This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c56ff21d-fa51-44da-8d5b-81a37c826302.roa
File:                     c56ff21d-fa51-44da-8d5b-81a37c826302.roa (raw, json)
Hash identifier:          7VeWJZRyuWECdOJ897ZpEgqBmnf1eHY3Uzc9cXlc5oE=
Subject key identifier:   21:01:18:14:6E:F4:57:87:AE:45:16:00:B9:DF:EB:B7:BD:10:C0:33
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       50363E9AEF43CFDF3FC123AA2DD061ADA0A6B3E4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c56ff21d-fa51-44da-8d5b-81a37c826302.roa
Signing time:             Tue 11 Nov 2025 01:10:09 +0000
ROA not before:           Tue 11 Nov 2025 01:10:09 +0000
ROA not after:            Tue 16 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        2600:1fff:81d0::/48 maxlen: 48
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            50:36:3e:9a:ef:43:cf:df:3f:c1:23:aa:2d:d0:61:ad:a0:a6:b3:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 11 01:10:09 2025 GMT
            Not After : Dec 16 23:59:59 2025 GMT
        Subject: serialNumber=86a98b7b16a95e03ef74d765a6b61dba34067a5955856f34b0cea0b0503cf7a9, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:6d:86:2d:7f:1b:71:aa:2f:1b:df:e2:72:3e:
                    57:7b:b5:7f:c4:fa:6a:42:42:c8:cc:e4:95:bf:ef:
                    ed:bd:19:15:3c:62:f1:fe:19:f1:38:fe:b4:6a:9b:
                    11:3c:81:80:12:b8:3c:63:86:17:6c:91:5a:8c:2d:
                    c3:47:c0:22:bf:7b:cf:06:29:43:7a:a6:60:09:67:
                    99:2e:0e:cb:7a:93:3a:a3:ab:5f:c4:1b:32:9a:c7:
                    34:bb:ee:28:20:38:7c:83:b5:e9:57:90:05:ec:24:
                    86:17:34:f0:c5:67:e4:d4:f0:b0:02:62:9c:1a:45:
                    56:2e:30:74:ac:c6:20:55:b1:14:8d:60:31:b4:39:
                    fe:6d:a8:25:f8:99:2e:5d:94:06:18:41:c1:78:ab:
                    9b:a2:ae:71:1c:ad:f6:88:1c:b2:5e:48:b9:33:05:
                    a3:7c:3b:48:22:99:f5:b3:c8:76:b1:a1:f4:ff:4a:
                    ce:48:33:33:b8:02:98:61:ae:21:37:d5:19:65:cd:
                    c2:03:92:b9:5a:69:9b:40:23:4d:37:84:f8:52:90:
                    1a:0e:13:e8:b1:bf:7e:a0:49:85:b1:fc:af:27:d3:
                    75:bd:5d:bd:74:0e:b7:d3:5a:b2:d0:4d:8c:82:fb:
                    36:89:13:e6:96:b4:55:a5:0c:12:d5:a0:db:68:33:
                    ea:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:01:18:14:6E:F4:57:87:AE:45:16:00:B9:DF:EB:B7:BD:10:C0:33
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c56ff21d-fa51-44da-8d5b-81a37c826302.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2600:1fff:81d0::/48

    Signature Algorithm: sha256WithRSAEncryption
         38:2a:ea:53:3a:9a:7c:b5:8a:32:2f:46:9b:b6:40:28:e4:de:
         04:8b:8f:42:63:c3:5e:6e:78:ae:ee:7f:18:7b:ab:71:4f:fd:
         87:24:c1:18:69:c9:0a:58:b1:d3:16:49:1d:39:81:a4:6f:31:
         dd:7d:33:9b:1c:16:a7:20:df:50:c3:34:1a:85:15:1a:ea:b3:
         c6:3f:fb:c8:71:3b:09:67:cd:51:81:19:27:ef:3c:f8:a6:43:
         08:40:72:fd:4e:35:d9:96:62:db:1c:90:8b:24:af:34:a0:3d:
         ad:c1:cd:53:7f:6d:97:6d:41:c3:f7:26:fc:34:ad:cd:73:cb:
         19:d4:de:06:90:8f:ef:bb:71:cf:a6:cf:86:ae:a2:a2:b8:2f:
         0a:d3:35:b3:8a:0f:ba:01:9b:ff:9e:a7:e4:58:db:10:8d:c4:
         01:93:01:af:a3:1b:5b:7d:48:c0:24:24:67:a2:96:b4:0c:38:
         4b:ed:de:06:7d:f3:00:54:06:e1:af:29:0c:dd:42:b0:66:67:
         95:5f:45:6a:6d:81:82:e6:15:17:72:8d:9a:89:01:4a:bf:eb:
         4d:46:96:d8:5a:42:59:6c:d0:7f:a7:64:e1:ac:43:d9:7b:17:
         1b:84:19:8f:2b:53:d1:a2:45:db:a2:29:53:6e:d7:89:7e:9f:
         09:e5:ee:78
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----