This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1af78db-4e03-4986-b016-394c842266cc.roa
File:                     d1af78db-4e03-4986-b016-394c842266cc.roa (raw, json)
Hash identifier:          8n6CKi4xtiwN+jjgZL1b1xvcLOH6SaS/OH7AnpD3EqQ=
Subject key identifier:   9D:85:6B:A4:71:10:11:39:EA:D3:8A:2D:CE:8F:F8:CD:F0:13:DA:B2
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       5B88DD2B0A8B5FA42129A5133069C25CAC480E1D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1af78db-4e03-4986-b016-394c842266cc.roa
Signing time:             Tue 25 Nov 2025 01:21:18 +0000
ROA not before:           Tue 25 Nov 2025 01:21:18 +0000
ROA not after:            Mon 23 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        13.162.80.0/21 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 07 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5b:88:dd:2b:0a:8b:5f:a4:21:29:a5:13:30:69:c2:5c:ac:48:0e:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov 25 01:21:18 2025 GMT
            Not After : Feb 23 23:59:59 2026 GMT
        Subject: serialNumber=6cf43b46228af51c1da0c23bde9620c881bff127f9e8c6817449d6fd128f9e69, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:f2:64:a7:fc:8a:ab:03:0f:cd:cb:e8:c6:0d:
                    9a:3b:7a:f1:ca:58:bb:85:09:bd:e2:1f:97:16:d1:
                    d1:2e:8f:0e:f4:f3:98:3d:d3:42:31:7f:15:f6:14:
                    c6:0b:d6:c0:af:b9:8c:d4:9c:4b:df:a2:00:83:9d:
                    eb:04:84:38:f8:06:ab:29:e4:63:92:37:8e:1c:83:
                    b1:3d:5d:bf:04:a6:17:1a:26:0e:83:39:c7:6a:55:
                    02:24:a8:f7:b9:9c:aa:d1:0e:18:e1:69:c9:df:b2:
                    48:a0:2f:3b:3b:e6:83:26:d5:ee:50:5a:c0:02:8b:
                    73:ec:d4:f1:8c:9b:57:28:51:7b:58:81:6a:a3:4d:
                    1e:68:dd:c9:89:81:fc:09:34:6a:47:75:09:a9:cb:
                    af:25:2a:2b:a9:b2:5c:f9:3c:e3:51:cd:e1:f2:cf:
                    77:6a:cb:11:c9:f7:53:5a:0c:a8:13:34:e9:c7:52:
                    09:17:a7:14:a6:1b:f4:37:47:cc:a5:d2:f2:37:ab:
                    25:da:8e:31:36:94:cf:e7:5a:91:de:b7:4f:bf:cc:
                    9f:76:c3:d3:cc:46:4c:6e:3c:14:8e:05:19:0d:d6:
                    e1:ff:15:35:5f:a8:19:a4:fd:c6:48:52:19:a5:02:
                    55:0c:71:52:0d:b7:6a:e2:fd:3f:fd:02:d1:4a:b2:
                    52:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:85:6B:A4:71:10:11:39:EA:D3:8A:2D:CE:8F:F8:CD:F0:13:DA:B2
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1af78db-4e03-4986-b016-394c842266cc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  13.162.80.0/21

    Signature Algorithm: sha256WithRSAEncryption
         51:c3:c4:eb:4b:34:7d:9a:e3:8e:d2:91:3a:e5:cc:31:7d:97:
         c8:2b:18:22:10:8a:d7:c6:b1:5c:12:af:06:7d:be:9e:5e:d2:
         31:c8:d8:18:c9:7d:46:47:8a:4d:b0:e6:55:cd:0f:04:fd:ea:
         35:50:2c:79:ef:14:ac:fe:26:fc:88:b2:1a:f8:f3:8b:23:d0:
         71:90:77:8f:07:95:70:4d:d3:dc:01:ec:2a:0c:58:ec:b1:c0:
         a6:64:32:f5:45:4f:51:c7:e6:5f:e5:c9:e0:8e:84:98:96:2b:
         32:7b:42:67:e1:bc:64:7c:31:c0:a8:61:cc:9b:b1:e8:39:22:
         39:63:c5:5b:2a:d2:f8:eb:12:91:0a:e4:dc:73:47:bd:4a:3d:
         d7:57:f0:e4:c5:91:5a:99:17:5a:2c:1a:bf:e0:90:f8:ea:84:
         4f:58:9b:87:54:f2:8b:17:a9:5c:9a:21:cd:53:96:19:1f:f0:
         58:a8:9f:b3:bd:4d:d4:12:ab:81:71:41:8d:52:7d:a6:f5:f9:
         95:4a:99:cf:e4:64:13:be:d1:b9:c3:66:7b:75:15:3a:d1:04:
         ca:e4:e1:0c:66:76:c5:5d:59:8c:76:1e:5c:38:11:60:c3:ee:
         03:50:95:da:9f:74:3c:c9:2d:cb:fc:91:26:40:d8:18:0b:20:
         9b:ce:08:bb
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUW4jdKwqLX6QhKaUTMGnCXKxIDh0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDEyMTE4WhcNMjYwMjIzMjM1OTU5
WjB6MUkwRwYDVQQFE0A2Y2Y0M2I0NjIyOGFmNTFjMWRhMGMyM2JkZTk2MjBjODgx
YmZmMTI3ZjllOGM2ODE3NDQ5ZDZmZDEyOGY5ZTY5MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDI8mSn/IqrAw/Ny+jGDZo7evHKWLuFCb3iH5cW0dEujw70
85g900IxfxX2FMYL1sCvuYzUnEvfogCDnesEhDj4Bqsp5GOSN44cg7E9Xb8Ephca
Jg6DOcdqVQIkqPe5nKrRDhjhacnfskigLzs75oMm1e5QWsACi3Ps1PGMm1coUXtY
gWqjTR5o3cmJgfwJNGpHdQmpy68lKiupslz5PONRzeHyz3dqyxHJ91NaDKgTNOnH
UgkXpxSmG/Q3R8yl0vI3qyXajjE2lM/nWpHet0+/zJ92w9PMRkxuPBSOBRkN1uH/
FTVfqBmk/cZIUhmlAlUMcVINt2ri/T/9AtFKslLbAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUnYVrpHEQETnq04otzo/4zfAT2rIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2QxYWY3OGRiLTRlMDMtNDk4Ni1iMDE2LTM5NGM4NDIyNjZjYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAMNolAwDQYJKoZIhvcNAQELBQADggEBAFHDxOtLNH2a447SkTrlzDF9l8gr
GCIQitfGsVwSrwZ9vp5e0jHI2BjJfUZHik2w5lXNDwT96jVQLHnvFKz+JvyIshr4
84sj0HGQd48HlXBN09wB7CoMWOyxwKZkMvVFT1HH5l/lyeCOhJiWKzJ7QmfhvGR8
McCoYcybseg5IjljxVsq0vjrEpEK5NxzR71KPddX8OTFkVqZF1osGr/gkPjqhE9Y
m4dU8osXqVyaIc1Tlhkf8Fion7O9TdQSq4FxQY1Sfab1+ZVKmc/kZBO+0bnDZnt1
FTrRBMrk4QxmdsVdWYx2Hlw4EWDD7gNQldqfdDzJLcv8kSZA2BgLIJvOCLs=
-----END CERTIFICATE-----