This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa
File:                     a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa (raw, json)
Hash identifier:          1sHGYWV4nMgRWtx7eSDtT8fDt0yIfQYV/2ZVCb+kbeQ=
Subject key identifier:   55:D2:CF:15:A1:9D:93:EC:19:1C:A4:E5:77:BA:B4:99:80:03:56:73
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       0AEC5B6E94AC290F2E02722243E59D11C496FD62
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa
Signing time:             Sat 22 Nov 2025 00:10:40 +0000
ROA not before:           Sat 22 Nov 2025 00:10:40 +0000
ROA not after:            Fri 20 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        99.77.191.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 07 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0a:ec:5b:6e:94:ac:29:0f:2e:02:72:22:43:e5:9d:11:c4:96:fd:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 22 00:10:40 2025 GMT
            Not After : Feb 20 23:59:59 2026 GMT
        Subject: serialNumber=cad4e1c75451dc23b7a4bd5115e1880126c90876b0b37604ea6bf40f1daed191, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:79:59:2a:c7:c5:43:15:ec:c2:9c:ec:e0:42:
                    c7:12:37:09:15:82:08:fb:18:05:9e:1a:86:0d:99:
                    12:39:dd:f2:3d:6e:5b:84:9c:51:34:5a:3d:96:db:
                    cf:6b:c2:cf:0b:47:cf:f7:38:50:8f:43:df:17:23:
                    c3:d9:79:db:e3:95:93:92:d6:76:ca:13:36:50:5e:
                    16:cc:c7:6b:ef:bc:2e:f1:db:61:4e:27:76:49:1a:
                    6a:07:36:ce:61:a2:98:b9:ac:b0:ca:d1:66:95:8c:
                    af:db:f8:f1:d6:2c:ef:9a:49:dc:99:24:26:a3:40:
                    93:b8:df:8d:9a:32:da:a2:cf:e4:00:f2:ae:8c:dc:
                    79:29:ad:e4:d6:0b:a8:38:c4:de:54:e7:c6:00:c8:
                    26:24:53:cf:33:3e:b9:51:26:ed:f0:28:67:4a:46:
                    5d:09:95:d5:1b:f5:1c:b7:05:1e:3f:3e:f7:3f:76:
                    b6:b1:07:e2:f3:ef:b9:14:c9:e3:b9:ca:3b:46:3a:
                    18:64:70:79:65:e0:32:b5:8d:d0:ad:ac:ac:1b:45:
                    8c:a3:be:17:38:24:23:14:22:d9:aa:9a:cd:9e:5a:
                    1c:1a:3d:1d:05:ac:b9:c5:4e:61:7f:91:49:ec:46:
                    a1:a3:2b:a1:b0:05:c0:cf:3f:3b:a0:c1:06:88:42:
                    d2:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:D2:CF:15:A1:9D:93:EC:19:1C:A4:E5:77:BA:B4:99:80:03:56:73
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  99.77.191.0/24

    Signature Algorithm: sha256WithRSAEncryption
         87:c7:4e:81:a4:19:5d:ee:d8:7a:0e:b9:57:d8:b9:90:d2:31:
         77:f0:a7:9e:9d:e5:90:08:28:bf:1e:b0:c4:3e:85:48:0c:0a:
         7b:22:41:a1:36:05:f5:a9:bf:58:22:12:cb:78:73:19:5c:3f:
         f4:bc:4b:49:67:8b:93:71:4c:dc:21:92:38:a0:8e:c7:43:b9:
         27:b4:aa:16:9d:f3:fa:34:a4:3f:4c:6c:e0:97:8d:c4:02:b4:
         3f:23:09:ea:6f:08:dd:af:74:3a:49:98:ab:6c:46:ae:57:0a:
         89:85:6d:50:ab:11:84:26:f9:f8:89:47:3d:5e:50:13:34:db:
         02:c2:12:24:7f:a9:0c:dd:4d:3e:6c:4f:66:4e:82:0b:f2:a1:
         44:a9:34:60:ff:7a:f5:38:70:86:f2:55:01:7f:b8:61:38:cd:
         32:fe:12:30:33:3b:2f:42:1e:07:de:93:6e:b7:d0:55:90:0e:
         af:7b:84:7f:e8:28:1d:80:7b:e0:b6:f6:c0:b1:e6:0f:e1:91:
         ac:a6:1c:92:b8:82:2e:a3:f2:b2:b6:a6:72:3b:fd:de:0f:44:
         b5:1c:55:af:d6:be:ab:62:2f:9e:4a:13:1b:20:b5:eb:2c:80:
         e0:6a:dd:71:d7:16:05:18:9b:9a:b2:85:8d:be:62:e6:de:a7:
         9e:76:30:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----