This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cc80c0a-c7cf-4eda-8529-53154b873db1.roa
File:                     6cc80c0a-c7cf-4eda-8529-53154b873db1.roa (raw, json)
Hash identifier:          vmj3Sk84LfdhZ0zxQPAW+anMsbl2k3huoNQds+Zk2Lc=
Subject key identifier:   EE:5F:2F:6A:5C:5E:16:9A:1E:B1:DC:4B:B5:7D:C2:4F:57:D1:84:87
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       5C4580E3267DD5D4E9760F1071D8E465580135C0
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cc80c0a-c7cf-4eda-8529-53154b873db1.roa
Signing time:             Mon 10 Nov 2025 02:00:06 +0000
ROA not before:           Mon 10 Nov 2025 02:00:06 +0000
ROA not after:            Mon 15 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        15.190.0.0/16 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 04 Dec 2025 20:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5c:45:80:e3:26:7d:d5:d4:e9:76:0f:10:71:d8:e4:65:58:01:35:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 10 02:00:06 2025 GMT
            Not After : Dec 15 23:59:59 2025 GMT
        Subject: serialNumber=8de44a6a25f224561c8f2d1838b796e0b4b0588cb05b9117a1245f4bfeec8ab6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:a1:8b:26:14:de:ed:54:40:9c:95:2a:e4:59:
                    38:7b:9c:9d:54:91:39:4f:5b:56:f7:c3:d4:ee:a9:
                    6d:4a:57:f2:12:0a:c2:c3:d0:48:3f:05:64:ed:1e:
                    50:2e:76:e6:d0:a9:22:8f:f2:88:ad:71:80:fd:a2:
                    62:35:3e:89:39:af:0c:ff:0c:49:c8:76:67:ee:ff:
                    90:7b:f1:41:5d:74:c1:1a:39:9d:ae:4f:8e:ec:e6:
                    2b:04:b9:ab:48:23:aa:d2:d7:11:6b:e0:44:02:ed:
                    ed:4e:91:1f:6f:5e:9d:ed:03:0e:6e:46:3c:d2:21:
                    97:f3:0b:21:a4:d7:dc:19:2e:cd:a2:9b:bd:ac:cf:
                    b7:8f:8a:88:fb:7d:39:c2:47:aa:ff:c1:65:40:5c:
                    1d:29:5e:46:af:1c:f1:18:4a:43:22:08:1c:c8:a2:
                    05:82:4d:1e:2a:6d:7c:1c:02:59:e8:86:7f:8d:d7:
                    f9:00:77:50:c1:a1:68:76:b7:9c:0e:ed:14:86:8a:
                    65:db:cc:6b:39:fb:e0:7b:64:62:9e:f2:c4:d0:f5:
                    2b:a5:18:e6:c3:f2:12:98:b6:1b:d4:f9:b6:6a:42:
                    4e:1d:e7:fd:dd:11:96:de:c7:70:62:37:9e:d9:6e:
                    9b:cc:da:2e:e2:a1:90:ac:01:4b:c8:ee:46:37:7c:
                    89:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:5F:2F:6A:5C:5E:16:9A:1E:B1:DC:4B:B5:7D:C2:4F:57:D1:84:87
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cc80c0a-c7cf-4eda-8529-53154b873db1.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.190.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         10:63:57:98:15:77:5e:8e:27:90:1e:03:7f:1a:3a:4c:70:8c:
         c7:ce:7c:05:2a:80:3d:ef:76:35:c4:f0:92:07:6c:84:6a:c1:
         68:20:41:d1:16:34:82:55:05:27:aa:4e:5e:45:3f:b5:76:6a:
         d1:32:27:69:07:e2:0f:e4:dd:50:98:de:c8:9d:48:76:3f:fd:
         5b:ce:bd:44:62:f7:30:cf:bc:94:5b:1e:95:3c:bc:e1:28:dc:
         53:73:cf:71:2b:4b:ea:69:f7:e4:db:d8:db:16:97:81:98:75:
         56:54:22:11:fc:72:14:9d:08:ec:a8:0c:99:80:fe:83:a9:59:
         af:3b:3a:d2:53:6e:5b:e6:1f:be:b4:16:9b:35:60:ab:ef:40:
         08:be:5f:ca:6e:21:cb:18:eb:9d:e5:6e:f6:21:75:34:07:a9:
         a7:f7:e4:61:7f:df:79:c3:1f:76:4f:ff:6c:b8:7b:8a:d2:6c:
         2a:6d:e8:59:08:2f:81:c3:43:04:23:a6:af:ab:43:72:fe:43:
         bd:0e:ac:e9:2c:c5:37:fd:22:15:4c:9c:4f:84:48:c2:71:cf:
         6d:83:a4:fe:af:02:01:54:50:68:f6:4f:81:11:a0:11:36:dc:
         78:32:ac:71:98:9e:dd:a5:f7:33:f0:7e:1b:0f:1a:33:10:0b:
         cd:6b:32:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----