This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa
File:                     ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa (raw, json)
Hash identifier:          qWPhnYyvtXNPbkT63YUuu7AeyalBX9HKPu1OtL+/8CM=
Subject key identifier:   DD:B0:DF:19:C9:FA:7C:3C:1F:FD:CE:38:F9:37:F7:07:00:89:6D:0D
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       01E0EC23369EC7FF46BC0B04273209FA32AB3FE8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa
Signing time:             Sat 22 Nov 2025 00:31:15 +0000
ROA not before:           Sat 22 Nov 2025 00:31:15 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        70.232.112.0/21 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:e0:ec:23:36:9e:c7:ff:46:bc:0b:04:27:32:09:fa:32:ab:3f:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 00:31:15 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=e6fc223e50b60fcf9c65c33092874b4c57eb2e2de841424fc3bc0ec6ba43b022, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:c2:8f:e0:08:5d:bd:4f:6c:d2:75:92:6d:ce:
                    7d:fb:c1:eb:b3:15:7f:05:70:1a:69:94:70:94:f6:
                    e7:3c:8d:77:df:b8:2a:d1:fb:3e:dc:bb:12:d1:65:
                    08:8f:88:51:73:f4:a7:ae:34:1f:cc:45:a0:cd:a7:
                    0d:f0:06:b1:ce:24:7f:01:94:68:9a:30:7f:65:21:
                    02:79:0e:d0:23:45:57:fd:e2:4f:14:77:15:4d:de:
                    00:b9:9b:e0:5f:28:80:70:1b:28:08:be:7b:22:aa:
                    2a:0d:03:7b:31:35:6f:6f:77:09:48:8d:7e:41:e4:
                    81:91:e3:e1:4d:b5:e3:46:67:b9:ef:0e:1d:22:80:
                    f2:0c:a0:64:ab:be:f5:8a:4e:7f:7f:a2:fb:42:02:
                    3d:33:da:50:28:42:a7:89:b4:53:f4:a4:80:de:e4:
                    8b:8c:3b:b9:88:5a:b3:2a:82:fc:3b:15:62:4e:10:
                    9e:a7:3c:c8:58:4f:32:48:0f:eb:f7:0f:33:c4:65:
                    3a:97:87:ef:5e:09:61:61:10:80:a8:15:19:9b:66:
                    62:18:2f:da:8a:1b:f3:7a:98:c2:5a:df:5e:10:5a:
                    e7:a8:04:fb:2d:fe:1b:06:7f:2c:87:57:18:0b:73:
                    9c:8f:06:0b:70:f3:ff:cf:8d:df:af:99:23:8d:cd:
                    51:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:B0:DF:19:C9:FA:7C:3C:1F:FD:CE:38:F9:37:F7:07:00:89:6D:0D
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  70.232.112.0/21

    Signature Algorithm: sha256WithRSAEncryption
         50:39:88:75:1e:5f:57:8d:36:b1:ff:67:3b:97:e6:47:4c:b8:
         3f:ef:b2:94:31:b1:11:34:45:c2:26:68:05:2c:4b:a8:13:b9:
         e7:66:01:f6:99:08:39:b5:eb:b8:e4:99:5b:87:5a:94:93:7f:
         57:64:70:27:4c:2b:41:d3:1d:9f:e0:e0:e6:37:0e:47:af:36:
         ec:9e:86:bb:86:ea:ca:ea:f0:5d:3c:c8:a1:8b:fe:d5:03:cf:
         37:03:e8:9e:ea:85:cb:37:6d:94:cb:5f:75:4d:08:f6:a7:89:
         3a:24:11:66:d1:68:3d:9a:0c:41:7b:dd:69:91:27:e6:aa:47:
         02:cc:40:75:a7:d4:a9:45:02:82:6e:76:d7:63:f8:7c:9f:fc:
         ca:32:b4:72:f3:5a:c7:ff:dd:86:54:43:f6:db:7f:4e:73:59:
         64:16:67:22:e1:21:ee:7a:ef:e0:d8:5d:aa:77:45:c8:0f:5d:
         80:77:bd:cb:4c:52:44:f9:43:54:eb:38:b6:36:9e:7d:e1:06:
         50:37:18:f2:e2:20:78:bb:2b:df:e3:d0:9e:0e:07:77:a5:e8:
         94:8f:e6:eb:fb:5a:8f:66:5d:e6:d4:05:e9:41:4e:91:ab:52:
         64:62:5f:7c:fe:08:26:f4:3d:6c:d1:3a:69:7c:3f:a3:68:04:
         52:b0:fe:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----