This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaadf69d-45bc-4941-90a9-dfce7b4bcee3.roa
File:                     eaadf69d-45bc-4941-90a9-dfce7b4bcee3.roa (raw, json)
Hash identifier:          BxMw9kk88p6dnj1S6qAAPaSsUcxuNTAZ7LxDORBZwJA=
Subject key identifier:   75:71:4B:14:30:C1:EF:C0:71:F4:FB:10:6A:0F:CC:97:7E:54:4F:27
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       1CEF0454FC0375596E88613D1B20520537331066
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaadf69d-45bc-4941-90a9-dfce7b4bcee3.roa
Signing time:             Wed 19 Nov 2025 00:01:08 +0000
ROA not before:           Wed 19 Nov 2025 00:01:08 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        168.185.4.0/22 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1c:ef:04:54:fc:03:75:59:6e:88:61:3d:1b:20:52:05:37:33:10:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:01:08 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=667f84d4351a2321c203afcf6cf18d5d196674a28c2d05d49b2fea4c1e9e3608, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:9f:5c:a8:c8:46:3d:7a:f8:0c:e1:0c:be:3f:
                    ff:80:cd:96:43:6a:d2:ff:7e:6b:11:e3:45:0d:4a:
                    6e:d6:8a:76:63:73:91:21:f1:e0:36:ed:d9:76:72:
                    2a:b0:80:49:72:f7:fe:8e:8f:50:9b:a8:6a:aa:34:
                    6a:7f:ec:5d:0f:f7:ec:b1:f8:d0:26:8e:63:0f:9e:
                    b7:d3:a1:cc:02:6d:a6:57:61:83:e2:a2:82:c0:6a:
                    ea:12:77:67:35:cc:8b:9a:e5:6b:9d:bf:0a:1f:c9:
                    97:c0:f5:1a:a9:c9:78:0c:06:98:56:8f:c7:93:a3:
                    20:c0:da:55:a7:a2:86:f3:e9:53:26:b4:fb:0c:41:
                    d3:12:60:ec:28:07:6f:b4:3c:82:b5:2f:05:2b:4e:
                    13:66:34:e3:56:e4:05:69:28:07:e6:64:d5:3d:5c:
                    f9:cc:03:b6:38:db:2c:75:9d:93:c8:a9:29:d1:26:
                    3b:d4:62:08:92:ad:e6:39:f9:98:b7:ae:b8:9d:0b:
                    ce:c9:ad:ae:52:5c:e9:22:3d:4e:0d:78:89:e3:40:
                    69:21:d3:5a:b8:93:b8:42:3d:94:0a:49:13:dc:1e:
                    e4:64:34:ce:2d:1b:42:4e:33:08:2b:e0:33:13:3a:
                    c7:3b:ca:1a:01:5a:f4:a5:11:9d:7e:d3:8f:9f:02:
                    0c:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:71:4B:14:30:C1:EF:C0:71:F4:FB:10:6A:0F:CC:97:7E:54:4F:27
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaadf69d-45bc-4941-90a9-dfce7b4bcee3.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.185.4.0/22

    Signature Algorithm: sha256WithRSAEncryption
         d4:8a:06:4d:46:dc:f3:43:95:a0:29:d0:3b:4c:61:3c:36:7e:
         29:99:49:47:bb:1c:9b:5a:ac:b2:cd:c3:0f:28:56:74:06:0c:
         9e:50:4d:7d:15:20:8f:3a:bc:54:c7:18:ef:e8:a6:1e:94:f7:
         f1:3d:9d:0d:80:0f:51:f7:d9:b5:7b:13:5f:06:c2:17:b6:d8:
         a8:22:b2:e6:1a:2f:b5:39:a9:e0:ac:d3:96:4d:22:40:fb:3b:
         9b:a1:09:d8:cf:77:51:ca:9a:88:6e:3d:25:d7:23:03:7f:56:
         31:10:25:5e:57:49:d9:a7:7d:64:9b:d4:86:c2:c9:93:c1:bc:
         8a:88:51:25:c6:9b:69:94:1d:e1:fd:51:e3:82:70:23:b1:d8:
         d8:1d:6e:b7:ef:47:1a:36:26:5b:49:d3:82:eb:24:68:ad:9e:
         72:b3:af:6c:bc:bd:a3:c6:e6:e4:e2:aa:38:e9:35:68:84:52:
         8f:8c:5c:eb:36:43:a3:bb:ad:33:a0:fa:1a:b2:13:bf:13:a9:
         5d:1a:75:e1:29:34:35:1d:88:9a:7c:5f:01:a6:29:8b:8f:c0:
         e3:b2:af:89:e6:dd:a7:e4:4f:65:89:5f:0f:7c:0a:98:e2:1a:
         7d:26:27:d4:a3:05:fb:c9:e2:4f:89:67:5d:8c:1c:b0:0c:7c:
         67:57:d0:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----