This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa
File:                     e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa (raw, json)
Hash identifier:          VWDN7p0hLf09WPzjhtE5U6jeSSRnNGlp/Aq04H/7XT0=
Subject key identifier:   4D:63:EA:05:99:9E:77:E8:19:B8:91:30:BD:50:08:C3:00:16:C1:84
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       23320455A48A01A1D16B28CDFE5DE02104C5395B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa
Signing time:             Sun 16 Nov 2025 00:20:46 +0000
ROA not before:           Sun 16 Nov 2025 00:20:46 +0000
ROA not after:            Sun 21 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        23.228.192.0/18 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            23:32:04:55:a4:8a:01:a1:d1:6b:28:cd:fe:5d:e0:21:04:c5:39:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 16 00:20:46 2025 GMT
            Not After : Dec 21 23:59:59 2025 GMT
        Subject: serialNumber=57b825b4d323477c32425ac8f533793e44dcb3676063b56d4a59f72fa6ee170d, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:06:a0:4d:d7:75:02:83:d6:a3:1a:03:f5:a4:
                    d5:30:83:ba:92:c1:3d:1a:c2:8a:6d:5b:f7:ec:8a:
                    80:40:44:9b:4e:53:b6:08:9a:62:fc:69:c1:67:f2:
                    dd:8f:71:33:04:e3:87:44:4e:50:69:a8:b0:f7:9c:
                    55:46:f4:24:b4:2b:85:fe:e0:2e:e7:ae:6a:84:e1:
                    75:d5:62:74:fb:6d:02:c3:11:94:90:19:ae:15:59:
                    ee:f1:61:72:8d:61:26:fd:ab:66:04:a6:9a:99:2e:
                    bb:48:c3:2b:55:0d:c0:36:76:6d:08:61:10:b8:33:
                    43:82:e1:03:95:ed:01:39:44:e4:98:fa:e6:d5:2c:
                    98:c2:d1:d2:ba:54:42:40:d5:bf:27:ee:39:f6:60:
                    49:1d:a0:6e:59:76:17:23:d2:86:de:bc:ee:63:b7:
                    44:14:6e:3c:fc:28:a7:8b:18:55:92:6f:97:d2:a3:
                    cc:7c:c1:86:0f:b0:c1:22:72:b5:62:04:ff:4c:43:
                    30:86:d4:8a:65:48:5d:c3:5c:a4:11:f6:7d:70:2a:
                    9a:cd:c7:a2:e9:d4:69:58:d9:b4:e7:e1:d5:b6:04:
                    9d:2c:01:39:38:1f:cf:2a:79:7f:54:0d:90:c3:27:
                    49:22:b6:e6:74:fa:0d:85:ad:6e:6c:a0:87:22:12:
                    51:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:63:EA:05:99:9E:77:E8:19:B8:91:30:BD:50:08:C3:00:16:C1:84
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.228.192.0/18

    Signature Algorithm: sha256WithRSAEncryption
         31:74:b5:af:af:56:23:04:15:ab:2e:c8:19:c2:55:f3:44:2c:
         1f:ce:09:aa:b4:88:c5:45:38:03:e3:81:dd:c2:74:e1:cd:0e:
         74:45:7f:1e:52:26:19:42:1d:3a:0a:cd:de:4b:7f:7a:e0:0d:
         44:9c:88:f2:0c:4a:72:65:51:39:71:5f:98:9f:87:f7:df:03:
         04:73:ea:92:64:66:fb:4a:76:6e:55:3f:d3:cb:1f:f2:b7:88:
         d4:53:b9:cb:b3:75:4a:8d:5f:a8:fe:05:8f:da:dd:ae:4f:d8:
         02:db:21:2b:3c:81:a6:df:4e:60:a6:b2:21:f0:92:da:02:4c:
         fb:5f:31:74:ac:6c:3e:ff:d4:fc:3e:3c:2e:4e:fe:bf:be:77:
         8f:40:72:97:5a:8b:a0:64:b6:85:12:bb:b8:cc:4c:fb:56:c1:
         78:fb:86:0d:f7:bb:d7:7f:bb:94:69:9c:6d:84:82:59:b9:21:
         60:27:fa:6f:2e:96:61:0e:af:39:76:85:12:da:8d:09:c3:e0:
         b9:f4:86:6d:91:7b:08:3b:85:28:ea:37:6c:34:0d:4f:29:d0:
         6d:8a:08:a4:bb:31:8b:43:a3:49:80:c3:02:81:34:44:a4:bb:
         c7:f6:84:21:18:6c:8f:60:9d:47:19:a4:62:c2:b0:ed:c0:dc:
         5a:20:06:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----