This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/741f335f-920f-473e-a577-c562b2725f1c.roa
File:                     741f335f-920f-473e-a577-c562b2725f1c.roa (raw, json)
Hash identifier:          G+iZOGnul2KtyqG547rsNXRL9qRzIFvlvVjiY3GCZsM=
Subject key identifier:   31:FC:41:C6:26:68:EB:8F:57:3C:68:1B:98:0F:3D:DC:66:03:F5:A3
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       126646BA9F57F364A93663D5E5A5F2A9BA38CD67
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/741f335f-920f-473e-a577-c562b2725f1c.roa
Signing time:             Wed 10 Dec 2025 03:41:37 +0000
ROA not before:           Wed 10 Dec 2025 03:41:37 +0000
ROA not after:            Tue 10 Mar 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        15.177.79.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 22 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            12:66:46:ba:9f:57:f3:64:a9:36:63:d5:e5:a5:f2:a9:ba:38:cd:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Dec 10 03:41:37 2025 GMT
            Not After : Mar 10 23:59:59 2026 GMT
        Subject: serialNumber=24590d771e6e1905a53b996a39ade38f7a1a64313828136234be2337c2086d34, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:16:d5:d3:58:31:33:e5:1f:de:b3:1e:79:0f:
                    90:ba:61:cb:c1:62:5f:8b:dc:bf:fa:57:19:6a:99:
                    64:7f:e2:99:41:82:05:0d:4f:3d:15:24:11:7b:12:
                    57:b6:4e:15:6f:a8:79:45:8f:73:e2:31:5b:53:ba:
                    c4:be:2c:2e:3c:bf:3c:36:54:46:eb:a8:7f:16:8c:
                    50:32:24:b9:56:be:e1:10:a9:a6:39:f0:6d:3d:b1:
                    61:a1:57:28:9a:9f:1a:06:bf:a5:ea:84:4b:2e:a8:
                    e4:0e:37:d9:43:ab:8d:cc:2d:82:4f:70:1f:7d:29:
                    3c:5a:7d:7c:f7:53:26:31:bb:e0:b7:8f:b4:fd:6d:
                    26:25:5c:a3:23:38:96:ba:fb:db:4e:1a:dd:5d:81:
                    73:b3:01:cf:b2:93:5d:a6:8b:b2:a7:00:77:67:1b:
                    d1:93:81:dd:fd:88:a4:4c:7e:59:1a:0f:a6:79:13:
                    68:78:0d:1e:e4:44:86:f3:4f:c4:ef:9a:1c:73:83:
                    63:ed:41:b4:31:8a:25:c0:d4:9c:45:d1:77:1d:56:
                    98:df:f3:4b:b9:bf:1d:e4:37:a3:00:e3:ec:c4:b2:
                    66:7b:5e:51:26:af:7e:95:8f:bf:3e:45:eb:7b:d2:
                    38:0c:1a:ef:58:59:17:64:b0:58:52:66:07:47:db:
                    02:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:FC:41:C6:26:68:EB:8F:57:3C:68:1B:98:0F:3D:DC:66:03:F5:A3
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/741f335f-920f-473e-a577-c562b2725f1c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.177.79.0/24

    Signature Algorithm: sha256WithRSAEncryption
         ab:dd:79:39:49:16:f0:7d:25:ca:97:47:96:0d:64:8f:b8:04:
         09:0e:5f:b8:0e:9f:ca:ae:a8:f4:14:62:6f:dd:b2:bd:48:d8:
         56:de:d6:34:a0:b8:78:ad:53:a2:88:b2:27:64:d0:bc:4f:ab:
         6f:68:e2:c3:ae:c3:64:e6:1b:8a:61:18:3d:05:44:6c:f4:7a:
         59:65:bc:d4:8f:3e:86:ae:aa:a0:ef:3b:e5:2f:dd:a7:e6:dd:
         df:27:e1:dc:11:cf:64:df:1a:4c:10:ab:0a:a9:e6:e5:06:25:
         f8:ec:ae:96:c3:44:a7:f7:90:25:29:eb:7f:f3:4c:f2:c6:50:
         9d:21:30:3f:ad:3d:28:ff:fa:37:55:43:c4:14:f9:d6:9c:3f:
         d2:18:37:b0:1b:15:dd:04:8c:b9:05:84:a2:19:33:47:0d:aa:
         bc:9f:f2:e8:2e:e8:82:57:af:71:a5:12:b0:57:9c:66:73:91:
         94:82:a7:43:e5:07:9c:bb:52:96:74:cf:c4:db:05:50:68:79:
         09:b8:77:82:b5:86:d0:45:65:ad:da:e2:39:2c:67:63:6f:c9:
         3e:9b:1a:67:75:9e:2f:69:ec:e0:10:68:58:9d:51:85:cd:6f:
         3d:f4:39:a5:83:42:c0:65:f3:bc:dd:14:71:76:e5:37:9d:b3:
         f6:4d:e3:7b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUEmZGup9X82SpNmPV5aXyqbo4zWcwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz
MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMjEwMDM0MTM3WhcNMjYwMzEwMjM1OTU5
WjB6MUkwRwYDVQQFE0AyNDU5MGQ3NzFlNmUxOTA1YTUzYjk5NmEzOWFkZTM4Zjdh
MWE2NDMxMzgyODEzNjIzNGJlMjMzN2MyMDg2ZDM0MS0wKwYDVQQDEyQ1ZjI3NjA0
NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDHFtXTWDEz5R/esx55D5C6YcvBYl+L3L/6VxlqmWR/4plB
ggUNTz0VJBF7Ele2ThVvqHlFj3PiMVtTusS+LC48vzw2VEbrqH8WjFAyJLlWvuEQ
qaY58G09sWGhVyianxoGv6XqhEsuqOQON9lDq43MLYJPcB99KTxafXz3UyYxu+C3
j7T9bSYlXKMjOJa6+9tOGt1dgXOzAc+yk12mi7KnAHdnG9GTgd39iKRMflkaD6Z5
E2h4DR7kRIbzT8Tvmhxzg2PtQbQxiiXA1JxF0XcdVpjf80u5vx3kN6MA4+zEsmZ7
XlEmr36Vj78+Ret70jgMGu9YWRdksFhSZgdH2wI3AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUMfxBxiZo649XPGgbmA893GYD9aMwHwYDVR0jBBgwFoAUJa3TQrAet6WO
rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x
MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk
OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4
MDkwNGU0MmQyLzc0MWYzMzVmLTkyMGYtNDczZS1hNTc3LWM1NjJiMjcyNWYxYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz
LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAPsU8wDQYJKoZIhvcNAQELBQADggEBAKvdeTlJFvB9JcqXR5YNZI+4BAkO
X7gOn8quqPQUYm/dsr1I2Fbe1jSguHitU6KIsidk0LxPq29o4sOuw2TmG4phGD0F
RGz0elllvNSPPoauqqDvO+Uv3afm3d8n4dwRz2TfGkwQqwqp5uUGJfjsrpbDRKf3
kCUp63/zTPLGUJ0hMD+tPSj/+jdVQ8QU+dacP9IYN7AbFd0EjLkFhKIZM0cNqryf
8ugu6IJXr3GlErBXnGZzkZSCp0PlB5y7UpZ0z8TbBVBoeQm4d4K1htBFZa3a4jks
Z2NvyT6bGmd1ni9p7OAQaFidUYXNbz30OaWDQsBl87zdFHF25Teds/ZN43s=
-----END CERTIFICATE-----