This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8997655-16da-44c4-b39e-dcdc8d70704f.roa
File:                     b8997655-16da-44c4-b39e-dcdc8d70704f.roa (raw, json)
Hash identifier:          EbdrzY++Rh67IzDFBKGcH+Jhr8ragzrA73/WFGfqzK4=
Subject key identifier:   27:59:4B:86:00:20:81:0B:74:8F:16:43:F4:20:7C:0C:9E:FE:12:53
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       749A48E4165FFD61EF83050786C093AC528E2144
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8997655-16da-44c4-b39e-dcdc8d70704f.roa
Signing time:             Wed 26 Nov 2025 01:00:46 +0000
ROA not before:           Wed 26 Nov 2025 01:00:46 +0000
ROA not after:            Tue 24 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        199.83.88.0/21 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 08 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            74:9a:48:e4:16:5f:fd:61:ef:83:05:07:86:c0:93:ac:52:8e:21:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 26 01:00:46 2025 GMT
            Not After : Feb 24 23:59:59 2026 GMT
        Subject: serialNumber=95b6fd2507af111280b769a3c945a8012e4eced5f0af4887fae6ad71864a8f62, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:21:2f:2b:92:38:ea:ea:76:fe:8c:99:95:2a:
                    6e:bc:ac:d6:47:2f:e2:77:1e:f0:d0:96:30:57:94:
                    2e:15:f9:12:b1:22:3c:22:1d:6f:88:28:fe:0d:3b:
                    e6:b3:db:39:37:40:61:95:54:b5:06:51:17:ae:33:
                    02:46:eb:2f:8a:8e:7a:f7:fc:57:df:20:58:fd:3a:
                    2a:2f:5d:b3:a0:5f:31:1e:13:a7:2d:c9:04:84:db:
                    e4:f9:29:84:0a:d0:86:58:03:a4:eb:80:98:05:8f:
                    76:55:de:01:fc:bb:dd:39:8a:95:1c:cd:b2:06:4b:
                    2b:f6:56:a7:01:7f:74:16:9c:44:2b:bc:74:3a:b4:
                    26:1b:ea:96:04:70:62:50:5b:79:af:15:29:79:88:
                    34:b4:5d:5f:da:51:78:08:cb:9c:cc:6b:c6:a1:9a:
                    4c:05:25:f2:b2:ad:cf:1a:f7:9c:aa:60:1e:48:42:
                    6b:5f:48:1e:11:8d:33:f7:1f:a7:6e:4a:e1:8d:4f:
                    0d:f9:ee:03:ce:59:5b:d9:dd:80:b7:87:c0:65:6f:
                    be:ff:ea:34:e4:d7:a7:2d:7d:ae:be:cb:cd:c1:ee:
                    61:6f:88:16:52:15:c3:d3:7c:bf:80:a3:77:1c:3e:
                    1f:94:8c:5b:34:8b:8d:69:4d:20:ce:bc:22:d8:64:
                    aa:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:59:4B:86:00:20:81:0B:74:8F:16:43:F4:20:7C:0C:9E:FE:12:53
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8997655-16da-44c4-b39e-dcdc8d70704f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  199.83.88.0/21

    Signature Algorithm: sha256WithRSAEncryption
         91:35:45:38:6b:aa:91:8a:00:0e:50:ff:2f:82:ca:66:54:b7:
         3a:22:17:5e:96:4f:53:13:16:1a:6d:cd:d7:ee:2a:29:46:1b:
         f2:e8:b4:39:1e:4f:63:13:40:0e:c6:10:49:de:1f:77:71:a4:
         74:f6:a1:5e:0b:a8:8d:8c:04:4a:79:61:d9:7a:e9:1c:e6:ed:
         08:7c:ef:59:94:4f:66:8a:9f:f3:60:15:67:6b:3b:4c:3c:8f:
         d6:49:33:fa:d2:55:74:79:b9:0b:2f:23:8e:cb:75:b9:a5:01:
         88:95:6d:1a:f1:6e:a7:96:fd:bb:7e:10:23:44:39:a3:83:22:
         45:ea:c9:47:c0:75:e1:46:2a:83:bc:ea:07:c8:31:f6:69:98:
         e1:c4:10:db:98:02:c3:d5:90:84:67:88:ec:76:87:7d:35:56:
         74:d8:c4:70:ba:bd:82:ec:00:b5:0b:99:4d:32:7d:a6:14:af:
         e1:3c:5a:dd:9d:b9:8e:cc:fd:2c:3e:04:70:a0:ca:a3:d1:13:
         e4:9a:9a:14:22:c4:61:e1:a6:e1:44:fc:18:30:bc:57:fe:a6:
         13:f3:48:c4:0e:b2:41:55:94:dd:9c:8f:a5:c6:57:99:06:fe:
         d8:7b:c4:af:dc:de:1a:f1:39:80:d1:d9:64:4b:0b:2c:a9:15:
         c4:0d:2c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----