This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a79362d2-d7d9-4106-a127-62bcda82a554.roa
File:                     a79362d2-d7d9-4106-a127-62bcda82a554.roa (raw, json)
Hash identifier:          xgah7DdpIpBgibbvkh2IjgBd3bGxQMcEtAadWbeY2Fo=
Subject key identifier:   4A:B6:76:59:05:4A:B7:33:DF:A1:6D:A3:5F:BD:46:C0:AD:7F:A8:D5
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       2A3BA31911BC5AD7597057DB6ECA0BED53D4908E
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a79362d2-d7d9-4106-a127-62bcda82a554.roa
Signing time:             Sat 15 Nov 2025 03:30:12 +0000
ROA not before:           Sat 15 Nov 2025 03:30:12 +0000
ROA not after:            Sat 20 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        3.170.0.0/19 maxlen: 19
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 04 Dec 2025 20:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2a:3b:a3:19:11:bc:5a:d7:59:70:57:db:6e:ca:0b:ed:53:d4:90:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 15 03:30:12 2025 GMT
            Not After : Dec 20 23:59:59 2025 GMT
        Subject: serialNumber=f9d350dc2046869c995a12cafa65e6ad121d5fadebb4bff0b8d42486af656283, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:bd:7b:97:64:93:a7:9b:0d:a8:e2:4f:9b:49:
                    91:bc:30:a8:9f:d6:4e:de:1b:1d:9d:b6:14:37:cd:
                    f6:bc:ac:19:f1:7a:17:42:12:b8:14:fa:d8:56:91:
                    0f:d0:7f:6e:b2:58:fa:b2:ae:09:ed:78:03:a8:51:
                    eb:b6:a4:e8:05:f4:2f:52:f3:90:ee:f8:c4:b5:f1:
                    90:93:64:f5:fb:30:dc:37:33:f9:50:c9:a2:56:f8:
                    9f:94:3a:94:b6:58:89:fc:c9:f3:fb:51:f0:ec:1a:
                    ba:ed:80:dd:3b:66:e2:43:05:fc:ca:5b:e4:ee:38:
                    a1:26:56:7b:89:1d:47:4a:f7:2e:78:8a:46:b9:3d:
                    c3:b4:43:3e:3a:ae:7b:61:b4:94:5c:43:61:68:30:
                    4b:19:d4:09:56:d1:7a:2e:14:2e:54:53:5e:cf:92:
                    7d:b5:63:5a:32:3d:6f:ce:be:c3:b9:80:f5:ac:19:
                    5b:15:12:45:60:5f:eb:92:d6:87:03:2b:1c:47:42:
                    9b:fd:00:30:4d:95:5a:57:cb:51:8c:a3:f1:97:31:
                    a8:95:a8:33:91:ae:55:fe:d7:8a:08:b9:79:ad:68:
                    f8:3c:ea:fa:72:cb:9d:7c:cb:24:e7:cd:5e:64:8e:
                    d9:8d:2f:01:99:c9:af:c2:d2:f7:47:46:ae:4c:71:
                    31:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:B6:76:59:05:4A:B7:33:DF:A1:6D:A3:5F:BD:46:C0:AD:7F:A8:D5
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a79362d2-d7d9-4106-a127-62bcda82a554.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  3.170.0.0/19

    Signature Algorithm: sha256WithRSAEncryption
         17:a3:9d:54:75:78:e0:b0:2e:f8:1c:53:34:45:9d:f5:fd:07:
         54:29:0c:f2:54:0a:3d:79:e5:7a:cd:ac:8e:b3:f1:ea:2b:46:
         f2:5b:2a:e8:12:3b:bf:9a:e9:7b:17:30:8c:cc:8f:e5:73:dc:
         7c:e9:43:7b:76:14:d9:62:a9:e1:ae:03:24:16:c7:6c:11:6d:
         87:55:04:61:fb:12:66:48:f5:f2:50:05:a8:ae:4d:8e:59:fc:
         27:46:b7:db:82:00:3a:15:97:c9:b9:ed:86:4b:7b:12:94:69:
         a2:10:b1:4c:0f:b0:b5:d1:0b:73:02:50:dd:7f:36:04:0c:03:
         06:55:d3:95:01:f0:c4:6d:76:11:e9:dd:0c:90:1f:e5:93:ce:
         5a:1d:f9:b8:c4:e2:e4:cf:10:35:3b:56:60:81:80:b6:66:46:
         33:5a:b6:c3:e6:52:81:11:cb:fa:e3:8b:27:c5:60:8a:bc:8c:
         95:25:3d:ed:6c:3c:8b:a7:df:33:f3:7b:af:04:bf:75:0b:a8:
         3b:a4:a3:0a:2d:16:3c:ac:1c:8b:b0:c7:be:c8:fe:d9:5e:ab:
         44:f8:c7:0a:52:04:5e:df:a3:a8:10:82:76:33:b5:57:4b:91:
         77:b9:93:4f:7f:31:cd:ef:9e:6d:3f:0b:8e:f6:6d:1b:16:44:
         ff:ce:25:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----