This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60e45316-4d04-4f1f-a8a1-256093763032.roa
File:                     60e45316-4d04-4f1f-a8a1-256093763032.roa (raw, json)
Hash identifier:          PcfOSbB3Oi6uN2uD05VKE7JIUVVD5Xsg6JMf5DcRtDw=
Subject key identifier:   7E:9F:E6:92:F1:4A:A7:DD:BB:71:01:9F:51:F0:A1:2D:5D:CD:E4:52
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       44966CC288A5149B0392B9CFCE9966BC78795C6E
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60e45316-4d04-4f1f-a8a1-256093763032.roa
Signing time:             Thu 13 Nov 2025 01:22:12 +0000
ROA not before:           Thu 13 Nov 2025 01:22:12 +0000
ROA not after:            Thu 18 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        52.94.148.0/22 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 04 Dec 2025 20:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            44:96:6c:c2:88:a5:14:9b:03:92:b9:cf:ce:99:66:bc:78:79:5c:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 13 01:22:12 2025 GMT
            Not After : Dec 18 23:59:59 2025 GMT
        Subject: serialNumber=3321e792fb09889306922fd577d863ca8fa82abb96142ab52d97dcfc8313152a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:17:c1:64:ad:32:94:6d:5d:dc:4a:86:55:59:
                    47:3e:8e:07:ff:4a:1e:78:33:9c:78:e5:e6:13:a7:
                    94:fb:62:42:ae:a7:c7:0b:95:a8:7a:df:ba:32:f9:
                    6d:ec:80:a5:eb:e9:83:65:27:d5:35:7f:0f:9f:4b:
                    63:73:7f:56:5e:96:9d:1c:6e:17:d1:e7:ee:5a:c0:
                    c2:31:62:cc:0a:ac:4b:2b:8d:34:4d:f9:98:35:c7:
                    ec:42:8c:2f:fa:ff:eb:0f:6b:08:aa:91:c5:c4:e0:
                    1b:db:20:8f:62:64:c0:9e:03:b8:8e:88:d0:bd:94:
                    90:7a:fc:b7:c5:cb:97:ed:24:01:8c:c9:21:2d:59:
                    de:af:8d:1b:e1:49:a1:d1:a3:41:67:b7:54:d6:e1:
                    c9:de:4c:b8:9b:67:40:bb:cb:32:46:ac:a0:ba:fa:
                    13:b7:13:d9:6e:62:bc:c9:73:0d:83:45:b5:2e:8f:
                    35:9e:65:89:ce:7b:07:83:a6:f5:d5:e0:13:70:a4:
                    15:9f:2e:81:01:9d:3c:69:d1:8e:80:99:b0:9d:76:
                    92:27:2b:84:3f:f0:ba:de:69:ec:3d:2a:e1:bd:5f:
                    68:f8:09:c5:de:f4:80:cb:8e:3e:8c:ca:f2:89:2d:
                    ec:06:fd:7f:98:e6:63:3f:b0:09:ef:57:3a:c1:51:
                    70:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:9F:E6:92:F1:4A:A7:DD:BB:71:01:9F:51:F0:A1:2D:5D:CD:E4:52
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60e45316-4d04-4f1f-a8a1-256093763032.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  52.94.148.0/22

    Signature Algorithm: sha256WithRSAEncryption
         24:63:dc:73:1d:18:81:07:4e:c2:37:83:6c:44:c6:e8:ac:46:
         72:b0:31:cf:98:81:cc:cb:ef:b2:42:8e:ff:ce:9c:37:1d:c2:
         da:97:00:14:7b:7d:fd:e0:d7:36:57:06:f9:c8:bd:dd:89:70:
         ec:77:67:48:65:4a:2d:c2:5b:c8:76:82:1d:4f:22:af:13:0d:
         39:f8:61:56:f1:48:1f:ca:50:6b:3d:19:20:88:4b:06:56:6d:
         25:bf:61:e2:9e:4d:9f:b0:97:15:ef:8e:ef:0e:39:7e:92:7f:
         40:0e:e6:6b:78:95:43:fc:f1:16:26:70:ad:14:45:67:00:e5:
         40:d0:1b:60:4b:23:f6:a8:0e:c3:3f:c0:0c:50:d7:cc:3f:7b:
         7e:1b:0d:20:95:1c:82:ec:90:4e:8d:13:ef:55:e0:24:92:ad:
         b8:76:6e:74:4b:26:6e:95:b2:b7:3a:2b:da:5a:0b:4f:01:dc:
         a0:4f:95:64:40:84:15:0b:f7:be:9c:2f:55:69:47:9f:13:cd:
         95:5b:ee:e7:b8:48:36:c9:a8:d3:20:bc:34:6c:54:5f:af:eb:
         82:ba:4f:e2:0b:d7:52:40:a1:9a:9d:c7:d2:37:0e:1d:7e:fb:
         fe:bb:51:22:92:ff:e3:9a:ed:49:55:5e:d6:b3:8a:81:aa:e7:
         67:69:71:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----