This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa
File:                     d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa (raw, json)
Hash identifier:          6QzLHwB22liSBabraOiqQ3+TbPzKXT/Hfyrq+7jegs0=
Subject key identifier:   2A:7D:F6:39:85:04:21:CE:31:7A:E6:4B:F5:74:2A:26:F7:0D:E5:D6
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       0DFC49E77BDC2E091661FE7B47F0059D0D59E3FC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa
Signing time:             Wed 10 Dec 2025 00:00:11 +0000
ROA not before:           Wed 10 Dec 2025 00:00:11 +0000
ROA not after:            Tue 10 Mar 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        99.144.192.0/18 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 19 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:fc:49:e7:7b:dc:2e:09:16:61:fe:7b:47:f0:05:9d:0d:59:e3:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Dec 10 00:00:11 2025 GMT
            Not After : Mar 10 23:59:59 2026 GMT
        Subject: serialNumber=f4b0cc0b313329ec766f3565262c5a71aa2acd85c8e30db6eaa3daa90d129806, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:d5:a7:26:02:55:d8:11:d1:0f:f1:c8:62:cc:
                    89:f6:32:e8:1a:17:89:1b:f0:0b:9a:c9:b6:58:f7:
                    c8:59:88:d7:c9:1d:73:31:a8:f3:23:fc:f5:c9:5a:
                    16:89:cb:07:13:6e:b6:6a:7a:7d:ea:90:9b:33:71:
                    07:b8:b1:71:11:e0:8e:aa:4e:f1:cc:7e:d9:d3:0f:
                    b7:2c:38:5c:7f:08:b0:d3:fb:16:1b:ef:4f:4f:8f:
                    d2:ad:d3:1d:a8:6e:88:f6:c5:86:f6:51:32:d3:2f:
                    6f:51:d3:98:e5:d2:ea:fa:e8:6b:62:09:4e:0e:02:
                    03:ba:4a:a0:0b:f7:a3:e7:c0:48:e2:2c:2f:08:af:
                    ed:0d:a3:bb:91:fe:e2:d4:9f:97:1e:d6:aa:03:ac:
                    09:35:7d:37:23:c2:07:93:cf:55:38:42:54:3a:39:
                    0b:d2:00:40:d7:2e:d3:a1:c3:88:b0:2d:a9:aa:84:
                    1d:70:3d:da:cb:95:ed:ed:6d:dc:82:ea:5f:03:67:
                    4b:a0:d0:71:75:d2:26:b3:a7:7e:16:61:08:a8:c3:
                    78:52:c9:eb:ad:41:66:cf:6d:6b:32:34:23:dd:67:
                    b6:aa:ea:7e:21:2d:95:e3:17:5f:fc:fa:01:a4:2e:
                    57:1f:1b:f1:7e:d4:31:2a:2d:80:6f:96:6a:42:2c:
                    59:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:7D:F6:39:85:04:21:CE:31:7A:E6:4B:F5:74:2A:26:F7:0D:E5:D6
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  99.144.192.0/18

    Signature Algorithm: sha256WithRSAEncryption
         7f:cb:04:36:e2:41:5b:14:de:dc:27:8a:56:da:02:7d:68:03:
         21:fd:b5:26:d0:31:ab:c3:99:66:a9:93:63:16:58:ff:0f:cc:
         72:a2:51:22:e6:05:93:71:e1:33:65:ee:65:39:f1:89:c1:dc:
         a0:eb:24:eb:8d:ef:0f:6d:91:df:ba:d6:8e:b4:b3:07:19:e2:
         7e:52:c4:5a:89:6f:a1:cb:e1:ee:7f:c0:03:f7:66:01:a8:58:
         ab:50:5e:b2:71:8d:58:9d:74:06:23:53:b0:b0:0e:5e:1f:1d:
         b5:13:53:e1:f5:4f:be:de:c2:c6:1f:0b:dd:c6:54:c8:af:d8:
         41:ca:9b:5a:fe:8e:ef:7b:4f:ab:6f:8c:44:a8:6b:a7:71:f2:
         59:5d:2a:e9:1c:88:5f:e7:b5:c3:a3:da:e8:a0:94:1f:cc:c9:
         d8:47:8d:60:22:a7:0a:a7:2c:ce:8a:31:67:d6:3b:2c:b6:1e:
         d9:6e:3c:5b:2d:73:b4:3d:be:08:00:91:e0:a1:83:3a:3f:39:
         08:ad:1f:67:9c:ec:e7:6a:d7:9c:50:cb:a6:81:ea:42:96:86:
         46:62:45:fd:6e:52:57:21:45:ef:15:8e:f7:63:c3:50:43:9d:
         00:92:9e:bb:7b:55:d0:cc:6c:39:8e:30:4e:5a:18:e6:e6:8c:
         58:d8:10:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----