This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa
File:                     b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa (raw, json)
Hash identifier:          T8m43Y5im9dARAJZj+ByWDRamV40zcudyDZVhxRp6SI=
Subject key identifier:   91:EC:3C:92:54:29:FD:73:4B:A7:AB:8E:F2:63:85:CF:13:22:49:EF
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       3E2165A42EA13F1A838408A70544ED7E03543AE1
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa
Signing time:             Thu 20 Nov 2025 00:40:49 +0000
ROA not before:           Thu 20 Nov 2025 00:40:49 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        56.82.0.0/16 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3e:21:65:a4:2e:a1:3f:1a:83:84:08:a7:05:44:ed:7e:03:54:3a:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:40:49 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=faf02090f4beff79bbfb37d99255ab28140804a5f53a5b15c501bf401dcada0d, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:89:7a:29:10:81:ec:e0:af:23:3e:cc:75:14:
                    18:3b:4c:4a:dd:fe:b3:19:46:eb:a5:c5:38:41:33:
                    c7:ac:f1:d5:ec:1f:44:26:14:12:44:bf:88:93:b3:
                    13:e2:50:c6:34:fa:69:17:ef:09:57:a7:85:a7:b7:
                    d5:59:0b:32:3d:3c:83:30:dc:a9:f5:9f:93:c2:20:
                    04:3e:49:d6:8b:61:4f:71:4f:6a:21:43:b9:cb:08:
                    71:5a:e9:24:6e:4f:29:c3:23:ad:8b:ae:5c:e4:11:
                    7a:32:11:df:ce:9f:80:4e:a0:90:bd:ea:f4:d5:4c:
                    7a:7b:b0:3a:83:9a:4b:d3:55:3c:b7:72:20:19:5b:
                    fc:83:af:47:73:7d:90:3f:b9:42:1f:32:d2:c1:da:
                    bb:85:c9:48:2a:bb:da:c0:4c:9d:c0:3a:0a:3d:cb:
                    d6:12:a9:72:71:b8:4f:81:2b:27:38:9e:27:4d:99:
                    50:51:87:ea:21:fc:e0:6f:c5:3d:06:94:d2:7c:f7:
                    bb:98:1b:6f:88:e3:a1:b0:45:e4:7f:bb:25:7e:ea:
                    2f:d9:46:6f:54:77:db:de:b2:1f:b7:02:67:99:23:
                    76:34:99:fe:92:42:ff:98:5e:e2:0d:10:3c:c2:5c:
                    4c:eb:0b:68:59:33:41:c2:fb:27:91:93:4c:43:d4:
                    e4:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:EC:3C:92:54:29:FD:73:4B:A7:AB:8E:F2:63:85:CF:13:22:49:EF
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.82.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         56:c5:10:4f:fc:ee:85:62:1d:86:1a:c9:74:7b:e8:b5:65:6d:
         97:8d:4d:fc:a9:94:20:75:b6:bc:60:89:14:18:37:e5:59:81:
         25:15:6a:48:e6:c8:45:96:31:5a:b6:5f:97:e0:17:5b:57:1d:
         d5:ac:f5:94:b9:bb:34:11:3c:e7:ff:80:85:39:51:ef:db:3a:
         7e:ab:9d:9b:f0:c8:41:87:48:d0:3f:0f:fe:81:6c:97:10:a7:
         64:19:3d:7d:0e:db:93:48:13:26:cc:3b:2c:db:1d:17:bf:7e:
         01:c3:58:f8:71:94:ee:d8:19:f1:ac:25:87:af:8c:d0:33:cf:
         84:4d:12:1b:d8:b5:30:56:53:76:22:51:11:94:6e:15:5b:1e:
         b6:67:76:21:72:c0:3a:95:a0:30:8e:ac:1e:dc:f8:3b:09:ad:
         b7:dd:36:6b:0f:d7:2c:e8:99:a6:27:be:81:b2:61:1d:97:9e:
         19:fa:a3:a8:7d:04:27:b8:dd:47:67:af:16:d9:17:01:25:66:
         72:11:e5:a6:2d:4e:f3:3e:b0:aa:fc:be:81:56:e5:98:93:f7:
         59:5a:dc:0f:2d:21:30:fc:97:25:71:83:ea:43:3b:4b:58:c6:
         fd:ec:b0:74:77:57:7a:c7:2d:f6:bb:d3:6f:01:3d:53:8e:de:
         d5:3e:06:24
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUPiFlpC6hPxqDhAinBUTtfgNUOuEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDA0MDQ5WhcNMjYwMjE4MjM1OTU5
WjB6MUkwRwYDVQQFE0BmYWYwMjA5MGY0YmVmZjc5YmJmYjM3ZDk5MjU1YWIyODE0
MDgwNGE1ZjUzYTViMTVjNTAxYmY0MDFkY2FkYTBkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC5iXopEIHs4K8jPsx1FBg7TErd/rMZRuulxThBM8es8dXs
H0QmFBJEv4iTsxPiUMY0+mkX7wlXp4Wnt9VZCzI9PIMw3Kn1n5PCIAQ+SdaLYU9x
T2ohQ7nLCHFa6SRuTynDI62LrlzkEXoyEd/On4BOoJC96vTVTHp7sDqDmkvTVTy3
ciAZW/yDr0dzfZA/uUIfMtLB2ruFyUgqu9rATJ3AOgo9y9YSqXJxuE+BKyc4nidN
mVBRh+oh/OBvxT0GlNJ897uYG2+I46GwReR/uyV+6i/ZRm9Ud9vesh+3AmeZI3Y0
mf6SQv+YXuINEDzCXEzrC2hZM0HC+yeRk0xD1OQZAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUkew8klQp/XNLp6uO8mOFzxMiSe8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2I4ZTg2N2YzLTk0MzAtNGVjMi04YmUxLWM3NDA2YjEzN2UyYS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA4UjANBgkqhkiG9w0BAQsFAAOCAQEAVsUQT/zuhWIdhhrJdHvotWVtl41N
/KmUIHW2vGCJFBg35VmBJRVqSObIRZYxWrZfl+AXW1cd1az1lLm7NBE85/+AhTlR
79s6fqudm/DIQYdI0D8P/oFslxCnZBk9fQ7bk0gTJsw7LNsdF79+AcNY+HGU7tgZ
8awlh6+M0DPPhE0SG9i1MFZTdiJREZRuFVsetmd2IXLAOpWgMI6sHtz4Owmtt902
aw/XLOiZpie+gbJhHZeeGfqjqH0EJ7jdR2evFtkXASVmchHlpi1O8z6wqvy+gVbl
mJP3WVrcDy0hMPyXJXGD6kM7S1jG/eywdHdXesct9rvTbwE9U47e1T4GJA==
-----END CERTIFICATE-----