This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa
File:                     fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa (raw, json)
Hash identifier:          mrsbqXJ9Ghj26mPobKPYMsiUzs3bzj9uDBRvPL7a+mk=
Subject key identifier:   09:B8:BF:AD:69:A3:FA:AE:99:09:31:A1:0B:14:0F:59:8F:37:E6:B9
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       7A6B3E8917F50EDE8FF6DA23419E14939334A66C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa
Signing time:             Sat 15 Nov 2025 00:40:10 +0000
ROA not before:           Sat 15 Nov 2025 00:40:10 +0000
ROA not after:            Sat 20 Dec 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        2600:1fef:7400::/40 maxlen: 48
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7a:6b:3e:89:17:f5:0e:de:8f:f6:da:23:41:9e:14:93:93:34:a6:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 15 00:40:10 2025 GMT
            Not After : Dec 20 23:59:59 2025 GMT
        Subject: serialNumber=39474f564d229ba3a650ed5bfe167309509e7ec1ea3c0a3b1b111bc3980591da, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:20:fd:db:cf:5f:66:ff:79:ad:f1:47:d4:14:
                    e3:93:8f:4e:a0:62:bb:5f:6c:41:0e:68:97:11:f0:
                    c3:52:40:d2:ee:4b:c6:65:ae:74:c4:30:7b:d9:19:
                    25:83:6a:e8:ad:c9:37:e4:ee:c5:87:8d:0b:04:03:
                    f0:d3:76:70:40:5a:4a:b4:39:d4:f9:7b:de:e5:4e:
                    be:65:7f:c7:2e:43:76:81:b0:de:31:af:38:66:63:
                    85:81:b4:5f:6a:29:0c:ab:ee:d5:d3:4e:14:42:60:
                    4d:91:c1:af:4e:33:50:b2:68:c9:38:cd:f6:77:3d:
                    48:96:91:00:a6:5e:52:8c:ad:2d:c2:d9:2d:26:3f:
                    e7:5c:e4:69:ea:9c:c3:e5:a9:7e:43:af:8d:10:75:
                    b5:7d:b4:ff:50:12:3a:3c:f0:bb:b8:de:91:3f:fe:
                    b4:1a:3d:07:0c:ce:19:27:05:34:dc:60:51:27:dc:
                    e4:5e:5c:35:10:49:30:8a:f8:82:20:88:45:26:8a:
                    d8:d1:35:8d:a1:43:aa:9a:77:34:1b:48:c7:c7:e5:
                    04:aa:51:e7:ba:de:ae:00:c7:c7:91:c8:b1:f6:eb:
                    0e:0f:7f:aa:77:01:1f:15:a4:b4:55:cf:07:88:e2:
                    98:6f:43:86:e8:fd:d9:9c:16:2b:28:b5:e7:d7:33:
                    d6:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:B8:BF:AD:69:A3:FA:AE:99:09:31:A1:0B:14:0F:59:8F:37:E6:B9
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2600:1fef:7400::/40

    Signature Algorithm: sha256WithRSAEncryption
         65:c6:36:d1:18:7d:29:3b:0e:d8:16:96:81:c7:7b:90:05:56:
         cb:09:24:05:ed:3d:5b:27:57:9a:64:1b:86:81:f9:9e:c3:50:
         18:aa:5d:30:6d:aa:54:5b:8e:cd:af:a0:c8:8a:5c:2a:48:f9:
         31:26:f2:4a:84:8b:b0:3b:1b:8c:9b:b5:ab:0c:dd:e0:3d:4e:
         d9:f9:11:fa:9c:4b:6f:0e:c8:51:5f:ee:8a:5d:b3:08:79:15:
         62:61:39:a4:b2:be:96:5c:95:d7:b5:ef:69:3a:25:39:2a:e3:
         04:3b:91:c0:3c:98:a4:ad:15:eb:49:78:c4:a6:9e:4e:66:51:
         db:8a:b5:28:52:e1:f3:97:5f:8e:95:51:9a:40:72:d0:66:9c:
         86:16:90:ea:a5:2f:d4:13:06:84:cc:22:5b:c5:79:9b:9d:7e:
         45:30:13:64:33:05:cf:54:54:4b:c7:24:1e:d1:6d:9e:7a:d8:
         c6:03:ff:e5:98:ff:07:8e:e7:e3:72:3f:18:8d:fc:4b:a0:e1:
         00:99:ad:b1:40:8c:fe:1f:91:f7:b3:3d:b6:b0:d8:78:1f:a7:
         23:ec:9c:0b:6a:ed:11:eb:51:31:e0:33:19:43:f5:1b:c1:d3:
         c6:26:c7:d1:66:77:66:ff:58:b6:e2:a9:ea:aa:d4:af:ac:ea:
         53:87:88:3f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----