This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed432fea-e545-4d6d-beae-21ab78adea7b.roa
File:                     ed432fea-e545-4d6d-beae-21ab78adea7b.roa (raw, json)
Hash identifier:          5069Jmt1G3RRwPwZrc4uuKxfQ30Xr7iEQjl+K+5cMoQ=
Subject key identifier:   26:5E:E8:EC:37:0E:E3:FE:A2:7E:CD:28:25:32:85:10:9B:7F:CD:9F
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       7DEEA8C9E01BE20771933CB6B749F871075F6ADC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed432fea-e545-4d6d-beae-21ab78adea7b.roa
Signing time:             Sat 22 Nov 2025 00:50:34 +0000
ROA not before:           Sat 22 Nov 2025 00:50:34 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        173.246.160.0/19 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7d:ee:a8:c9:e0:1b:e2:07:71:93:3c:b6:b7:49:f8:71:07:5f:6a:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 00:50:34 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=3e40f48107659b83cafe99fe80700ca96da14507fca04159233e9ff91e6d3028, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f5:37:64:5f:ce:c9:e4:0b:30:87:d9:07:0e:bb:
                    ab:af:bd:09:14:18:40:06:95:0f:c8:9e:e1:d9:9e:
                    a9:41:da:74:b3:72:4c:2c:71:0a:46:96:db:b6:56:
                    27:2e:09:b7:38:0c:5e:00:5b:92:5d:31:66:f4:f2:
                    3a:f1:8b:2c:3b:9e:20:d8:c9:e2:27:0a:76:93:f1:
                    c0:30:54:be:5c:1a:ee:9e:df:7f:63:ae:5b:ef:5b:
                    ac:57:e0:f6:cd:4a:cf:f9:a3:e5:64:01:e1:8f:8b:
                    16:69:e3:85:ae:a7:63:f4:ca:39:96:37:1d:e9:42:
                    fb:22:55:e9:a5:59:d7:92:b9:7a:c5:8a:57:b3:97:
                    72:07:de:57:4e:42:5c:54:b8:3a:16:f8:1d:7f:cd:
                    4c:8d:c6:02:77:69:db:43:dd:83:1c:82:14:be:39:
                    de:57:35:0b:d2:5f:1a:89:b9:cc:3b:61:28:c7:fa:
                    42:bc:0f:3b:f1:9b:e9:7d:8f:0f:8d:ad:05:56:cd:
                    85:e4:1b:92:3c:e3:2b:68:b6:23:7f:96:75:b7:ce:
                    ca:0a:da:66:7f:c4:d3:40:11:66:19:e0:57:79:f4:
                    54:1c:a1:01:8e:0a:77:73:df:9f:1f:92:1f:95:9f:
                    ae:38:d6:50:64:b4:5d:11:9c:6f:91:33:b8:c2:fe:
                    88:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:5E:E8:EC:37:0E:E3:FE:A2:7E:CD:28:25:32:85:10:9B:7F:CD:9F
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed432fea-e545-4d6d-beae-21ab78adea7b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  173.246.160.0/19

    Signature Algorithm: sha256WithRSAEncryption
         5a:fb:8d:1e:58:50:d1:70:de:91:7d:a5:77:39:e7:bd:02:e9:
         48:d1:53:ad:3e:aa:cf:09:01:e2:44:7c:66:9f:b5:54:be:3f:
         12:be:cc:b1:22:5d:80:cf:04:fd:fe:e7:20:22:61:09:f2:4e:
         2d:c0:bb:26:2a:7b:fb:92:0e:3d:be:c6:da:ed:b3:27:5a:02:
         6d:0d:5a:c6:36:85:7d:76:20:65:09:fb:76:45:2c:ae:e3:19:
         61:a8:22:cc:46:86:a8:a4:c0:b7:ad:a0:2f:f9:f3:6e:e9:dd:
         74:79:79:2a:c2:62:08:fc:67:50:7e:32:d4:7d:41:a7:fd:bb:
         3c:b0:e0:bb:94:d4:35:99:3c:84:34:e2:d1:78:04:d9:99:36:
         d9:73:77:6f:fe:ee:58:e3:8f:cc:f4:e5:3c:9e:be:3e:40:b6:
         77:b2:b6:71:fa:f6:5c:3c:87:84:46:72:3d:1b:9c:c5:b3:ff:
         01:9f:4b:de:f7:f4:ac:bb:23:5c:d9:1c:f6:1f:8e:d7:ef:e6:
         dc:09:e1:c3:fe:bf:18:9f:61:d3:21:a1:7e:c5:87:a0:69:df:
         cb:ca:39:09:64:a7:a0:d5:81:1d:75:b3:b4:42:e7:4e:e3:84:
         2a:b7:1b:2e:00:fa:2e:79:94:a9:2f:10:b6:b7:55:89:62:ee:
         25:39:c6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----