This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa
File:                     ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa (raw, json)
Hash identifier:          TY+Y5gykL5M7ZhFTXfDm87Wnw66x+89FmL4p89vFFyk=
Subject key identifier:   F4:B4:9A:59:93:3C:1A:11:CE:50:6C:C8:51:1E:4E:6D:EC:B4:43:12
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       6B96CAC6AB097E5B6DC4826264800C8AE86757AA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa
Signing time:             Sun 16 Nov 2025 00:20:43 +0000
ROA not before:           Sun 16 Nov 2025 00:20:43 +0000
ROA not after:            Sun 21 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        32.172.0.0/14 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6b:96:ca:c6:ab:09:7e:5b:6d:c4:82:62:64:80:0c:8a:e8:67:57:aa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 16 00:20:43 2025 GMT
            Not After : Dec 21 23:59:59 2025 GMT
        Subject: serialNumber=7a3271d96854937f346ca4b2c2c79954b345441c13b9c85249821829a7a272dd, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:6d:1b:02:1a:da:54:a8:9a:f1:2b:ea:b9:f3:
                    2f:13:de:7e:5c:8f:bd:98:6e:ff:67:e2:de:f6:0e:
                    f2:18:df:86:ad:fe:bf:a5:cd:fe:07:90:5f:93:f8:
                    c3:03:39:6e:29:a7:d8:3d:60:9a:02:96:9e:15:2f:
                    0a:71:60:7f:4d:70:02:e3:4c:dc:f6:0a:3e:9e:1d:
                    e4:61:df:03:1a:30:3a:fa:43:06:8a:14:ee:37:b4:
                    d2:62:78:52:28:eb:24:e9:ea:76:ea:a3:70:3a:46:
                    d0:a9:c5:d6:4e:a4:0c:a0:60:8a:3e:ed:cf:9c:20:
                    de:72:dd:17:d0:bc:d5:f5:d8:2a:84:8d:87:14:27:
                    11:bd:78:10:83:4b:fd:0a:cd:73:37:e4:88:ab:e4:
                    03:8d:6d:ef:d3:be:42:e5:02:1c:c4:29:f7:bf:51:
                    7e:91:ea:1f:e1:b3:7f:36:ee:66:05:8c:fe:f0:39:
                    eb:f3:6f:bf:ac:c5:6d:64:5a:46:57:d9:66:7b:85:
                    35:d1:de:38:42:d5:80:63:d0:7e:0e:9e:84:48:85:
                    f3:c3:0b:b6:ef:52:48:55:c2:96:52:53:3b:2b:49:
                    56:92:14:e0:64:25:67:19:b5:8a:f4:a5:e4:77:7e:
                    90:ac:9e:b1:5b:17:4c:ad:9a:ce:e5:d6:cb:7b:79:
                    dc:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:B4:9A:59:93:3C:1A:11:CE:50:6C:C8:51:1E:4E:6D:EC:B4:43:12
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  32.172.0.0/14

    Signature Algorithm: sha256WithRSAEncryption
         d8:bf:4e:a2:e8:62:50:60:a5:70:53:58:a0:d4:eb:26:ab:ef:
         43:33:6e:51:6a:dc:dc:4c:df:aa:c2:93:32:4a:98:94:55:12:
         9a:1a:da:12:64:53:7b:00:51:a9:58:3f:6d:c9:3e:7e:ef:dd:
         c5:5c:2b:cb:ec:f2:ed:d2:96:9f:09:c2:51:6a:ed:7f:1f:1e:
         b4:b5:f8:e9:48:aa:48:32:94:09:2a:2b:ae:25:c7:55:19:c9:
         01:e0:ed:6c:3a:86:f1:fd:30:b5:b6:f0:30:c9:a2:d7:b6:75:
         fb:33:50:56:d8:22:a6:40:5d:24:04:8e:f8:df:49:f1:bc:86:
         c3:e8:64:c0:48:18:3f:aa:b9:86:89:96:60:55:c1:e4:b3:c5:
         86:9e:21:a4:be:68:86:35:eb:60:f6:1b:f7:98:ae:16:48:40:
         2e:a8:e1:66:2f:b4:72:62:94:b6:27:13:1f:6f:f4:cc:5e:fc:
         3d:a1:98:d6:08:9f:bb:a2:83:d5:31:2c:b0:55:7b:a5:47:d0:
         69:11:c3:21:20:a1:a3:ac:bd:1b:7f:f6:b7:c5:d6:c0:dc:a3:
         28:fc:50:59:12:13:5e:6e:b0:a6:5c:e5:d6:fa:39:31:f8:0d:
         95:9f:7c:43:e1:62:1c:4a:e7:46:9b:f2:d4:94:89:ad:99:74:
         a3:b7:83:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----