This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/36d19c61-2356-453b-bdde-185259d9b804.roa
File:                     36d19c61-2356-453b-bdde-185259d9b804.roa (raw, json)
Hash identifier:          OXPevFc4mR5Q+HKkeCjNfep2OV63QJmDQdQ+xOFWA2s=
Subject key identifier:   59:F8:38:A6:8B:C3:A6:8E:9F:32:1A:2B:CD:97:50:2B:25:F5:95:8F
Certificate issuer:       /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial:       2C4785556D141927C8CF1B5EE9744B2347A4CDC5
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/36d19c61-2356-453b-bdde-185259d9b804.roa
Signing time:             Mon 01 Sep 2025 18:50:27 +0000
ROA not before:           Mon 01 Sep 2025 18:50:27 +0000
ROA not after:            Mon 06 Oct 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        173.82.5.0/24 maxlen: 24
Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2c:47:85:55:6d:14:19:27:c8:cf:1b:5e:e9:74:4b:23:47:a4:cd:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
        Validity
            Not Before: Sep  1 18:50:27 2025 GMT
            Not After : Oct  6 23:59:59 2025 GMT
        Subject: serialNumber=0f22decf87e4c090b810fa760821b1bf1094bb8f8a7c6d562c795cc8409b1419, CN=f7243785-46de-414b-9b8f-7a9699e979e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:f6:da:91:dc:e1:10:c1:f7:d1:84:9c:b8:02:
                    5e:78:5f:d0:21:98:d7:0f:04:59:7d:4d:6d:f6:d1:
                    22:17:65:48:8a:0d:a9:d7:37:01:8c:b6:0e:08:e4:
                    cd:84:d2:36:86:96:49:5c:c3:36:3f:5c:6b:60:20:
                    16:8a:ef:45:bf:83:07:3b:49:a6:c0:66:4f:27:cf:
                    22:69:44:28:ae:7a:eb:61:1a:67:91:56:56:68:eb:
                    ea:cb:fa:32:12:a2:f6:47:ce:c4:59:67:f2:33:5f:
                    d7:2d:76:63:1c:3d:b6:e4:a0:db:fe:f7:5c:0c:b5:
                    65:83:65:e5:d8:0e:ed:ca:a2:fa:7f:20:f3:e5:f3:
                    49:88:89:2d:12:48:ce:f8:e1:ca:8b:92:17:74:5e:
                    28:41:9e:eb:d7:de:5d:78:bc:7b:ea:88:bf:ca:64:
                    ef:17:48:e5:56:04:a2:9e:ba:5b:dc:73:36:5a:a8:
                    bc:91:13:a9:cf:f5:8e:cc:ef:85:06:2f:a5:dd:df:
                    e2:55:e0:bd:5c:6c:82:e0:58:80:52:30:89:d2:93:
                    bd:77:1b:d3:06:d3:91:e4:4b:75:72:61:1f:79:90:
                    97:a8:89:68:8c:88:77:3c:6b:8f:0c:f8:99:ea:38:
                    ac:6b:91:48:5b:84:32:99:af:0e:53:22:5d:40:f4:
                    66:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:F8:38:A6:8B:C3:A6:8E:9F:32:1A:2B:CD:97:50:2B:25:F5:95:8F
            X509v3 Authority Key Identifier:
                keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/36d19c61-2356-453b-bdde-185259d9b804.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  173.82.5.0/24

    Signature Algorithm: sha256WithRSAEncryption
         44:65:2d:18:0b:5c:a5:0f:da:9c:ac:2d:2a:d5:e0:02:69:b1:
         b6:00:4a:ef:67:f0:20:3b:04:59:b5:b9:93:db:06:88:e6:d0:
         3d:98:53:b1:c1:db:eb:c5:b9:f1:9d:3d:c2:ed:71:e1:62:52:
         0d:59:f7:a5:98:66:b0:41:d6:c4:ef:e1:11:ca:cd:d1:bb:c5:
         e7:34:8d:36:75:53:ae:88:95:8e:d5:95:47:05:18:0e:8b:14:
         b3:bf:11:14:18:97:00:1b:8c:94:4a:5a:cc:31:31:71:58:4e:
         59:bd:be:d0:91:78:8f:37:be:b7:09:9a:06:29:88:76:f6:0f:
         59:34:40:9e:45:87:c6:44:e8:da:55:22:1a:8e:75:16:90:da:
         93:43:91:a4:8a:e8:2b:a2:8d:83:f7:66:79:f8:6c:b6:72:a8:
         f1:02:13:fc:e6:56:2b:88:fd:c4:05:a6:db:01:f6:21:2d:60:
         94:44:2a:cd:a8:33:e6:ba:d3:3e:c9:f6:99:a5:62:57:89:b7:
         c4:fb:cf:0e:2e:51:95:42:77:fb:7d:cd:91:6b:cf:c3:5c:b5:
         eb:f5:b0:96:a9:89:7b:b2:68:26:43:04:e1:0f:d4:37:59:93:
         2a:37:36:ba:8a:2e:21:ae:d3:4f:d4:1e:2c:e5:96:2f:fa:f6:
         a8:8f:a7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----