This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eaf6742-59c5-48eb-a0f8-74c2f6d197de.roa
File:                     9eaf6742-59c5-48eb-a0f8-74c2f6d197de.roa (raw, json)
Hash identifier:          DGNe79gn7ECyKKd4gOerWFBXY1dlgnjA38jrvpLrVgM=
Subject key identifier:   09:A7:F8:24:FC:58:91:C5:51:8B:73:D4:C0:66:85:FC:58:FE:B5:A3
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       6EB4EFDE13EC2C1F38E130A9A085C1112BADC863
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eaf6742-59c5-48eb-a0f8-74c2f6d197de.roa
Signing time:             Wed 12 Nov 2025 01:21:22 +0000
ROA not before:           Wed 12 Nov 2025 01:21:22 +0000
ROA not after:            Wed 17 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        23.22.73.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6e:b4:ef:de:13:ec:2c:1f:38:e1:30:a9:a0:85:c1:11:2b:ad:c8:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 12 01:21:22 2025 GMT
            Not After : Dec 17 23:59:59 2025 GMT
        Subject: serialNumber=45b6a5c3cdf61e4764140237ef9bdf1fc0554bebacb227dcef4f88ebf3d6c5d4, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:90:c7:7f:74:cb:d8:33:a0:40:c8:52:92:db:
                    8e:91:bb:9c:35:63:ad:7a:86:76:4b:65:ab:6d:8b:
                    d2:4e:68:9c:89:1d:4c:6b:c0:ab:f9:99:e9:93:87:
                    9b:11:db:73:00:fb:93:07:43:9a:5d:93:81:0d:34:
                    20:f0:27:60:a9:74:13:8f:42:03:a7:2a:bf:79:de:
                    49:b9:9e:9a:e4:97:7c:e8:5b:77:93:df:5c:67:35:
                    99:5c:45:33:b0:f9:ca:ff:55:31:a6:8a:64:ff:f3:
                    6a:62:c6:84:29:62:c0:2f:80:95:3b:25:f9:8f:39:
                    2d:b6:11:c6:74:49:06:ab:82:de:e3:d7:76:ed:c1:
                    c3:19:8e:d9:93:63:9a:89:33:dd:1b:6d:c9:4c:14:
                    84:ab:1e:a2:76:2b:c7:fd:8f:f2:8e:45:9a:3f:1d:
                    a6:61:31:e6:3c:8f:60:ad:f2:67:be:ac:8c:f9:1d:
                    8e:57:52:4d:b8:6c:6d:7a:45:ff:e2:25:da:90:d8:
                    33:1d:00:82:7f:a1:3d:20:a0:11:c6:b4:5d:8d:73:
                    fa:73:c7:d6:59:7c:d9:23:7c:be:79:15:02:e7:d4:
                    54:2a:b3:b2:4d:b6:74:1d:84:d9:cd:4c:db:31:b7:
                    cc:92:9e:49:e3:97:49:f7:bc:b4:db:47:bf:50:7b:
                    e1:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:A7:F8:24:FC:58:91:C5:51:8B:73:D4:C0:66:85:FC:58:FE:B5:A3
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eaf6742-59c5-48eb-a0f8-74c2f6d197de.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.22.73.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8f:90:82:ef:93:6d:80:bd:fe:a0:a7:49:6b:a5:e2:03:68:79:
         7a:fc:92:e8:2e:09:b8:65:12:7e:f5:cb:45:89:3c:15:96:71:
         6a:e4:a5:f3:3f:4b:22:0c:85:b1:45:3b:1e:c6:fd:f3:51:1a:
         f5:5c:3b:82:6b:bf:8e:b1:4d:89:51:fd:15:80:1f:b5:92:f3:
         13:a6:dd:18:54:3b:cb:87:0f:4b:a4:33:24:25:e3:d3:23:6f:
         25:d1:c0:1e:7c:67:95:02:06:be:b1:9a:e4:29:2f:c4:da:9c:
         3e:ab:e7:da:d2:2e:c0:bd:94:b9:8f:d3:ed:f6:46:5e:7b:fc:
         70:08:d2:03:12:c7:7b:d2:e6:77:71:7a:ae:a1:9f:9d:c7:25:
         56:4d:e0:76:92:0a:9a:4a:03:8b:ec:ed:30:a4:e6:89:f7:49:
         64:03:fb:eb:43:a9:33:bb:ae:00:1e:aa:43:25:8a:2d:ca:cc:
         89:1a:1d:f6:5d:42:d4:82:e1:0f:2e:9a:ba:da:3c:e2:34:07:
         96:97:cd:18:58:e7:38:ff:8f:d9:c6:86:a5:30:eb:39:a2:eb:
         6b:e8:ab:72:69:b8:01:07:3c:56:e4:4e:6d:25:09:e1:6a:56:
         5c:69:bf:19:87:10:64:08:3e:a7:62:ad:0d:3b:25:a3:cd:ff:
         b5:e3:48:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----