This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c8cadeb-865b-42fe-884c-4bbbea22939c.roa
File:                     0c8cadeb-865b-42fe-884c-4bbbea22939c.roa (raw, json)
Hash identifier:          094gJN3/siOd9ZmUdEGAUnEDw+0JEojBUCCGurhPECw=
Subject key identifier:   83:A7:8B:33:96:CF:7A:22:7D:DF:63:D6:8C:F2:34:F6:B1:53:9F:F6
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       011D8A489D894F2C2B1DAA4E435B76063B7BA761
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c8cadeb-865b-42fe-884c-4bbbea22939c.roa
Signing time:             Sat 29 Nov 2025 01:21:38 +0000
ROA not before:           Sat 29 Nov 2025 01:21:38 +0000
ROA not after:            Fri 27 Feb 2026 23:59:59 +0000
asID:                     14618
IP address blocks:        15.230.57.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 08 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:1d:8a:48:9d:89:4f:2c:2b:1d:aa:4e:43:5b:76:06:3b:7b:a7:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 29 01:21:38 2025 GMT
            Not After : Feb 27 23:59:59 2026 GMT
        Subject: serialNumber=9097beebd39134212030129bb59be509607c59bf2d0c4de1942e5eb66332ffab, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:b9:18:bf:a6:48:49:8b:49:56:1d:d4:da:bb:
                    54:ce:35:91:6c:67:b8:9c:f9:6a:85:c0:1a:8a:02:
                    51:92:66:2d:69:f7:5c:b3:68:b1:85:5e:43:bd:d7:
                    1f:73:62:2d:9c:e1:90:e6:8c:6a:97:fd:05:f6:fc:
                    f6:6c:56:4b:85:32:64:59:cb:98:3c:c4:20:a0:47:
                    1f:1b:da:74:21:0c:ca:dd:f8:b1:19:6c:9f:99:f8:
                    50:75:60:33:b6:42:b2:6f:4b:64:9f:2d:cb:8c:c8:
                    55:3d:d3:79:34:24:f5:34:47:c5:40:17:15:17:8b:
                    12:d8:cb:09:cf:84:e6:bb:3a:e5:14:bf:12:89:48:
                    c2:72:e1:bb:6c:75:0e:a6:09:06:47:a9:f1:74:f6:
                    e5:87:be:ac:de:d5:c9:3c:1f:30:7f:68:b3:84:e3:
                    56:0c:48:28:d6:dc:52:12:c8:c1:8b:6c:c3:6b:ad:
                    7e:20:9f:86:89:ab:2a:f0:65:c6:2f:3e:8b:56:e2:
                    e0:b9:cc:a6:6b:56:ba:ab:80:2a:d2:b6:8c:6d:c2:
                    32:41:33:38:f2:9c:0c:4a:0c:76:29:c5:bb:d9:cf:
                    78:aa:9e:4a:14:01:cd:d6:e3:06:fb:7d:88:31:c6:
                    2d:8b:a5:f7:95:d4:04:3f:43:ec:bd:67:f4:5e:1e:
                    6f:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:A7:8B:33:96:CF:7A:22:7D:DF:63:D6:8C:F2:34:F6:B1:53:9F:F6
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c8cadeb-865b-42fe-884c-4bbbea22939c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.230.57.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8b:b5:ff:a5:47:43:49:47:76:2d:e3:34:20:52:ce:dd:c1:d9:
         c2:41:17:99:3b:a9:12:4d:aa:79:67:c0:a4:e9:51:61:c8:eb:
         19:58:da:dc:97:f0:cd:39:ea:06:a6:52:97:98:8b:39:27:2f:
         b2:47:b6:6d:27:7e:89:d8:02:c5:f8:f8:6e:35:1f:d6:64:a3:
         a5:53:f3:58:a2:45:61:e9:72:e4:21:c6:22:ef:d1:b6:40:11:
         12:f7:d8:55:1c:1d:38:93:70:de:42:3b:6c:dc:9a:16:ec:34:
         50:46:e1:da:b6:53:46:61:03:16:5a:d5:7c:78:15:4f:16:70:
         fd:bc:be:a2:7e:e7:94:e3:cd:f1:5c:e7:cd:8f:f8:9c:48:d5:
         9e:24:5b:be:2a:69:0a:c1:67:e5:f3:5e:c0:40:d4:13:5b:29:
         a5:97:78:76:bf:74:30:a2:6c:22:f4:ea:b7:86:95:11:b9:be:
         2b:59:aa:a8:54:8a:33:d8:13:2a:79:1a:c3:7c:aa:e2:b9:5f:
         dc:41:d8:0a:04:97:83:51:5a:7e:07:10:4b:32:09:ea:f7:85:
         84:a4:ec:45:e8:e5:97:ed:e5:a7:03:a5:fc:90:03:8e:df:a1:
         4c:c6:54:a0:b6:0f:0b:ba:4e:ea:2f:10:0f:97:97:16:86:c4:
         96:38:a1:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----