This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa
File:                     f242a843-e5ef-4329-a630-1bbe90e85499.roa (raw, json)
Hash identifier:          RLLqFyES1oW+iyvAY44yNr/PDhJyWlV4n6WOHKJNjzE=
Subject key identifier:   43:6C:6D:B8:4C:90:97:AA:BE:27:6F:CC:E3:34:B9:1F:26:13:C7:8B
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       11DC185432911A57B5CC4A386D518882DE436B93
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa
Signing time:             Wed 12 Nov 2025 02:31:24 +0000
ROA not before:           Wed 12 Nov 2025 02:31:24 +0000
ROA not after:            Wed 17 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        161.178.32.0/19 maxlen: 19
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:dc:18:54:32:91:1a:57:b5:cc:4a:38:6d:51:88:82:de:43:6b:93
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 12 02:31:24 2025 GMT
            Not After : Dec 17 23:59:59 2025 GMT
        Subject: serialNumber=b4fcad12487cd02d30ead95ee6cdc80752d8b9181ce56e8ce6d65787b1da3c32, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:d2:b7:84:bd:02:09:8e:f9:a3:55:11:a8:90:
                    59:5b:2f:0b:52:26:1f:33:09:8f:f5:00:8f:b4:e6:
                    93:aa:16:67:11:2a:51:35:4d:af:c6:f9:2f:38:71:
                    21:fb:93:03:bd:00:06:de:35:0d:4c:e2:52:ff:d8:
                    db:81:0a:72:fa:a2:bb:d5:54:4b:73:ec:a6:57:3d:
                    d5:89:c9:c3:5c:b7:28:7e:f2:08:b9:47:6b:54:c1:
                    80:60:87:bd:66:fa:89:e5:47:8e:27:5c:70:c3:32:
                    90:3a:48:1a:a3:07:7c:59:e1:74:95:b9:55:88:56:
                    e8:3d:4e:ea:b1:ca:49:20:fb:b7:5c:28:f0:70:5c:
                    50:42:8a:68:3e:6e:43:c0:08:9f:ad:a0:f6:cd:01:
                    b6:b5:f2:86:07:30:bd:f0:0e:60:a8:95:61:0e:75:
                    6f:cb:9d:2d:5d:23:98:94:19:f3:ce:d3:36:9a:a5:
                    94:96:36:af:12:e1:d4:f8:73:c2:5c:2e:4f:bf:18:
                    e9:a8:73:7c:3c:d8:6a:ca:94:17:c4:3b:ad:3d:51:
                    e2:6f:85:7b:2e:2c:88:79:6d:3d:7a:8f:40:0e:68:
                    1f:65:44:dd:39:9c:5b:e4:dd:7a:fe:95:91:a6:10:
                    36:29:b3:97:cd:bf:d9:74:bb:4d:7b:ac:5f:5a:b5:
                    62:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:6C:6D:B8:4C:90:97:AA:BE:27:6F:CC:E3:34:B9:1F:26:13:C7:8B
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  161.178.32.0/19

    Signature Algorithm: sha256WithRSAEncryption
         78:54:d1:c6:77:b8:83:7f:f6:75:85:ec:7b:95:0b:c5:ef:ea:
         c8:1d:19:d0:95:cc:09:94:89:00:68:53:57:5a:cf:13:8a:a0:
         cb:4b:0e:ac:ff:3b:49:fa:be:b4:d7:f2:ce:9c:e1:19:4c:3b:
         9f:4c:54:c9:48:01:fa:04:02:3b:cc:04:7c:b8:53:e3:7f:f6:
         d9:f2:34:0d:5e:5a:12:20:0a:0c:40:5f:3c:10:6a:41:f8:36:
         bc:66:f0:e4:0f:a1:3e:20:a3:5c:e5:46:51:01:c9:33:87:98:
         14:f9:b4:c0:35:7a:67:a3:7f:e4:15:36:77:1b:b7:99:f5:65:
         0c:e7:c0:70:7e:cc:59:25:fb:55:42:37:8c:84:64:0f:4b:f6:
         c3:81:7c:1e:0f:cb:33:43:9b:1c:65:e0:ba:f2:0b:58:cd:00:
         58:16:f1:3c:b2:1a:c7:6f:77:bf:aa:ac:05:c1:16:17:6f:eb:
         98:18:65:58:f3:71:c3:de:fc:b6:d9:3c:a5:9a:4c:ed:75:b9:
         b5:98:28:b8:f8:55:82:22:91:27:a1:ad:bc:c2:61:20:a1:07:
         5f:ef:8e:fb:ab:63:d6:bf:e5:51:27:1e:85:a4:fe:52:58:bb:
         db:30:f7:c2:5a:0f:40:36:5b:93:db:1a:cb:ba:43:24:cc:48:
         bd:3a:7a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----