This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa
File:                     7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa (raw, json)
Hash identifier:          fScx7lj9NPCkdojggv7BbuXYSYfQd8BRAn1VhML8hzE=
Subject key identifier:   33:1D:9E:9E:83:A5:0A:D9:C0:F4:67:F5:14:B1:CA:05:C4:0C:54:A9
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       2E879CF371A3C0F61893A3DD242784B2A7095F0D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa
Signing time:             Wed 19 Nov 2025 00:00:43 +0000
ROA not before:           Wed 19 Nov 2025 00:00:43 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        16.115.0.0/16 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 07 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:87:9c:f3:71:a3:c0:f6:18:93:a3:dd:24:27:84:b2:a7:09:5f:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:00:43 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=4de90325cdd93ba7c4ede677b5914a98d2ca2b292a67f237bcb1660cacbaf8f0, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:8a:7a:56:90:90:ea:8a:2f:e5:ba:8a:cc:2e:
                    3c:97:ac:4b:62:3e:cb:7d:aa:df:b1:14:01:dc:e0:
                    2e:82:af:b3:03:b5:6c:90:44:46:bf:0c:d7:7a:d9:
                    45:aa:46:5c:d8:92:99:72:46:9f:f9:90:06:37:9c:
                    f8:86:75:03:df:99:1e:ef:00:9d:8a:8a:79:5c:ab:
                    cf:28:27:66:52:2c:a5:f5:87:6a:37:42:1a:3d:d7:
                    db:14:57:80:26:b8:22:67:b9:ed:2e:d0:5a:bc:17:
                    9e:e5:a9:92:0e:32:7f:b8:dc:60:73:2c:54:cc:5b:
                    82:b3:4d:fc:0a:fd:03:8a:18:22:76:a5:24:96:77:
                    fe:5d:de:72:ea:34:80:ff:98:49:90:11:d3:22:97:
                    08:d2:ce:2c:bd:b4:f1:1a:6e:b8:4b:0a:31:18:4e:
                    b8:f9:78:24:46:63:40:bd:ea:ea:bb:8a:69:4d:2b:
                    0c:a9:f7:59:38:22:9d:c7:b4:a2:f8:17:4c:c6:38:
                    94:d1:8d:50:42:8d:66:8d:e5:1d:b5:86:1f:86:79:
                    47:7b:6c:ba:31:65:79:67:ba:d3:46:9e:1f:5d:72:
                    70:35:09:67:11:8a:f4:da:16:99:eb:fe:ea:8a:6a:
                    47:3d:80:b6:0a:f8:52:5c:1f:0d:e5:43:07:a4:7d:
                    aa:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:1D:9E:9E:83:A5:0A:D9:C0:F4:67:F5:14:B1:CA:05:C4:0C:54:A9
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  16.115.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         b7:72:e2:09:dd:ed:2e:c6:11:ec:2c:6a:7b:f0:b8:79:32:d2:
         e6:81:ac:91:8c:58:1a:50:73:74:ac:48:cf:d8:45:8c:b3:99:
         12:a2:32:47:2a:3d:20:91:e8:82:50:32:9c:07:33:71:7b:81:
         01:7c:d2:74:72:94:93:4a:70:ef:0b:88:95:f8:e7:b5:7e:ad:
         09:67:ae:b6:50:5f:b1:f2:2e:00:70:3d:ed:c0:38:04:ae:df:
         fc:05:9c:c8:0b:e3:73:6f:88:76:70:bb:f3:b6:b0:ab:ed:d5:
         76:61:ce:46:bb:22:38:d2:99:f5:31:23:82:4b:77:64:b3:89:
         3f:80:bb:46:7d:70:88:a8:bd:5e:94:e7:36:cb:b5:7a:94:e9:
         3c:a6:25:29:12:9d:9e:8e:c1:5b:30:8f:26:bf:10:95:6a:ed:
         09:75:7e:64:fa:df:b1:54:84:0b:8f:9e:9b:e7:5c:18:15:bb:
         e5:77:79:c4:d9:ec:3d:29:69:11:a7:be:af:8c:bf:fd:a9:8d:
         fc:59:cb:84:4d:bc:61:7b:5e:8b:db:5c:72:27:89:2e:d4:b1:
         bd:1c:e4:60:fc:e2:b5:43:b7:26:21:82:9a:d8:b9:71:5c:07:
         3d:be:07:c1:35:f2:ab:ac:be:70:1d:ec:e3:ca:33:c1:e1:f1:
         6c:c2:20:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----