This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73c3c3ee-2dd5-4e41-8ddb-758f94a5970b.roa
File:                     73c3c3ee-2dd5-4e41-8ddb-758f94a5970b.roa (raw, json)
Hash identifier:          ihCybfp4hPdul0AE0hQK9ltBaysP9drWliadokGQffw=
Subject key identifier:   B6:78:03:83:55:4C:9C:4F:37:02:EC:B7:CD:44:7D:BF:EB:D0:81:04
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       7F659B181C8E4449C3F9AB788E01574508294C02
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73c3c3ee-2dd5-4e41-8ddb-758f94a5970b.roa
Signing time:             Tue 25 Nov 2025 00:40:48 +0000
ROA not before:           Tue 25 Nov 2025 00:40:48 +0000
ROA not after:            Mon 23 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        50.19.192.0/20 maxlen: 20
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 07 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:65:9b:18:1c:8e:44:49:c3:f9:ab:78:8e:01:57:45:08:29:4c:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 25 00:40:48 2025 GMT
            Not After : Feb 23 23:59:59 2026 GMT
        Subject: serialNumber=c84eaff02bd7041aa6786f47bdbbc25d8a5af423714e6c84d6dec6b453764ac5, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:27:cf:f0:f0:36:a0:b3:cf:cc:6f:8e:f4:f2:
                    24:a7:71:76:d9:34:cf:33:cc:05:19:68:d7:bb:57:
                    89:82:48:1c:0d:94:5d:2e:b3:55:32:35:c2:af:83:
                    68:67:0e:b3:00:61:9b:71:64:8f:f0:59:67:09:6b:
                    15:a3:f6:31:6b:ed:62:b1:7d:e4:aa:32:d0:66:df:
                    41:09:86:e8:e8:15:9e:79:c6:86:4f:9b:d5:60:af:
                    61:5e:43:a6:d2:4c:60:af:d8:f8:36:92:2b:02:9d:
                    74:56:bf:33:fb:81:c4:2c:28:eb:e6:f8:c7:19:90:
                    cb:dc:54:e7:15:13:de:25:00:57:7b:2b:f4:92:d2:
                    87:68:72:3e:b2:dc:7c:fa:d4:7e:ca:01:3b:71:94:
                    92:6a:3c:af:d6:6a:66:e3:fe:6a:9c:2c:a7:00:74:
                    29:77:4b:ac:19:9a:99:ac:07:6e:ff:c8:e5:ab:c3:
                    58:0e:1a:05:d8:21:89:3f:fd:79:b9:99:88:e5:3a:
                    36:9b:58:78:7f:e4:3b:78:3e:6e:64:5b:43:98:d3:
                    87:a3:16:10:94:5c:39:69:91:41:af:ca:64:25:ce:
                    65:dd:d5:cd:d5:02:a3:03:b2:7e:26:51:ce:52:fb:
                    aa:56:40:56:58:d8:a5:23:ad:90:3e:1a:c5:17:9f:
                    93:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:78:03:83:55:4C:9C:4F:37:02:EC:B7:CD:44:7D:BF:EB:D0:81:04
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73c3c3ee-2dd5-4e41-8ddb-758f94a5970b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  50.19.192.0/20

    Signature Algorithm: sha256WithRSAEncryption
         76:dd:27:96:de:bf:24:8c:23:4f:b9:ac:1a:e5:7a:78:a9:ab:
         bd:ec:35:f4:2b:82:8a:ec:7c:be:94:7c:fb:5d:d0:9a:c1:35:
         27:d4:f6:d3:7f:51:ab:33:8e:24:52:d3:28:22:57:62:e3:7a:
         eb:8d:9d:e3:53:19:50:ac:66:14:d2:f6:18:5e:c4:cc:39:d2:
         23:26:3f:a3:46:bd:0d:df:47:d2:60:e9:0e:81:45:96:56:47:
         bc:7b:08:85:e0:e6:c0:f2:da:76:e2:a7:12:10:0c:1a:16:19:
         76:6c:3e:ca:f2:cb:01:49:64:45:91:fe:67:f7:dd:ba:ae:3c:
         a7:a0:0f:9a:1b:54:88:d5:73:e2:48:66:4b:f8:47:cb:f6:02:
         cf:33:a9:c1:10:cd:c2:c1:91:62:3d:5d:61:25:34:59:c1:09:
         d4:25:7a:b8:af:ec:02:81:ab:a5:a0:cd:2c:ba:3a:07:5b:88:
         fa:c7:48:82:6a:04:b8:35:ea:3d:be:e1:bb:d9:e3:ca:09:24:
         fd:9d:ab:60:2f:91:2a:01:d7:0c:11:f9:d1:d5:74:4e:4c:c8:
         01:2b:d8:6c:ee:ce:ca:cf:17:ca:76:af:c0:94:a4:6b:01:5e:
         68:ee:9c:4f:47:68:ae:ca:5b:34:22:ec:a1:bb:73:01:0d:24:
         a7:bd:80:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----