This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa
File:                     8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa (raw, json)
Hash identifier:          WsyTTbI3f1Cbfm3xYu5poMUpahPVvVMR/IxAc5zvZo0=
Subject key identifier:   39:74:4F:05:78:E4:F1:8D:99:EA:30:92:40:8D:DD:23:CD:F0:A8:EB
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       4F3FB8145185F563B027960972A64DF243634AA9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa
Signing time:             Thu 20 Nov 2025 00:50:11 +0000
ROA not before:           Thu 20 Nov 2025 00:50:11 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        54.22.0.0/16 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 08 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:3f:b8:14:51:85:f5:63:b0:27:96:09:72:a6:4d:f2:43:63:4a:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:50:11 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=e979c66bd83dd5d1fa0a7dc2088fcad9f18a65e9167abc65379f50625fb65d89, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:93:d5:3f:7f:16:3f:d9:96:65:6b:00:72:1c:
                    a6:39:c2:78:30:5c:99:74:f2:dc:8f:36:20:70:50:
                    fa:e8:12:81:2d:3f:43:7a:0a:a3:46:77:e1:29:3a:
                    09:5f:00:3c:d6:86:d8:8b:a9:d6:ce:50:84:a8:8d:
                    8d:03:e2:b7:de:0a:64:8b:6a:46:c7:bf:16:ac:31:
                    3c:c5:66:bf:35:10:0f:0f:2d:30:6a:27:ef:ee:6b:
                    27:cf:2f:0e:52:be:d0:e5:47:63:1e:ce:a0:a6:18:
                    55:49:c5:e9:dd:25:ed:f9:d8:91:df:21:12:21:e5:
                    1c:76:b2:42:6b:5c:90:d2:77:6c:9f:c4:50:89:a6:
                    ce:42:e2:88:0e:d5:9d:a0:8f:69:38:b4:23:a9:8e:
                    63:8a:4f:50:80:47:61:1c:0e:39:9a:54:8e:f5:52:
                    91:a2:54:65:08:8b:91:61:22:99:72:44:44:7a:3a:
                    0a:4e:e2:e9:72:ef:25:7b:8c:0a:9a:d3:07:b7:2e:
                    8f:1a:1f:39:c6:a4:f3:27:dc:89:2a:6e:10:e4:2d:
                    04:4e:ff:c7:f4:d7:c0:73:a0:d7:0c:16:15:96:dc:
                    a9:90:37:7a:e5:ab:4e:df:3d:b8:05:48:36:81:e6:
                    f7:89:8d:ec:7e:c6:0a:0f:53:b3:95:06:e0:01:4f:
                    0c:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:74:4F:05:78:E4:F1:8D:99:EA:30:92:40:8D:DD:23:CD:F0:A8:EB
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  54.22.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         04:df:94:c7:1e:e0:28:b8:02:cb:55:22:27:0a:01:36:a1:9e:
         52:7f:1a:96:f3:10:cc:f1:eb:f9:21:2e:95:38:06:18:e7:dc:
         e6:6d:fe:58:dc:7a:b4:3a:78:66:22:e2:32:86:06:f9:cf:e8:
         bb:bd:70:86:62:3a:fc:e7:8a:ee:d3:6c:5a:19:66:fe:48:7a:
         a2:56:ba:8e:b7:71:c8:97:e9:f5:92:51:d4:dc:1b:4e:b8:a5:
         27:bc:2d:8e:2c:e2:78:30:4d:05:26:44:d1:2b:c8:21:46:f6:
         92:64:f0:43:0c:51:35:f2:a0:c6:72:5e:46:df:6a:c1:0c:4c:
         e0:fc:e9:f7:47:8f:0d:be:15:76:b4:db:33:15:6b:e1:4c:e1:
         4b:98:87:10:53:88:2d:cc:5d:97:27:ac:0e:23:ce:cc:5b:b7:
         8a:88:2d:4f:bc:23:cb:a6:96:54:88:b6:a4:fb:e1:79:bb:f9:
         92:5c:af:09:ff:03:28:42:65:b1:f0:66:a2:4e:c4:00:62:a7:
         20:8f:38:88:df:af:ce:eb:d3:7b:44:e7:24:7b:c8:ac:e5:c6:
         1e:13:c7:23:a8:8e:dd:5c:04:f3:33:2b:50:6f:42:09:02:50:
         fe:d9:c1:17:d6:ee:fa:e2:d8:23:1c:b7:ee:0c:9e:f0:3c:88:
         ba:fd:4f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----