This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bba8191b-5b5b-4515-a3ee-493cab66a2dd.roa
File:                     bba8191b-5b5b-4515-a3ee-493cab66a2dd.roa (raw, json)
Hash identifier:          3AdZkiJCQYr1tvg0oTjYk5Puen4MnC5pyAYE7r5rsKc=
Subject key identifier:   4D:51:B9:4B:BE:D6:DA:E1:A5:C7:57:4D:6E:B6:DB:93:B1:CF:AD:AD
Certificate issuer:       /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
Certificate serial:       4F7858EEB6054437CE61A3DF433898F66FFF6CE2
Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bba8191b-5b5b-4515-a3ee-493cab66a2dd.roa
Signing time:             Tue 18 Nov 2025 00:30:11 +0000
ROA not before:           Tue 18 Nov 2025 00:30:11 +0000
ROA not after:            Mon 16 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        2606:8140:100::/40 maxlen: 48
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 07 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:78:58:ee:b6:05:44:37:ce:61:a3:df:43:38:98:f6:6f:ff:6c:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
        Validity
            Not Before: Nov 18 00:30:11 2025 GMT
            Not After : Feb 16 23:59:59 2026 GMT
        Subject: serialNumber=b0e4095b2bfd95cd46945f80ee0c07896749bf7497b9dd0edd6da5b47471f862, CN=8cd8442f-235f-4171-84e6-8e1007a64c60
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:1e:76:3e:6f:15:c2:7d:99:6f:a5:ad:c8:b5:
                    96:78:3e:e3:28:ad:00:a1:30:23:12:17:e8:8a:19:
                    50:9f:63:e9:42:08:fd:b3:73:af:0a:38:27:04:72:
                    a2:e7:c0:30:fd:10:06:a2:96:61:da:26:c5:9c:1a:
                    cc:69:78:b0:f1:7f:ae:b8:72:61:19:94:81:ea:5d:
                    03:7e:7b:50:5e:d4:43:2f:90:be:8d:18:45:19:23:
                    0d:e9:87:92:a0:4d:a1:cc:50:de:46:28:81:88:d9:
                    13:44:7b:25:39:68:d2:61:7d:d5:65:ad:3e:3d:9f:
                    3a:71:f9:d8:1e:c1:7a:f0:fd:35:40:04:6c:b7:2d:
                    25:9d:22:eb:f9:ee:98:93:67:7f:64:19:42:38:c4:
                    21:d4:2b:3d:f1:dc:db:79:93:be:f0:27:ec:80:b9:
                    f0:fd:d6:08:6a:5a:43:33:70:3c:9c:49:21:27:6e:
                    a5:b9:c2:7d:e7:13:87:ad:7f:f1:aa:80:93:75:cd:
                    82:88:26:f6:3d:5a:ee:db:75:2f:77:eb:82:8d:d3:
                    7d:24:63:87:f0:db:fd:d3:69:d0:74:ee:52:84:0a:
                    6c:df:fb:60:49:f8:74:53:9b:ea:35:e6:12:de:30:
                    87:48:d9:bb:4c:31:b7:a5:53:8a:f6:84:5f:e1:5d:
                    c5:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:51:B9:4B:BE:D6:DA:E1:A5:C7:57:4D:6E:B6:DB:93:B1:CF:AD:AD
            X509v3 Authority Key Identifier:
                keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bba8191b-5b5b-4515-a3ee-493cab66a2dd.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2606:8140:100::/40

    Signature Algorithm: sha256WithRSAEncryption
         22:3a:d9:80:0c:a7:04:9d:d3:96:d8:d8:c6:43:80:03:83:7b:
         3c:bb:a3:9b:70:76:e9:ec:6b:b9:05:f1:fb:e7:e0:ea:f1:01:
         66:75:63:5c:d2:37:cf:7e:7c:73:0b:45:b3:21:d9:42:2e:ef:
         1e:8e:2f:2c:cb:d2:6a:18:8e:31:2d:35:9c:75:79:fa:70:f8:
         d0:cf:e5:32:02:97:a4:2a:e3:90:ed:09:51:2d:74:c4:ec:ab:
         f0:1d:1d:92:c2:eb:dd:1e:fb:83:6f:4c:44:af:ec:95:48:df:
         ed:56:a7:5f:d1:4c:c0:20:54:e9:f3:ba:6f:03:48:4b:36:cd:
         94:0a:6f:5b:9c:31:5e:80:88:d5:95:b1:0d:fe:f8:13:e3:ff:
         1a:31:63:3b:14:14:9d:cb:25:59:a9:d0:66:a3:79:68:cb:c8:
         18:31:47:dc:f0:7a:96:30:5e:1c:44:78:e9:97:21:08:f2:4e:
         5a:96:f5:25:26:e6:68:f5:2a:cc:d2:72:c5:30:76:f1:6b:e2:
         72:78:84:62:41:ef:38:70:cc:af:1c:90:3f:e0:1f:9c:79:f0:
         11:21:64:44:81:72:38:f1:95:d4:43:88:f0:97:bb:6d:25:8b:
         3a:90:15:0e:b9:d2:5d:8e:b4:82:69:77:6a:42:88:4c:ab:c0:
         5b:09:c5:ac
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----