:13:bf:54:79:c1:fb:18:7a:
         8a:ca:f9:e6:8e:bb:66:de:0a:8a:9e:6d:e1:ac:f5:a9:e0:61:
         23:02:1d:71:47:00:1a:12:fe:33:05:5a:ad:62:8f:48:c2:55:
         cc:eb:98:eb:1f:31:0e:af:e7:a3:f9:74:a8:f0:ec:3e:82:7c:
         73:a7:02:1b:c4:4a:6f:25:a7:c9:4b:4f:bc:38:01:38:73:78:
         85:f5:27:23:7d:6a:b3:7a:f0:3d:0a:41:e0:83:d1:8d:68:38:
         d6:ce:24:71:0e:e2:d5:f7:28:ad:01:3c:ee:4b:71:fd:61:ac:
         d4:a9:fb:94:ab:d5:71:dc:3f:37:f6:4c:77:b3:d4:1d:26:f2:
         66:ba:40:54:8f:ab:e8:01:2a:2a:b2:f9:b3:a1:8c:8d:47:88:
         3d:4b:3d:90:be:e4:71:41:d2:b8:ee:99:61:fe:29:cd:c3:c2:
         19:c7:37:2f:bb:c0:b8:2a:11:6a:d2:05:d2:4b:33:5a:e0:c2:
         8f:94:64:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----