This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa
File:                     c8766e16-a2c3-4078-aa9e-504e17a360f9.roa (raw, json)
Hash identifier:          vlYbJSTEGtYwBAzbqcRbxQ7/4AtEjm2yanZz/SNTZLs=
Subject key identifier:   45:86:CE:5C:BB:16:A7:07:6B:31:9E:06:D9:C1:C3:25:F6:6F:D3:2B
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       42F8B14326064B6A3E07B0B6FF83C2068812A6C5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa
Signing time:             Wed 12 Nov 2025 01:00:47 +0000
ROA not before:           Wed 12 Nov 2025 01:00:47 +0000
ROA not after:            Wed 17 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        161.178.0.0/18 maxlen: 18
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            42:f8:b1:43:26:06:4b:6a:3e:07:b0:b6:ff:83:c2:06:88:12:a6:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 12 01:00:47 2025 GMT
            Not After : Dec 17 23:59:59 2025 GMT
        Subject: serialNumber=35bd0c09c9ed65c2133f61643474cbffdc957f237c6b9af56aca2de25445c380, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:78:5f:5b:2c:46:bb:65:66:5b:04:8d:58:76:
                    52:0b:ab:02:11:a6:9a:d6:eb:53:18:57:70:fe:4f:
                    10:4f:84:c1:5e:b6:ac:60:1b:29:7a:21:f1:4f:0e:
                    0a:31:4b:65:89:47:2f:c0:a7:a5:e1:ce:40:dc:d5:
                    36:d7:e9:1c:f1:d2:42:ff:21:c2:02:58:39:84:ad:
                    4a:28:ee:da:f8:a7:ec:1c:16:4e:4b:63:3c:f4:f5:
                    1f:ce:0e:8f:5a:ad:d3:67:bd:d2:04:e4:7e:e0:0f:
                    ee:3a:5f:fb:69:8d:0c:f8:f5:3e:0d:7e:fc:27:6b:
                    5d:b4:cd:46:9d:e3:c2:dd:f0:19:e0:8e:ed:c6:10:
                    a1:bd:2b:c5:9c:5e:1a:ab:8a:d6:fe:88:d7:cd:13:
                    45:71:55:f9:21:26:4f:e9:ec:dc:49:5f:df:95:9c:
                    14:19:33:d1:b9:2b:ea:6b:22:2f:91:f5:c5:f1:8c:
                    62:f4:9d:a6:5f:28:64:f4:7a:10:72:e5:fa:de:c4:
                    b3:6e:7d:6e:5d:b3:9b:24:57:f0:00:b2:7a:70:ab:
                    d5:c8:77:fe:89:06:28:42:7f:d4:46:bf:d5:ef:50:
                    4b:8d:89:3d:2a:5c:18:44:f5:56:99:2e:ee:11:74:
                    e9:5e:ef:25:ff:e2:2b:f3:41:1f:73:4a:a5:3d:9c:
                    f7:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:86:CE:5C:BB:16:A7:07:6B:31:9E:06:D9:C1:C3:25:F6:6F:D3:2B
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  161.178.0.0/18

    Signature Algorithm: sha256WithRSAEncryption
         15:fd:3d:1d:a9:fb:63:8a:69:af:48:2f:52:6e:1a:6f:60:21:
         dc:5d:30:7a:8e:24:06:f6:65:8e:f2:45:6a:53:84:bb:61:09:
         30:4a:e7:1c:48:94:e1:de:94:37:ce:b0:a2:43:29:31:60:49:
         ea:a7:ca:d0:e4:98:17:e4:70:ff:77:c6:15:c5:98:2b:1d:72:
         ff:69:89:26:47:bc:c6:96:4f:d1:06:f7:3a:23:f6:e4:cf:97:
         36:6e:6f:9a:23:ae:a1:6c:6c:3f:3d:4f:b3:e6:4a:22:f8:80:
         11:ac:df:c8:1a:45:03:30:8b:82:c5:3e:f1:c8:bb:21:16:f3:
         67:b0:ba:6c:b4:1a:00:6a:3c:ea:b2:81:12:9c:12:a9:20:63:
         2d:b8:7a:6f:c4:95:10:2c:6e:63:11:b0:f5:7d:d9:50:b4:0e:
         90:c2:e1:fb:02:d7:a4:ca:8e:84:70:00:bf:29:3e:16:26:41:
         3a:e4:23:1f:7d:c2:2c:c0:f2:69:e6:b7:83:3c:a3:73:11:aa:
         33:99:af:03:1e:1b:ec:42:1d:60:19:ec:ac:6e:9a:1c:8d:e6:
         84:12:82:e7:a1:af:1e:0d:6a:64:40:5f:8c:f2:20:f9:19:4f:
         b1:77:8e:42:5c:58:2b:51:66:c3:2a:29:e1:7e:8b:69:4a:da:
         d7:02:89:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----