This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2aac29b-3f59-4033-b72e-37b2aab7d1c7.roa
File:                     f2aac29b-3f59-4033-b72e-37b2aab7d1c7.roa (raw, json)
Hash identifier:          gd3MKC5wdPInqL00iWjZoyGkV4/p2nrwvPhkcUrKpFI=
Subject key identifier:   9D:A9:D9:0F:4B:BC:CA:84:E6:00:E6:68:73:B3:57:75:A7:6E:43:55
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       3733907C5FCF5A707E65C06418AD3D7A837E4896
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2aac29b-3f59-4033-b72e-37b2aab7d1c7.roa
Signing time:             Sun 16 Nov 2025 00:01:40 +0000
ROA not before:           Sun 16 Nov 2025 00:01:40 +0000
ROA not after:            Sun 21 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        56.156.0.0/15 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            37:33:90:7c:5f:cf:5a:70:7e:65:c0:64:18:ad:3d:7a:83:7e:48:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 16 00:01:40 2025 GMT
            Not After : Dec 21 23:59:59 2025 GMT
        Subject: serialNumber=7f1c4c08638549e47e46101abd782322becddaf39cebadff64895008032288b1, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:66:4f:f0:40:a9:e2:07:9b:66:ae:70:b3:f6:
                    6b:0d:4d:05:01:72:2f:cd:10:dd:6d:b4:90:85:61:
                    a9:05:50:5c:1e:77:8b:7b:67:d4:1e:25:d8:d3:1b:
                    d9:05:7a:6b:99:5e:ee:72:68:8b:1b:54:9a:75:fb:
                    b3:91:5b:e8:e9:7d:02:fd:de:12:93:55:6f:ff:ff:
                    d4:b5:dc:be:08:5d:e4:b7:01:14:f3:7e:06:40:9c:
                    52:47:92:40:3e:ee:2f:77:5b:3f:b7:96:36:66:6c:
                    08:e0:4b:74:dd:f3:3f:08:1f:53:0e:4a:11:57:82:
                    17:1d:80:a4:8e:e1:07:10:54:a0:2a:22:7b:f3:38:
                    6a:60:37:83:7b:c1:a0:8a:3b:7c:cd:d5:49:44:2c:
                    5d:8a:39:24:63:83:92:8e:7f:c2:00:17:27:84:e8:
                    ff:10:fc:6c:32:99:d6:a3:6b:10:f6:67:da:00:f6:
                    87:c8:cf:64:22:32:a3:1a:2b:a6:40:88:1e:05:46:
                    1c:e3:c3:9f:8f:b3:dd:a0:44:af:46:ac:f1:57:cc:
                    c3:0b:80:8e:1a:d4:89:c2:39:af:35:eb:ec:90:ad:
                    9a:70:54:d3:2e:fd:a7:12:22:2f:e3:50:2f:e0:ba:
                    2a:a9:aa:ce:18:38:64:8f:c6:6a:91:3e:47:4c:f5:
                    7a:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:A9:D9:0F:4B:BC:CA:84:E6:00:E6:68:73:B3:57:75:A7:6E:43:55
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2aac29b-3f59-4033-b72e-37b2aab7d1c7.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.156.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         80:1f:b1:46:8a:bf:1f:fe:15:50:4e:56:08:fe:6d:cd:b3:76:
         a1:e8:af:9d:7d:10:a8:2c:fa:4b:08:ba:80:72:bc:c2:0b:fa:
         7d:f4:ee:ec:aa:7e:ce:e1:f1:ef:8d:21:66:0e:6a:c0:87:cc:
         90:3f:67:26:fd:38:32:5f:85:e0:d9:99:f5:e9:ef:3f:ea:24:
         1d:f1:20:ed:9b:24:fd:3e:be:10:2a:b1:89:4f:cd:7e:b6:53:
         f8:51:85:71:4e:87:ab:50:ed:68:d2:2d:09:6f:e3:d0:b9:18:
         8b:4f:1c:31:65:3a:5b:0b:2b:b2:f1:46:44:57:f0:5b:99:6b:
         43:58:8a:af:90:c1:e3:92:ee:fe:27:45:35:0b:3c:c5:41:fd:
         cd:1e:26:02:0d:35:89:7c:df:5d:84:d7:3c:2d:45:b3:f5:f4:
         69:5e:f7:4d:a1:17:4c:f6:e2:97:55:7a:04:03:80:b9:67:b6:
         69:e7:1c:73:fc:d7:0c:c1:e0:48:8f:e2:f2:7f:cc:ef:b1:9b:
         74:54:e8:ae:94:0f:b9:6b:06:bf:6b:7a:b4:be:44:c3:1f:ae:
         f9:6a:95:f0:25:ba:ab:e6:5b:ec:02:01:bb:11:c9:bf:1b:48:
         41:2c:aa:14:0f:7c:3e:7a:61:1f:32:00:40:99:c4:47:56:df:
         67:e5:fd:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 21 07:34:47 2025 by rpki-client