This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa
File:                     811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa (raw, json)
Hash identifier:          gc5Fc8/LMBzFv/e3bDE0+1nDuDLkHY3gwmTvpjimc18=
Subject key identifier:   30:D6:B8:66:A7:BD:24:78:00:7D:44:72:57:04:3C:73:6D:02:37:B0
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       155329D2AC8063EF780EA1338E3D12E6589C71EC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa
Signing time:             Wed 19 Nov 2025 00:11:00 +0000
ROA not before:           Wed 19 Nov 2025 00:11:00 +0000
ROA not after:            Tue 17 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        16.92.0.0/16 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 07 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:53:29:d2:ac:80:63:ef:78:0e:a1:33:8e:3d:12:e6:58:9c:71:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 19 00:11:00 2025 GMT
            Not After : Feb 17 23:59:59 2026 GMT
        Subject: serialNumber=660781ec79a6b917391b32612666b615ec5c62d88522510eb3f00ada6e5ea3e8, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:7a:50:31:68:60:8b:30:49:04:8d:6f:18:5c:
                    9b:38:4b:73:8d:8a:59:01:e1:bf:88:aa:e4:33:a3:
                    00:2b:65:1c:c3:76:25:0e:73:fc:18:ad:16:33:d7:
                    80:6d:c7:d2:64:6f:bd:79:38:d6:fe:1c:ec:89:5a:
                    95:95:77:db:ac:7a:e8:2d:67:d5:f4:e5:65:ce:1d:
                    4f:20:eb:6b:0e:9f:2b:6e:47:ed:eb:56:c8:aa:b5:
                    63:48:b6:ab:96:ea:a2:3e:44:f5:b2:58:f6:35:75:
                    55:18:f2:2f:5f:05:6e:5f:87:38:a7:f0:22:eb:12:
                    b5:f4:14:9e:f0:3b:ec:68:2a:3d:4f:21:5e:7d:d5:
                    5c:c8:b1:04:d2:a3:f9:0d:69:28:8a:a5:e7:da:fb:
                    79:31:fe:62:69:b7:35:5c:d1:3b:d6:b1:ce:0e:67:
                    54:71:36:9f:7b:c9:1d:04:77:8e:c0:60:36:29:14:
                    6f:4c:ad:01:75:2b:0e:2e:32:a5:8b:b2:37:35:fc:
                    29:f9:5d:f0:f0:f2:59:4e:ae:91:ff:a1:4d:71:a4:
                    d0:2b:b2:64:35:3d:3d:e3:aa:a9:a0:e4:3d:d7:9d:
                    ba:35:42:25:27:9f:22:28:03:73:6b:ce:fc:f6:36:
                    b3:9d:86:dd:54:fd:79:15:41:35:19:c6:79:7d:40:
                    cc:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:D6:B8:66:A7:BD:24:78:00:7D:44:72:57:04:3C:73:6D:02:37:B0
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  16.92.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         8e:a9:44:65:29:1a:6e:17:41:8b:0f:e9:1c:e8:16:68:d9:f7:
         bc:4e:ce:c5:f0:26:b2:d5:30:c9:7e:20:a7:f8:cf:d6:35:de:
         d7:d3:d8:57:62:54:1d:e8:01:81:3e:38:51:0e:21:66:6f:63:
         f6:f7:4f:23:fc:2e:c1:43:c9:59:0e:72:13:f7:b8:5f:46:3b:
         70:00:28:76:25:73:28:ba:60:b3:f2:ee:0e:15:78:77:f3:8c:
         b9:ae:66:77:33:2c:46:fc:61:ea:23:00:4b:d2:80:b2:ab:85:
         29:26:1c:1e:df:0d:45:9d:f9:f0:ec:19:c0:c9:26:13:92:ce:
         09:e6:fd:fc:a4:07:7f:a0:80:93:ec:7e:c4:ac:b1:c1:f2:fa:
         12:d0:2e:d5:9f:71:01:8d:01:99:68:7c:28:5b:cf:f9:bf:e0:
         ea:d7:12:15:07:f4:1a:4b:23:9d:ae:de:98:d3:24:0a:23:ac:
         32:91:0a:dc:cb:42:78:e2:37:2c:8c:33:b7:80:dd:61:a7:37:
         0d:9e:99:f0:19:1b:2a:ac:a9:92:9d:e0:f5:45:01:ed:07:7c:
         4a:7d:e7:63:5c:56:6f:8d:57:5b:9f:9b:6e:2d:23:45:5e:8b:
         cb:3b:10:35:f1:0c:0b:97:c6:f1:16:14:3d:7f:91:6b:4c:3a:
         66:95:21:2d
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUFVMp0qyAY+94DqEzjj0S5liccewwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE5MDAxMTAwWhcNMjYwMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0A2NjA3ODFlYzc5YTZiOTE3MzkxYjMyNjEyNjY2YjYxNWVj
NWM2MmQ4ODUyMjUxMGViM2YwMGFkYTZlNWVhM2U4MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDFelAxaGCLMEkEjW8YXJs4S3ONilkB4b+IquQzowArZRzD
diUOc/wYrRYz14Btx9Jkb715ONb+HOyJWpWVd9useugtZ9X05WXOHU8g62sOnytu
R+3rVsiqtWNItquW6qI+RPWyWPY1dVUY8i9fBW5fhzin8CLrErX0FJ7wO+xoKj1P
IV591VzIsQTSo/kNaSiKpefa+3kx/mJptzVc0TvWsc4OZ1RxNp97yR0Ed47AYDYp
FG9MrQF1Kw4uMqWLsjc1/Cn5XfDw8llOrpH/oU1xpNArsmQ1PT3jqqmg5D3Xnbo1
QiUnnyIoA3Nrzvz2NrOdht1U/XkVQTUZxnl9QMyfAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUMNa4Zqe9JHgAfURyVwQ8c20CN7AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzgxMWZjYTEzLWI0MGEtNGZiMS1iYzdjLTZjNTk5NjM3ZmQyZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwAQXDANBgkqhkiG9w0BAQsFAAOCAQEAjqlEZSkabhdBiw/pHOgWaNn3vE7O
xfAmstUwyX4gp/jP1jXe19PYV2JUHegBgT44UQ4hZm9j9vdPI/wuwUPJWQ5yE/e4
X0Y7cAAodiVzKLpgs/LuDhV4d/OMua5mdzMsRvxh6iMAS9KAsquFKSYcHt8NRZ35
8OwZwMkmE5LOCeb9/KQHf6CAk+x+xKyxwfL6EtAu1Z9xAY0BmWh8KFvP+b/g6tcS
FQf0Gksjna7emNMkCiOsMpEK3MtCeOI3LIwzt4DdYac3DZ6Z8BkbKqypkp3g9UUB
7Qd8Sn3nY1xWb41XW5+bbi0jRV6LyzsQNfEMC5fG8RYUPX+Ra0w6ZpUhLQ==
-----END CERTIFICATE-----