This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b15f49e8-22b3-44f6-ab22-8f401dbf38c3.roa
File:                     b15f49e8-22b3-44f6-ab22-8f401dbf38c3.roa (raw, json)
Hash identifier:          S2RFjmuH3mcAk8LKJ3A8+hnDIC5EP6GZVFSDdwWNVjw=
Subject key identifier:   47:32:61:84:02:33:56:72:7E:5B:DE:50:A3:2F:14:CD:8B:CB:90:B5
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       6443A9444F0EFCEEA8D53C82FCFADA47794B8C7B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b15f49e8-22b3-44f6-ab22-8f401dbf38c3.roa
Signing time:             Wed 12 Nov 2025 01:11:42 +0000
ROA not before:           Wed 12 Nov 2025 01:11:42 +0000
ROA not after:            Wed 17 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        2600:1f1d:4000::/36 maxlen: 36
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:43:a9:44:4f:0e:fc:ee:a8:d5:3c:82:fc:fa:da:47:79:4b:8c:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 12 01:11:42 2025 GMT
            Not After : Dec 17 23:59:59 2025 GMT
        Subject: serialNumber=896ebdfe722eaa6a1f15cb605690f65860be9adeb4150618ba3d94821f6b4d63, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:74:46:5b:14:6c:16:a5:ac:f4:3c:d3:1a:6c:
                    91:6d:b9:ab:e0:f7:f1:26:08:ff:40:43:43:30:d1:
                    6f:1a:95:fe:15:83:a2:88:55:6b:7f:a2:b5:3d:a2:
                    e2:8a:3d:6a:ec:48:7a:ac:29:e4:17:9b:a8:38:1c:
                    cd:17:6c:77:99:8c:07:23:61:30:93:61:08:8e:e2:
                    d2:fd:41:06:2d:f2:2c:9f:2f:a6:a1:ae:ef:a7:7d:
                    79:a4:b3:6e:3d:93:84:ea:e4:42:22:63:3b:1b:fd:
                    c9:8e:c1:78:d6:9f:e7:64:73:f2:8f:08:3f:65:97:
                    0e:6f:23:37:c1:93:8b:bd:53:7e:9e:ef:26:7b:54:
                    c8:da:7a:ce:10:9b:83:18:47:06:d6:c8:bb:cd:2d:
                    94:31:b0:3e:65:b3:77:e9:45:7e:9f:b3:f9:08:46:
                    cd:5d:ac:d4:a2:12:46:f5:04:3c:16:bf:80:0e:d8:
                    44:a6:3d:c6:db:28:82:6c:76:d0:5a:de:4f:16:df:
                    59:30:a0:b6:d6:b8:54:8a:e4:28:81:a1:84:27:25:
                    2e:32:56:be:2b:d0:ca:b8:f2:0f:22:db:3c:a3:da:
                    55:b8:b8:39:45:10:4e:b0:06:8b:62:43:22:8e:f3:
                    68:15:75:c8:d4:37:dc:fe:5e:9a:cd:97:c9:4f:ce:
                    77:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:32:61:84:02:33:56:72:7E:5B:DE:50:A3:2F:14:CD:8B:CB:90:B5
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b15f49e8-22b3-44f6-ab22-8f401dbf38c3.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2600:1f1d:4000::/36

    Signature Algorithm: sha256WithRSAEncryption
         4e:3a:c1:ab:6e:ec:f1:96:a4:79:37:16:b0:4b:72:ef:52:95:
         22:b4:6a:5d:1d:7b:98:49:3c:7a:0d:1a:8f:e6:91:52:da:58:
         77:92:43:94:e6:c5:42:f6:a7:dc:7b:88:cc:44:91:38:d7:17:
         c5:98:57:38:0a:50:1d:12:ff:16:a9:f3:2a:55:48:62:2e:7c:
         f0:a6:fa:4e:ed:27:3b:0e:c9:0a:e3:7f:51:7f:76:16:f6:b1:
         12:9a:11:bf:ad:01:fc:ab:c3:5f:6f:25:ca:4f:21:7e:ed:e5:
         e7:9a:b4:9a:7b:bf:d0:00:61:78:41:70:20:d5:c7:5e:7c:46:
         3e:6c:af:9a:7f:c6:f6:31:8b:a7:8d:54:69:b1:0a:68:eb:49:
         8d:8d:2f:af:c1:1b:57:07:95:f5:97:1c:f5:f0:4c:87:45:13:
         39:4e:e9:d9:b2:54:d4:47:e1:55:69:93:da:97:0c:25:e7:1a:
         fc:6f:28:b6:69:0b:f6:eb:2e:71:93:c1:7e:f9:2f:89:d8:bb:
         2b:d8:0e:bf:25:91:30:13:d5:f3:a1:76:65:92:84:c3:68:a0:
         d0:ff:75:a6:83:eb:ef:94:ab:23:18:5b:60:b0:b5:42:6f:e7:
         db:62:5a:f0:ad:5b:e6:c7:17:89:54:76:2a:f9:96:80:60:ef:
         b0:d5:21:b1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----