This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa
File:                     3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa (raw, json)
Hash identifier:          rOsfAgKh5vP2BZtzIL32pNrJaKhkrgzCxdQGDfztVOA=
Subject key identifier:   99:76:B0:E4:D2:A1:1F:5C:FE:8A:01:E7:C6:7C:11:89:BE:F8:ED:AD
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       45A70AAD58FDF3DF838717AC00EB6A023AE343F7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa
Signing time:             Mon 08 Dec 2025 01:00:38 +0000
ROA not before:           Mon 08 Dec 2025 01:00:38 +0000
ROA not after:            Sun 08 Mar 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        56.68.0.0/17 maxlen: 17
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 21 Dec 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            45:a7:0a:ad:58:fd:f3:df:83:87:17:ac:00:eb:6a:02:3a:e3:43:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Dec  8 01:00:38 2025 GMT
            Not After : Mar  8 23:59:59 2026 GMT
        Subject: serialNumber=d497161f00a624f8c7f3be5baa76b2c637f1f4b6f4896b3ae5b47b6eefe37b80, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:1c:df:62:61:d2:28:40:b0:81:5f:a8:c1:e8:
                    86:ae:c3:23:34:d2:73:4e:52:f0:ac:3d:ff:8e:29:
                    6e:a7:01:1f:c3:d1:e9:1e:ee:74:97:a1:57:c6:84:
                    62:2b:01:c4:54:d9:74:47:e6:5c:93:08:11:b2:17:
                    1d:64:c4:3c:f7:61:40:9f:79:53:ae:a9:07:8f:95:
                    23:ee:84:7b:4f:08:fa:e4:40:83:0d:a6:5f:33:47:
                    35:e1:93:aa:9d:74:72:20:71:c2:d8:3f:0f:d0:c0:
                    bf:8a:99:73:97:89:cd:dd:9a:d6:e1:4c:5c:ea:c7:
                    b8:39:d4:e7:bc:63:d8:c6:0b:e6:53:ad:db:6d:8e:
                    21:d7:97:15:b9:7e:5d:2d:0e:5c:47:24:1d:86:64:
                    05:d7:39:d5:f7:c8:82:63:08:e5:d8:40:9d:df:4d:
                    64:27:94:0e:c7:8b:5c:c4:13:bf:35:ae:98:ea:a6:
                    8e:56:92:86:bd:ee:8e:3e:59:e5:80:7e:b9:ab:72:
                    84:f7:b1:20:cf:99:9d:fc:87:4c:92:3e:c8:17:d6:
                    a4:0c:67:77:ae:12:68:90:83:d6:e9:b8:4a:52:67:
                    4a:c3:68:93:cd:a9:d7:58:a8:18:53:2c:90:8f:36:
                    ad:ee:df:8c:c5:9e:80:5e:ef:d2:14:cd:5b:e0:2f:
                    dd:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:76:B0:E4:D2:A1:1F:5C:FE:8A:01:E7:C6:7C:11:89:BE:F8:ED:AD
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.68.0.0/17

    Signature Algorithm: sha256WithRSAEncryption
         a9:be:2a:c8:33:55:12:d2:f0:13:f1:45:29:e9:32:09:5c:09:
         b8:df:e6:fc:39:12:2b:71:0f:5a:82:f2:d1:7e:88:31:56:fb:
         69:ae:38:62:7f:88:bb:4f:3e:e6:5c:aa:e4:c3:af:77:df:b5:
         4a:37:e5:86:6f:cd:3b:9b:7a:74:06:e7:c4:58:10:dc:4c:d9:
         de:a4:1e:84:94:4f:02:4b:82:39:b5:13:54:0c:03:3a:e8:d4:
         49:32:02:a9:47:66:e4:cd:0a:1b:f2:25:aa:a8:7d:a6:d3:9f:
         18:5a:11:1d:53:42:49:fd:3a:a6:60:90:0c:1f:ab:b9:39:6a:
         6e:a4:a6:0e:c9:44:7d:c6:0d:88:08:1c:c7:ce:d1:ae:47:54:
         89:72:b7:74:fc:6f:47:1f:96:f1:81:6c:04:49:d0:4e:69:55:
         d2:0e:51:90:e0:07:87:22:ef:72:df:68:96:62:3d:fe:25:25:
         1a:02:94:70:61:6a:20:88:30:e2:a1:4d:bd:24:49:ef:e7:bb:
         c2:16:4d:9e:ab:b4:30:af:5c:56:74:33:33:20:e9:29:3a:6f:
         1a:01:c5:2a:b4:35:8e:69:38:c4:54:8a:75:33:bb:81:a6:01:
         47:37:df:70:1e:77:65:11:6c:35:b4:29:a0:8c:e2:51:47:4b:
         4b:19:8c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----