This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa
File:                     c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa (raw, json)
Hash identifier:          /kt6yEJTZxqgBSzQKDhVJew+OfMrNa793eTQTX9VQUY=
Subject key identifier:   6F:FD:9A:74:B4:DA:8B:93:3A:CC:0F:4B:A8:FC:47:C0:4E:38:CF:89
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       5BED08A8D108DBD144EE2714E8A43F4D975EB686
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa
Signing time:             Thu 20 Nov 2025 00:41:58 +0000
ROA not before:           Thu 20 Nov 2025 00:41:58 +0000
ROA not after:            Wed 18 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        162.213.233.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 07 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5b:ed:08:a8:d1:08:db:d1:44:ee:27:14:e8:a4:3f:4d:97:5e:b6:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 20 00:41:58 2025 GMT
            Not After : Feb 18 23:59:59 2026 GMT
        Subject: serialNumber=de2483384e2a3393f9be2579ccb7bfbaad95c6730599209708da0a63fd4ff44f, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:1d:f6:53:fd:a9:42:68:dc:f7:1d:1a:5a:73:
                    4a:b1:0a:0d:78:77:09:fe:ca:d9:3b:70:4b:0d:b3:
                    15:82:11:e9:45:22:2d:c0:a5:28:1a:5e:15:16:10:
                    ba:29:c9:e9:ef:a2:a8:b8:34:33:85:ca:31:05:70:
                    64:e9:68:6a:df:9a:0f:5c:1d:5c:ac:d4:cc:2a:8e:
                    4f:13:67:fa:3e:5f:79:da:82:24:69:32:d2:a4:14:
                    fa:97:56:cf:ec:8c:04:35:c9:ce:82:f5:b8:f9:b9:
                    4d:d0:72:ea:d1:06:d5:17:78:2c:c3:39:65:c8:56:
                    fa:8d:6a:62:e7:ba:fd:6b:21:3f:ba:a8:44:80:cb:
                    6a:7c:a5:b8:25:76:32:1b:5e:eb:79:e4:bb:1f:5f:
                    30:23:51:7a:c6:98:45:2a:49:6f:38:95:79:15:91:
                    ce:cd:44:96:2d:fb:9d:13:bb:81:43:7d:cd:30:76:
                    66:14:f6:c1:90:52:c4:4d:c9:6c:9b:19:aa:a4:7d:
                    d7:0d:54:cb:63:4a:ae:7b:fb:0d:13:a1:33:d5:76:
                    20:86:19:d7:45:e9:e8:b3:65:3f:8b:e7:0f:2b:e1:
                    77:40:13:0f:57:31:ca:20:3e:62:6d:03:65:ed:c7:
                    97:77:a5:a9:e5:c7:69:2c:de:7b:5b:fe:bc:66:82:
                    28:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:FD:9A:74:B4:DA:8B:93:3A:CC:0F:4B:A8:FC:47:C0:4E:38:CF:89
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  162.213.233.0/24

    Signature Algorithm: sha256WithRSAEncryption
         d6:1e:a9:80:b2:fd:c1:81:22:d5:5a:70:b9:52:93:70:82:0e:
         0b:84:91:17:45:26:4d:2e:b1:28:79:3b:6d:7e:b3:f0:40:2c:
         b5:b1:7d:11:c0:36:af:81:a3:4b:e1:6a:5f:fa:fa:c2:8e:32:
         84:75:14:06:10:75:eb:f8:22:62:f1:59:28:d5:71:4f:a2:ed:
         79:ff:1e:11:d4:dd:a9:42:f4:a9:a7:6b:8a:2b:8d:5c:2d:f8:
         1c:42:29:5c:be:63:b1:4f:ab:f9:43:f9:17:95:93:a8:d5:fc:
         83:22:b4:8e:98:9b:bd:31:f9:6d:5a:d5:9d:bf:3b:ff:2e:ec:
         99:f3:ea:6a:b9:7d:a0:07:6a:ba:6b:65:16:12:a2:62:8c:19:
         a9:c1:af:0e:00:22:8c:81:96:7f:68:c9:10:3c:31:15:34:d5:
         08:41:0e:7b:52:c5:1b:19:45:61:ae:a9:a3:5a:8a:07:6e:43:
         39:20:be:0a:99:5e:3a:f0:6d:3e:43:14:73:fb:08:36:19:dc:
         b8:1c:16:02:49:ce:7b:2f:cf:49:d0:57:3f:7c:9e:b3:8e:72:
         a9:07:8c:48:ad:ef:c7:3a:34:b8:09:33:0c:f5:c6:8c:6f:06:
         8d:3f:4b:1e:0b:77:ef:84:dc:db:45:e3:47:93:d2:85:0e:b2:
         2a:4f:ce:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----