This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3d27018-08cb-4a1c-9991-b1aa4cfd3a79.roa
File:                     b3d27018-08cb-4a1c-9991-b1aa4cfd3a79.roa (raw, json)
Hash identifier:          P3mcD3DuS6B6W6Jq2PrVZj97pUUpe0w7Gnya1TL0T1s=
Subject key identifier:   A7:81:B3:D8:8A:37:6A:F6:9F:1D:5B:26:74:BF:7B:15:1A:0D:D6:C4
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       147816C4BB24A6192F4EBEA1AF9E2CEBC24E00CA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3d27018-08cb-4a1c-9991-b1aa4cfd3a79.roa
Signing time:             Sat 15 Nov 2025 00:20:44 +0000
ROA not before:           Sat 15 Nov 2025 00:20:44 +0000
ROA not after:            Sat 20 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        98.82.158.0/23 maxlen: 23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:78:16:c4:bb:24:a6:19:2f:4e:be:a1:af:9e:2c:eb:c2:4e:00:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 15 00:20:44 2025 GMT
            Not After : Dec 20 23:59:59 2025 GMT
        Subject: serialNumber=d0aec77825c351c98ce4ab96e4d512cff3ba6b17e7f8c4be414e376465f07063, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:63:c0:46:32:75:92:70:b2:34:47:4e:28:bc:
                    90:41:40:66:75:9b:7b:10:50:55:89:1f:b4:aa:6b:
                    f8:21:99:44:82:d9:94:ec:10:68:4d:2e:94:8c:c3:
                    08:d3:31:23:c2:0e:cc:c1:e3:b0:00:a6:1d:f7:df:
                    41:80:9e:be:57:ad:9d:9d:1d:f5:9e:b4:6b:e6:dc:
                    b4:09:08:13:e2:7e:f2:c3:40:50:15:d3:92:0c:b5:
                    b4:93:ff:c7:7d:ab:85:79:8a:05:08:fb:6f:ff:6b:
                    d8:c9:be:36:a0:a9:11:fe:7c:16:7c:61:cb:cd:28:
                    76:53:d5:27:d6:95:01:85:19:1c:e5:48:2f:fb:3d:
                    3b:90:c5:71:fd:73:5c:9a:31:f5:3c:4d:a3:27:4c:
                    02:35:31:09:8b:96:50:16:8f:70:16:74:12:d9:50:
                    bd:64:f9:4e:ef:14:1c:f4:0e:fb:af:71:ee:9c:47:
                    bf:5f:0e:e4:70:df:fa:ea:9e:33:da:dd:1d:51:b6:
                    ce:f3:cf:2f:06:ba:e4:32:7a:d1:2f:d3:56:27:da:
                    28:73:bf:c1:32:15:e1:6e:6f:97:e5:c0:13:fe:ef:
                    70:57:71:7e:9a:15:99:fe:52:28:89:5e:d9:51:17:
                    2f:a5:cc:b8:06:d9:8f:5d:05:77:41:a3:c0:79:1b:
                    04:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:81:B3:D8:8A:37:6A:F6:9F:1D:5B:26:74:BF:7B:15:1A:0D:D6:C4
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3d27018-08cb-4a1c-9991-b1aa4cfd3a79.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  98.82.158.0/23

    Signature Algorithm: sha256WithRSAEncryption
         05:88:07:e4:a8:c0:0a:5b:7d:0e:73:bf:34:6d:c5:e6:bb:83:
         91:c0:ac:72:9c:ea:0c:63:14:e5:d5:ed:c5:79:ff:4b:11:e5:
         df:4f:70:93:aa:5c:b5:f3:aa:fd:1c:09:37:5c:34:67:7b:25:
         58:ee:2d:b8:c8:bc:a9:39:ed:0a:7f:7b:26:4b:23:4c:aa:4b:
         46:69:3c:32:fe:cb:0a:4a:ee:a5:f6:a5:3b:ce:1c:33:4a:95:
         b6:42:26:09:ed:a8:0d:9f:79:66:66:a4:1e:3a:18:20:ac:69:
         37:72:e8:44:08:8c:7e:26:77:09:5f:3c:74:78:59:69:ce:53:
         d8:e3:b1:59:a5:1e:76:61:89:2a:c9:fe:f0:7d:26:a3:78:c4:
         b8:af:6b:0c:ea:d2:07:fd:2b:50:dc:df:78:cc:d5:e9:16:e7:
         bb:7e:10:c0:c7:58:71:7c:ac:11:b9:ab:a9:7c:d9:e8:39:e3:
         23:d9:b2:80:2a:a9:77:3b:9a:3e:39:cd:d9:8a:11:cb:32:fb:
         44:b3:30:88:d7:60:89:e5:27:e3:f2:e2:21:8b:d5:eb:4c:a2:
         c9:5c:87:6c:34:e7:3f:ff:c4:3c:dc:e3:dc:63:4e:aa:53:50:
         84:3d:fd:63:bf:16:fb:f7:cd:fd:0b:6e:73:a2:ee:57:8b:74:
         e6:45:61:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----