This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa
File:                     14a619d0-4751-3dd0-8357-da775049c7ff.roa (raw, json)
Hash identifier:          AEdlBto9Yolv9lxVwPkZ0QC6PNfGTOKROjHiXo8acNc=
Subject key identifier:   0E:1B:20:FE:2F:1A:6B:79:24:1E:5A:DB:58:93:F4:4C:64:B3:DF:9A
Certificate issuer:       /CN=41e38da5-de4f-400d-83ab-65ee2e2c2d24
Certificate serial:       010D0C9F4328584C41765154400ACD1AACCC30C0
Authority key identifier: BF:79:16:BE:B7:8F:69:FB:FD:63:A6:BF:89:19:7D:9E:A8:F2:CA:B7
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa
Signing time:             Sun 21 Dec 2025 02:00:30 +0000
ROA not before:           Sun 21 Dec 2025 02:00:30 +0000
ROA not after:            Sat 21 Mar 2026 01:00:30 +0000
asID:                     26554
IP address blocks:        65.23.88.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 22 Dec 2025 13:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4c:41:76:51:54:40:0a:cd:1a:ac:cc:30:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=41e38da5-de4f-400d-83ab-65ee2e2c2d24
        Validity
            Not Before: Dec 21 02:00:30 2025 GMT
            Not After : Mar 21 01:00:30 2026 GMT
        Subject: CN=fe5e924a-0af2-459c-a32c-3709223a6a3a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:11:83:bd:b8:8c:d3:7d:40:4b:3e:b3:f2:ee:
                    fc:6c:b9:f7:db:a1:3a:31:77:13:67:08:f3:0f:8c:
                    29:04:d1:84:3f:94:cf:a5:bc:0f:e8:d9:fa:f7:b5:
                    56:14:cd:06:3b:fd:b0:50:d3:14:15:b5:87:f3:3b:
                    53:0e:e1:0f:70:2d:29:ee:91:ea:24:02:32:8f:77:
                    cc:b7:ee:22:39:dc:a3:f4:aa:c8:cd:be:7f:a3:b7:
                    42:47:b3:1d:2a:71:27:4f:6f:22:72:73:3e:08:4c:
                    a4:96:6d:b4:2d:55:42:12:65:da:d7:e8:23:80:a6:
                    3b:4e:ea:c7:3e:7e:41:60:26:4c:40:e3:7b:ed:20:
                    03:27:7c:e4:23:87:a5:a5:1c:1f:e6:12:d1:60:78:
                    3c:41:2b:e1:27:e1:3a:fb:d3:f8:fd:fb:d8:6c:a7:
                    c2:cf:5d:60:ba:60:ad:28:c7:ee:3f:f0:67:e0:43:
                    74:c7:41:ad:a0:32:76:fe:c7:03:f8:b7:b0:6b:5d:
                    da:82:2b:0a:4b:e0:11:ef:45:49:ee:7d:b8:31:a1:
                    6e:1c:76:47:a4:9f:5c:ca:8c:ce:a1:4a:c8:83:57:
                    c4:05:c4:33:2d:13:15:34:f2:6e:cc:b1:e4:f3:ba:
                    07:ee:8c:18:f2:de:30:91:20:9b:c1:39:cf:c1:37:
                    b8:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:1B:20:FE:2F:1A:6B:79:24:1E:5A:DB:58:93:F4:4C:64:B3:DF:9A
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.crl

            X509v3 Authority Key Identifier:
                keyid:BF:79:16:BE:B7:8F:69:FB:FD:63:A6:BF:89:19:7D:9E:A8:F2:CA:B7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  65.23.88.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         36:d9:41:e7:7f:9a:ca:a3:d4:95:15:90:e6:45:1c:9d:9d:ad:
         16:f8:aa:53:de:7f:8c:43:4e:c2:11:8a:94:cc:37:60:47:0a:
         f1:be:2b:40:7c:d9:68:c7:37:bf:67:5d:98:4c:c9:b5:c6:61:
         f2:7b:5a:1c:63:e8:92:b4:41:00:74:17:4e:4a:b1:ac:71:10:
         be:65:cd:d3:0f:a3:f3:b5:fc:f6:49:0f:68:91:2a:a3:18:2a:
         00:18:36:c8:31:20:85:c7:84:52:3b:3c:b6:95:0d:91:89:66:
         42:b8:38:6d:3d:ea:4d:77:06:cc:e2:84:4b:74:89:02:79:3b:
         54:b6:52:85:69:dc:4e:bc:90:c4:b7:27:e5:13:25:38:b0:2a:
         d2:e0:16:59:fb:b0:d2:1d:42:13:bb:4d:9d:7e:70:fb:a9:ba:
         78:fc:ec:4c:58:e5:77:4d:37:67:fe:cc:c6:df:b5:32:42:77:
         0f:b2:e2:e8:92:a6:a9:4c:33:4e:ca:06:35:74:7a:93:9a:3b:
         6a:e2:cb:fb:80:6b:f8:0c:22:67:d4:49:f9:b2:6e:f8:8d:1b:
         01:be:ae:90:eb:06:14:33:b0:af:60:a6:66:0f:32:7b:08:75:
         95:ab:ac:0c:39:e0:e9:88:ca:c1:56:51:0d:06:10:d8:a4:ad:
         f8:4a:61:d3
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWExBdlFUQArNGqzMMMAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkNDFlMzhkYTUtZGU0Zi00MDBkLTgzYWItNjVlZTJlMmMy
ZDI0MB4XDTI1MTIyMTAyMDAzMFoXDTI2MDMyMTAxMDAzMFowLzEtMCsGA1UEAxMk
ZmU1ZTkyNGEtMGFmMi00NTljLWEzMmMtMzcwOTIyM2E2YTNhMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BGDvbiM031ASz6z8u78bLn326E6MXcTZwjz
D4wpBNGEP5TPpbwP6Nn697VWFM0GO/2wUNMUFbWH8ztTDuEPcC0p7pHqJAIyj3fM
t+4iOdyj9KrIzb5/o7dCR7MdKnEnT28icnM+CEyklm20LVVCEmXa1+gjgKY7TurH
Pn5BYCZMQON77SADJ3zkI4elpRwf5hLRYHg8QSvhJ+E6+9P4/fvYbKfCz11gumCt
KMfuP/Bn4EN0x0GtoDJ2/scD+Lewa13agisKS+AR70VJ7n24MaFuHHZHpJ9cyozO
oUrIg1fEBcQzLRMVNPJuzLHk87oH7owY8t4wkSCbwTnPwTe4WwIDAQABo4IDVTCC
A1EwHQYDVR0OBBYEFA4bIP4vGmt5JB5a21iT9Exks9+aMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MWUz
OGRhNS1kZTRmLTQwMGQtODNhYi02NWVlMmUyYzJkMjQvMTRhNjE5ZDAtNDc1MS0z
ZGQwLTgzNTctZGE3NzUwNDljN2ZmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05
NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDFlMzhkYTUtZGU0Zi00MDBkLTgz
YWItNjVlZTJlMmMyZDI0LzQxZTM4ZGE1LWRlNGYtNDAwZC04M2FiLTY1ZWUyZTJj
MmQyNC5jcmwwHwYDVR0jBBgwFoAUv3kWvrePafv9Y6a/iRl9nqjyyrcwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk
OS1hY2NlLTEzNzIyN2U5NzFhYy80MWUzOGRhNS1kZTRmLTQwMGQtODNhYi02NWVl
MmUyYzJkMjQuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAQRdYMFQG
A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93
d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL
BQADggEBADbZQed/msqj1JUVkOZFHJ2drRb4qlPef4xDTsIRipTMN2BHCvG+K0B8
2WjHN79nXZhMybXGYfJ7Whxj6JK0QQB0F05KsaxxEL5lzdMPo/O1/PZJD2iRKqMY
KgAYNsgxIIXHhFI7PLaVDZGJZkK4OG096k13BszihEt0iQJ5O1S2UoVp3E68kMS3
J+UTJTiwKtLgFln7sNIdQhO7TZ1+cPupunj87ExY5XdNN2f+zMbftTJCdw+y4uiS
pqlMM07KBjV0epOaO2riy/uAa/gMImfUSfmybviNGwG+rpDrBhQzsK9gpmYPMnsI
dZWrrAw54OmIysFWUQ0GENikrfhKYdM=
-----END CERTIFICATE-----