This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa File: 0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa (raw, json) Hash identifier: xDncDnNsdwiXFhlr6LEvxumCsp3hIk8mjZwMJlrho4U= Subject key identifier: E9:EB:4D:60:C2:14:9A:6A:89:93:9D:12:75:39:8F:51:12:80:2D:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C8D0577790A7A9F84E2A7B3D79D0E47BB7688E5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa Signing time: Sat 15 Nov 2025 00:40:46 +0000 ROA not before: Sat 15 Nov 2025 00:40:46 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:1000::/40 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8d:05:77:79:0a:7a:9f:84:e2:a7:b3:d7:9d:0e:47:bb:76:88:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:40:46 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=f7460db270bdff82f74ec4745005d7b0df22c4067f0b9f26c4d47143faff6fd4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:69:10:8b:fa:19:8c:39:07:22:ac:11:55:6b: cf:a5:e4:44:62:98:6e:6c:45:8f:d8:98:71:c2:17: f2:a3:dd:e1:80:c3:34:2f:de:a7:31:00:dd:6d:2c: ed:48:4a:3b:b7:10:fc:b1:10:10:fb:b2:35:25:89: 72:d6:87:2f:bd:97:54:e9:71:02:f5:cc:26:f2:f1: f6:ac:f7:86:28:58:1f:7f:3d:60:41:17:a1:53:65: 1d:74:fc:c8:0e:b7:3b:e7:69:86:5c:88:74:14:20: 30:03:a8:85:7c:d1:e0:bf:6c:73:3d:61:10:4e:7b: d6:02:c2:e3:53:74:b5:4f:ac:29:2d:cf:5a:3a:72: 8d:90:61:97:98:68:d7:c2:90:80:72:e2:55:db:cf: 93:c7:6a:97:57:51:5c:57:75:04:55:69:0d:a6:a3: 6d:ca:a3:bb:36:58:67:4c:cf:5e:fd:86:aa:17:2a: 0a:e5:d4:17:ce:78:45:f4:42:fa:cb:18:b8:63:d4: 83:75:f8:71:08:2a:7b:3a:d8:6f:3d:a8:bd:1b:3b: e1:f0:9c:e6:8e:e2:da:95:b4:9d:35:35:57:99:2c: 43:88:81:25:72:4e:4c:0a:5b:35:8d:b8:19:b0:fd: 1a:d9:60:37:36:52:c5:94:7d:73:84:57:71:6b:42: ee:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:EB:4D:60:C2:14:9A:6A:89:93:9D:12:75:39:8F:51:12:80:2D:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:1000::/40 Signature Algorithm: sha256WithRSAEncryption 2a:89:83:3f:42:34:03:c1:95:74:ad:87:81:fa:af:99:1f:fd: cd:c9:28:75:4c:3c:24:2d:df:c6:01:43:36:e3:53:23:09:b3: 76:97:90:7d:87:ef:7d:26:64:ea:11:e7:0d:0f:23:6b:94:72: ad:b0:88:9c:21:69:87:8d:59:ec:a2:7c:ee:79:34:6c:ed:ec: e0:a5:58:b8:40:e6:9c:b4:a7:08:39:4e:ae:8e:4d:2e:93:6e: c2:07:07:1f:70:26:39:5d:95:8b:5e:72:c0:23:b0:e7:0d:96: d3:ff:d8:98:89:fd:aa:90:92:03:1d:8d:b3:e5:23:fd:f5:14: 36:a7:55:b1:62:f0:3b:05:69:90:33:2e:31:93:a3:3d:6b:e7: 42:ad:2d:33:93:0b:56:68:9b:04:a0:a5:a1:c4:79:53:11:87: 26:e6:39:af:68:e1:0e:17:d1:97:30:c7:43:38:7c:6f:d1:a3: bd:fe:e0:7f:3c:b0:0f:3b:3e:4b:fb:ee:92:1d:fb:a8:07:f2: 30:a6:ea:36:ed:fe:c1:90:20:44:b2:5f:76:0f:78:49:b8:d9: 7c:88:d4:86:64:35:79:1f:ab:53:b5:db:63:99:95:b7:89:9a: 73:29:8b:c5:16:1f:11:04:4b:49:9f:99:62:f4:f5:88:5e:3b: c8:98:9f:4e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbI0Fd3kKep+E4qez150OR7t2iOUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE1MDA0MDQ2WhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzQ2MGRiMjcwYmRmZjgyZjc0ZWM0NzQ1MDA1ZDdiMGRm MjJjNDA2N2YwYjlmMjZjNGQ0NzE0M2ZhZmY2ZmQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkaRCL+hmMOQcirBFVa8+l5ERimG5sRY/YmHHCF/Kj3eGA wzQv3qcxAN1tLO1ISju3EPyxEBD7sjUliXLWhy+9l1TpcQL1zCby8fas94YoWB9/ PWBBF6FTZR10/MgOtzvnaYZciHQUIDADqIV80eC/bHM9YRBOe9YCwuNTdLVPrCkt z1o6co2QYZeYaNfCkIBy4lXbz5PHapdXUVxXdQRVaQ2mo23Ko7s2WGdMz179hqoX Kgrl1BfOeEX0QvrLGLhj1IN1+HEIKns62G89qL0bO+HwnOaO4tqVtJ01NVeZLEOI gSVyTkwKWzWNuBmw/RrZYDc2UsWUfXOEV3FrQu7dAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6etNYMIUmmqJk50SdTmPURKALVowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiYTJjYmUzLWJjOGMtNDU2Ni05Y2Y5LWY1ZjliZmQ1MTgyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vEDANBgkqhkiG9w0BAQsFAAOCAQEAKomDP0I0A8GVdK2HgfqvmR/9 zckodUw8JC3fxgFDNuNTIwmzdpeQfYfvfSZk6hHnDQ8ja5RyrbCInCFph41Z7KJ8 7nk0bO3s4KVYuEDmnLSnCDlOro5NLpNuwgcHH3AmOV2Vi15ywCOw5w2W0//YmIn9 qpCSAx2Ns+Uj/fUUNqdVsWLwOwVpkDMuMZOjPWvnQq0tM5MLVmibBKClocR5UxGH JuY5r2jhDhfRlzDHQzh8b9Gjvf7gfzywDzs+S/vukh37qAfyMKbqNu3+wZAgRLJf dg94SbjZfIjUhmQ1eR+rU7XbY5mVt4macymLxRYfEQRLSZ+ZYvT1iF47yJifTg== -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:02 2025 by rpki-client