This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb0e1c32-5c4d-4185-8e17-8b0b0070e06f.roa
File:                     fb0e1c32-5c4d-4185-8e17-8b0b0070e06f.roa (raw, json)
Hash identifier:          Jq2sV5Cod/J9joLx+kDp8RYT5rryBFuXXZq3fSovaGM=
Subject key identifier:   42:D1:C4:47:5C:CB:6A:0A:83:70:2E:94:32:AE:12:57:52:02:22:C1
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       548BDC6F62749D96971757BB0E9A8C083DDE0E93
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb0e1c32-5c4d-4185-8e17-8b0b0070e06f.roa
Signing time:             Sat 15 Nov 2025 04:01:14 +0000
ROA not before:           Sat 15 Nov 2025 04:01:14 +0000
ROA not after:            Sat 20 Dec 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        35.80.0.0/12 maxlen: 12
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 08 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:8b:dc:6f:62:74:9d:96:97:17:57:bb:0e:9a:8c:08:3d:de:0e:93
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 15 04:01:14 2025 GMT
            Not After : Dec 20 23:59:59 2025 GMT
        Subject: serialNumber=43f74606aa45acd46fdd9114975634867b8798f99c7f74fab5a028130b4c4858, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:6a:07:0e:b9:83:da:61:0b:cd:f6:37:27:64:
                    36:5c:3f:0b:b8:56:a3:f3:ad:7b:1c:69:41:2a:5d:
                    a4:e2:15:69:29:1d:e1:61:d9:da:72:5a:5c:ec:d5:
                    4c:4e:1d:f2:ba:f8:c6:e4:2f:d2:32:41:4a:50:71:
                    21:ed:6a:1b:70:19:67:62:0b:ee:83:37:ca:c8:d2:
                    ce:7d:2b:bd:fc:1e:e5:40:32:e7:f7:3c:d7:27:9b:
                    2a:df:3e:65:f6:fb:a3:98:e2:2a:67:d7:0e:bc:91:
                    b8:41:d3:0a:8c:0d:00:af:75:3f:71:ec:7b:ea:f4:
                    e1:d5:d2:76:69:dc:f7:4c:40:f0:9b:66:f5:a6:3b:
                    4d:c3:f8:68:0a:00:00:84:d7:df:0f:1d:f5:fc:42:
                    c1:35:92:8c:30:cd:8b:8b:6b:cc:35:a2:83:f6:65:
                    15:93:33:22:35:77:60:33:3c:e2:4c:d7:a5:7d:59:
                    d4:56:3d:42:7a:4f:4f:f0:ce:29:ad:df:98:88:fd:
                    12:3c:b4:ff:5b:5b:bc:81:12:93:f5:89:24:21:8b:
                    12:04:1c:62:84:af:9e:64:47:f4:93:65:e3:b8:50:
                    13:d4:6d:3f:19:3d:13:57:ee:51:3d:c8:e2:e2:e7:
                    a7:0b:eb:38:6f:ee:8d:f2:2e:a4:67:76:f8:9b:58:
                    94:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:D1:C4:47:5C:CB:6A:0A:83:70:2E:94:32:AE:12:57:52:02:22:C1
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb0e1c32-5c4d-4185-8e17-8b0b0070e06f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  35.80.0.0/12

    Signature Algorithm: sha256WithRSAEncryption
         5e:62:e4:8e:65:3a:c6:2b:0a:61:be:91:40:a9:51:ac:db:eb:
         ac:a5:f9:91:b5:f0:bd:55:7c:23:d7:09:0f:af:53:dd:6b:8c:
         c5:e2:cb:94:3b:73:7f:e8:eb:a7:8d:f1:c2:95:7e:e5:c7:dc:
         66:24:db:53:45:ab:0b:31:5e:35:0c:44:79:ea:61:a9:69:17:
         88:2f:47:5c:8c:a0:af:c2:44:29:b3:c7:01:19:1a:45:90:44:
         91:a1:3d:6e:a3:d8:03:46:03:29:eb:7d:a7:03:74:47:39:41:
         71:1f:68:c6:aa:be:54:4d:8e:f7:fd:28:8d:e7:0f:79:4d:37:
         18:a3:3a:cb:33:eb:6c:14:68:d4:6b:1c:8d:e6:9a:14:b9:54:
         a2:9f:92:65:aa:50:bc:06:8f:2b:b2:a0:fe:b2:04:39:43:12:
         0c:34:ab:63:ac:1c:c1:4a:60:7e:bb:b4:dd:dc:2e:de:61:44:
         b6:fc:a1:11:35:2c:57:79:28:e2:b2:f8:78:a1:6c:7d:11:3b:
         d5:6d:3c:51:3e:c7:16:7b:fe:51:61:81:56:93:cc:5f:e0:df:
         ed:f0:69:49:7b:9d:50:11:3f:31:2f:83:e0:cf:24:be:e4:06:
         10:7d:8b:a0:32:ff:54:e3:5d:fb:3e:80:87:9c:c5:1d:2d:28:
         ce:23:3d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----