This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa
File:                     0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa (raw, json)
Hash identifier:          YEXAWEPHSgVae9ZoIwnbC3M47SdBQq/HA5N4L6rJwPw=
Subject key identifier:   19:06:8B:68:B5:98:2B:29:42:41:E9:B1:10:76:64:CB:FC:FC:1A:6E
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       6BD28FC2C261649F618F33C87B5BE9FEDA44E493
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa
Signing time:             Wed 26 Nov 2025 01:10:31 +0000
ROA not before:           Wed 26 Nov 2025 01:10:31 +0000
ROA not after:            Tue 24 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        15.220.250.0/23 maxlen: 23
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 08 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6b:d2:8f:c2:c2:61:64:9f:61:8f:33:c8:7b:5b:e9:fe:da:44:e4:93
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 26 01:10:31 2025 GMT
            Not After : Feb 24 23:59:59 2026 GMT
        Subject: serialNumber=cabf410bb0502fab47e39494d8c9f81bf0f8c80824bae8f9ff2630c93dc37b6b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:43:44:09:94:ac:58:89:70:c8:5d:48:f3:4c:
                    ab:07:20:19:18:fd:cc:33:d5:6d:9a:10:bf:75:f3:
                    3a:d9:d1:8c:a3:7c:36:46:41:d0:24:56:94:c3:70:
                    74:45:db:eb:94:88:98:4a:46:99:2f:47:0c:82:1e:
                    c8:6d:5c:2f:a3:bd:c0:5d:c2:15:19:e6:8b:fb:a4:
                    a7:e7:bf:bc:dd:31:96:c5:ff:4b:dd:3d:ea:0f:28:
                    fa:78:f9:5a:15:13:a5:84:78:96:d4:92:3f:23:5b:
                    ef:bd:42:26:09:44:91:d8:41:37:ea:75:65:6e:49:
                    49:04:d1:33:1f:a4:df:40:3d:78:68:23:19:aa:a9:
                    a0:a3:70:9c:76:fe:62:d6:ac:40:52:82:91:ec:fb:
                    93:04:7e:6c:13:a5:6a:f5:8f:24:a6:c6:7d:37:8d:
                    e3:97:96:37:52:bc:88:3e:b0:7d:2a:75:19:df:d2:
                    1d:1c:ab:77:4e:8b:4f:0e:59:7f:00:ae:fd:c4:b4:
                    de:7c:7d:64:70:53:ee:ab:33:cf:63:50:5a:a1:fc:
                    44:14:77:6c:95:6c:a9:47:90:f2:a3:fc:80:de:0a:
                    96:66:0f:eb:84:87:38:40:02:69:01:9c:b4:ae:54:
                    f6:f8:2a:3b:57:78:95:f1:a4:42:93:25:70:f0:f5:
                    f1:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:06:8B:68:B5:98:2B:29:42:41:E9:B1:10:76:64:CB:FC:FC:1A:6E
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.220.250.0/23

    Signature Algorithm: sha256WithRSAEncryption
         53:d6:52:4e:32:62:df:1f:f6:c7:f8:4d:20:75:0d:ab:47:a3:
         8a:4d:8a:86:e4:3a:7f:f0:2c:2d:c5:be:17:6e:2f:c7:29:ea:
         35:95:04:51:70:87:1e:16:6e:5b:eb:91:93:af:a7:2c:6f:7d:
         cc:72:0d:72:70:93:b6:1b:1d:eb:ff:5a:58:c2:e0:0c:1a:2e:
         43:8b:f4:00:5a:c6:d8:6e:22:27:12:3b:00:eb:e2:10:0c:b7:
         f8:4d:38:4f:be:dd:1d:c6:6f:47:1b:75:57:f2:65:5b:85:e9:
         14:c8:c2:4e:f1:18:1d:d1:92:ae:90:8b:89:f7:ea:7f:c5:9b:
         94:5a:1c:a3:77:85:b8:2f:2b:62:7c:13:99:f5:02:1e:48:c4:
         9a:70:3b:e8:18:1a:2c:16:01:fe:8a:25:5b:52:d2:d3:7a:94:
         3e:37:bf:8e:c9:18:77:de:56:65:75:77:2b:07:3c:2f:21:1d:
         45:bc:c9:cb:1d:32:5d:2b:5f:b4:5a:51:13:b4:83:c5:60:7a:
         0e:15:5a:4d:79:24:81:ce:d5:2f:0b:b4:38:03:cd:d3:6e:34:
         2b:35:79:40:12:f0:85:8e:53:bc:c7:d1:b0:ab:dd:3a:4b:eb:
         39:00:2f:78:33:4d:8f:65:ca:c1:83:23:3b:70:e8:87:26:76:
         42:51:01:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----