This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa
File:                     5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa (raw, json)
Hash identifier:          cPMRK2Ki7HGVESR/PedGH2wi5WcxX6LQdrZXT+qz+wk=
Subject key identifier:   91:36:99:9F:16:3F:5F:C6:78:4F:17:2E:30:1F:68:3F:EF:4F:8A:81
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       5890D445B2CB3AC669D8BCE83DFF9A49A2DD1E5C
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa
Signing time:             Sat 15 Nov 2025 02:31:08 +0000
ROA not before:           Sat 15 Nov 2025 02:31:08 +0000
ROA not after:            Sat 20 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        159.209.0.0/16 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 08 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            58:90:d4:45:b2:cb:3a:c6:69:d8:bc:e8:3d:ff:9a:49:a2:dd:1e:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 15 02:31:08 2025 GMT
            Not After : Dec 20 23:59:59 2025 GMT
        Subject: serialNumber=070e700a3a36029aaca9aa8cf462f4b2114b196d77aaebb5d44ea9295402de36, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:c6:e4:4f:2a:26:00:b7:3d:0a:76:31:c3:ac:
                    7c:4a:a5:b8:4c:90:05:46:e4:8d:3d:7f:27:4a:38:
                    c2:b7:6a:67:f8:d6:e0:53:08:21:69:0a:ee:78:99:
                    d9:f7:33:ae:81:ea:f3:fc:1d:d5:2d:1d:88:78:24:
                    20:10:71:3e:b1:9c:72:66:78:28:f1:51:f9:9d:32:
                    70:bc:99:72:38:f7:26:88:72:39:cb:c8:79:d9:c1:
                    9e:da:e7:41:0a:e0:b3:8d:eb:75:d0:f1:d7:95:23:
                    0e:e3:36:8d:96:01:69:ef:ae:3e:48:f8:7a:d6:8a:
                    dd:f1:85:9f:50:fd:0c:48:2f:72:a4:b0:cd:65:06:
                    df:4c:0d:f5:dc:d4:73:1b:f9:d2:82:d0:d5:a5:ee:
                    8c:41:9c:e7:2f:63:87:91:b6:7e:0b:94:71:28:fe:
                    05:fd:45:fb:8b:4e:d8:cd:c7:31:07:4c:f4:40:a3:
                    b3:2b:18:e7:d3:9e:dd:cc:64:e7:bb:9f:09:8f:c9:
                    11:7a:bb:0b:63:25:8e:56:1c:79:f9:7e:6a:15:f5:
                    2d:2b:0c:16:8f:80:4d:d1:42:b8:cb:a5:5d:7f:80:
                    74:d8:e2:0d:e3:24:03:df:81:f7:9d:96:e0:f8:7d:
                    f0:8b:11:06:7f:f0:da:69:a3:80:f0:4d:1f:29:34:
                    cc:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:36:99:9F:16:3F:5F:C6:78:4F:17:2E:30:1F:68:3F:EF:4F:8A:81
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  159.209.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         82:e0:ff:b3:33:93:29:8d:64:5c:41:43:92:ba:e7:8d:6e:d0:
         b8:6a:1b:bf:ab:0b:bb:2b:ec:e9:be:a6:26:63:7c:22:b9:77:
         d4:b0:05:a7:4e:fa:b7:47:62:93:93:1a:66:64:d3:c1:10:62:
         b1:d8:fd:e0:89:5a:0c:3e:3d:aa:4b:2f:c7:15:bb:db:9e:7c:
         0f:07:23:44:e3:a3:4a:f4:f6:ef:1c:f4:de:1b:5e:46:33:1e:
         10:b2:ff:7a:1f:8f:e4:86:48:78:c7:89:d3:67:bc:a7:0f:54:
         ae:f2:dd:7d:cd:eb:bc:2d:91:bf:52:a2:3a:b9:06:f3:c7:07:
         49:3d:35:e5:d5:cf:d4:5b:b1:17:5e:d3:24:96:62:51:34:d4:
         f9:0a:8a:6f:9d:34:5c:21:24:1f:cf:6d:1f:eb:54:29:ec:79:
         94:e5:1c:9b:be:d0:3e:15:ad:b1:c6:d7:ae:99:74:cc:08:d7:
         36:4f:41:7b:48:15:29:0d:1d:b1:da:54:4b:f0:04:dc:90:2a:
         76:51:3d:4c:d0:cb:6b:55:20:29:62:77:5f:02:9f:55:83:de:
         74:e0:d2:5d:d6:34:83:79:db:ee:fd:14:bf:d8:94:ee:97:cd:
         68:93:75:a0:c6:c6:88:77:4e:cd:ab:30:c3:f2:9f:fe:e6:fb:
         6a:13:83:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----