This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa
File:                     b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa (raw, json)
Hash identifier:          /Z1SGvUEyDO54GFGYAviDgTqYf/XH5XxCYT4AQsx07g=
Subject key identifier:   03:60:C4:85:52:CC:75:B7:E3:85:3E:09:16:11:4D:10:38:23:04:21
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       2CED7A391266B0DCB042BD7F5E42BD68BE922873
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa
Signing time:             Thu 20 Nov 2025 00:20:55 +0000
ROA not before:           Thu 20 Nov 2025 00:20:55 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        206.134.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2c:ed:7a:39:12:66:b0:dc:b0:42:bd:7f:5e:42:bd:68:be:92:28:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:20:55 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=9d811433cd0fe9480111cda5fcd1bcd4b0e846cb01dd98f47de9e5ae038d6060, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:f4:ae:c0:e8:d1:80:28:75:30:2a:bc:2f:5d:
                    46:ac:48:69:f0:94:98:ae:0d:6a:7f:3c:e1:fc:02:
                    50:77:72:0d:5d:f5:5e:4e:1b:12:6f:0d:8f:e1:c9:
                    f4:09:02:ba:ed:92:ca:af:5f:35:28:22:bf:81:e1:
                    86:3d:c0:79:2c:8d:b8:d4:9f:9b:bc:b4:e5:6f:21:
                    ec:bd:16:eb:79:d0:76:c0:44:f4:49:8e:5d:99:2e:
                    ea:f0:40:08:26:ce:fd:f8:be:68:5c:ed:62:f5:d9:
                    6c:d0:07:2e:3a:c5:85:f9:7a:64:f4:25:3c:3e:55:
                    89:62:49:42:10:f9:72:fd:b2:ae:4b:26:17:2e:70:
                    ff:d0:ef:54:f9:3c:e2:ae:90:28:67:05:ca:d2:e9:
                    74:e4:c7:00:90:aa:a1:e2:18:d4:62:31:05:35:33:
                    f7:f1:65:87:e4:ee:70:36:45:04:68:8e:79:f5:9c:
                    0b:37:89:13:ab:9c:be:55:8d:9e:27:30:d1:1d:dc:
                    a1:6d:b7:70:70:20:df:2d:d3:3d:7a:5d:c2:26:79:
                    0a:0c:1e:68:1e:98:2b:41:57:68:1e:82:78:62:92:
                    c4:a7:4d:ba:99:39:90:c7:e3:de:4b:c3:0c:02:a9:
                    5c:a5:99:19:81:e7:a9:a0:7b:64:0c:ea:bc:e8:46:
                    27:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:60:C4:85:52:CC:75:B7:E3:85:3E:09:16:11:4D:10:38:23:04:21
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  206.134.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         41:d0:cb:a2:99:e0:ad:d1:c2:7d:5c:59:53:56:24:07:03:1e:
         25:db:89:52:a0:d1:67:29:c5:f8:63:cd:57:13:82:73:b3:dd:
         5c:3f:ca:36:4c:83:21:39:bc:eb:c5:05:67:2c:50:26:76:8a:
         75:31:35:b6:88:74:6e:7d:59:68:7c:c1:ac:96:ac:76:61:c8:
         ad:50:f6:03:3a:e5:c8:69:e6:23:a4:92:a2:26:19:ef:a2:c9:
         fa:19:12:99:f9:1c:8d:41:ba:e7:d2:af:c8:5b:f8:d1:fe:84:
         16:cb:c9:27:11:45:fa:f5:ec:d8:72:4e:12:e0:15:e9:24:24:
         d2:fc:46:2e:20:47:b7:54:5f:9d:78:8e:14:37:20:b6:a7:d8:
         f8:27:69:eb:2e:aa:db:7c:19:72:38:87:86:8d:d6:94:7e:74:
         4b:bb:57:7c:9c:3e:c4:ba:f4:9d:e6:30:06:6f:b0:0e:b3:83:
         c6:85:63:b2:9e:d9:4a:6f:f4:64:de:6c:81:36:ca:ac:81:f8:
         c2:3b:75:08:7a:21:39:68:2c:ec:aa:9c:45:b3:0e:4c:3a:fd:
         bd:7d:85:c4:2d:eb:3d:fd:cf:9d:f8:ac:a2:1a:fc:d4:ec:64:
         95:68:73:de:82:09:a7:f1:e3:5b:59:04:90:5a:76:e7:68:ef:
         21:a4:f1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----