This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/19961e7b-21a5-4f0d-afbb-3c582eb8407f.roa
File:                     19961e7b-21a5-4f0d-afbb-3c582eb8407f.roa (raw, json)
Hash identifier:          5twm2R2JXa45CVVSsH3a4Ci2lMSb1d9+AVwpsw3usdg=
Subject key identifier:   AC:40:AB:C0:FA:D3:28:3C:8F:FB:4C:9A:4D:37:A3:4C:CE:22:56:47
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       146E7E51139FCAB703DB03CB21D8A2368E5310BC
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/19961e7b-21a5-4f0d-afbb-3c582eb8407f.roa
Signing time:             Sat 15 Nov 2025 04:01:18 +0000
ROA not before:           Sat 15 Nov 2025 04:01:18 +0000
ROA not after:            Sat 20 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        15.181.0.0/20 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 04 Dec 2025 20:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:6e:7e:51:13:9f:ca:b7:03:db:03:cb:21:d8:a2:36:8e:53:10:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 15 04:01:18 2025 GMT
            Not After : Dec 20 23:59:59 2025 GMT
        Subject: serialNumber=64dd3aca9373a68261f9979dfc8d9beaad5db991afc76d4669ee8b476f4ab7eb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:45:4d:7c:5c:46:55:db:e4:e1:28:43:2e:25:
                    02:b5:cf:4d:90:b0:5a:ce:30:a7:29:e8:c1:c8:2b:
                    4d:5b:43:0f:a2:24:a7:1c:e9:c3:bb:9a:c2:43:29:
                    93:62:3d:e2:8e:8f:c5:24:a6:82:ea:25:af:71:c6:
                    84:c0:b8:83:76:5c:e0:7c:5c:58:06:dd:50:ee:e6:
                    f4:a4:48:75:ec:01:ab:29:10:13:94:79:a8:cb:8a:
                    6f:2a:97:d3:13:b0:e1:ee:04:43:8d:83:e1:f3:35:
                    1d:71:44:ef:78:60:bf:d8:3d:80:d9:64:13:2d:a4:
                    de:53:37:3c:06:a5:a2:26:08:bf:26:d9:a9:51:24:
                    cf:8e:8d:ae:aa:f1:8f:a5:c0:3c:da:f6:d4:5a:e0:
                    de:ed:85:42:f4:7d:d4:f9:d1:5d:94:58:4c:a8:b0:
                    88:60:3f:d8:ac:d1:e6:88:2d:85:0a:1f:ad:b5:3f:
                    d3:90:da:e2:54:72:38:8f:ac:55:00:0a:78:a2:ff:
                    a6:81:32:89:61:40:8a:e2:b5:63:f7:f2:b2:a6:ce:
                    82:5d:47:54:ac:a7:ac:38:9e:43:c8:99:c5:b9:8a:
                    54:93:50:57:29:e0:bf:ce:79:53:de:70:e1:21:8b:
                    f6:e6:8f:ff:61:e1:6a:92:b2:02:e6:c5:1b:83:c0:
                    60:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:40:AB:C0:FA:D3:28:3C:8F:FB:4C:9A:4D:37:A3:4C:CE:22:56:47
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/19961e7b-21a5-4f0d-afbb-3c582eb8407f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.181.0.0/20

    Signature Algorithm: sha256WithRSAEncryption
         44:6e:8a:34:de:98:55:88:1e:32:c0:9c:89:aa:d5:c0:d7:08:
         a6:0a:6d:f2:4a:ed:51:67:17:6a:02:e1:61:fa:32:02:01:00:
         10:59:38:f4:58:df:46:9a:5a:68:94:4e:69:a6:b7:98:96:05:
         b6:3d:d5:18:ba:33:30:7b:58:36:1c:f0:ab:4d:76:4f:72:5e:
         b0:df:4b:cd:da:64:f5:04:51:39:d3:9c:9a:eb:7a:35:6e:40:
         8c:a6:03:23:b3:cc:c3:25:6a:24:6b:dc:93:54:94:b7:92:8d:
         68:94:63:93:e3:2a:1c:7b:91:20:37:26:e2:ff:61:f3:25:52:
         03:59:b7:c7:cf:cc:fe:43:c4:03:b6:cb:96:16:bd:73:5a:a8:
         ee:67:a9:59:f7:32:02:78:a2:33:a8:73:e4:04:1d:68:76:af:
         af:da:9d:fa:23:84:5e:20:9f:ee:a3:ae:8a:e8:53:75:49:bf:
         1d:88:12:03:31:76:53:d1:dc:ad:09:9c:dc:f8:d9:2f:a3:ec:
         2b:9f:e9:58:4b:cf:1c:d0:ea:9c:f4:23:d5:b9:34:76:a3:e6:
         2b:76:fe:70:71:c4:d2:d7:96:b8:65:87:d0:ec:de:fa:5f:7b:
         f4:4c:df:d7:d1:b9:55:ff:1f:de:d0:8f:a1:b3:31:f9:9a:36:
         d4:61:bd:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----