This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa File: 0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa (raw, json) Hash identifier: VEXYZG3a8R7y9nFOBfrLYjScYAFwScm5YYPgcJ5rGPU= Subject key identifier: 86:96:FB:11:AB:87:F8:C2:E3:BF:A4:50:C8:C0:CA:52:C7:F3:0D:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AF4EF79583C75E0F516B86DB095E006814FB471 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa Signing time: Sat 15 Nov 2025 00:40:48 +0000 ROA not before: Sat 15 Nov 2025 00:40:48 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f2a:c800::/37 maxlen: 37 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f4:ef:79:58:3c:75:e0:f5:16:b8:6d:b0:95:e0:06:81:4f:b4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:40:48 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e5b88850bef36b7e9080d4c9a790568fa3abdf32ca70717cd417b1f94b9759e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:ac:90:fa:80:e1:5d:c8:d8:23:01:63:66: 98:92:07:4c:5b:a0:e2:01:d1:cd:92:04:e1:a4:7c: 06:ea:40:15:a8:81:36:81:74:26:1c:56:dd:9a:25: 2a:ca:ef:ff:21:2f:ca:50:c1:a2:fd:e2:6f:24:d3: 31:ab:2a:67:7c:ee:c1:25:9e:d9:cd:3c:bf:7a:79: f1:c5:f5:91:34:a5:93:43:bf:a4:ac:42:f3:37:3f: a9:fd:c8:05:bd:e7:19:1e:68:bb:ac:75:5e:b2:49: 32:d7:c5:69:76:d5:e2:9b:89:6a:d5:bd:27:84:9b: 6d:b1:4e:18:59:55:37:15:7c:9f:81:73:35:1a:0c: 11:7b:1a:0a:be:90:0f:da:43:05:d1:f6:25:fb:bc: 21:ac:31:8d:71:8b:4f:a8:ce:2b:19:a2:d2:9e:4c: 8f:b7:40:3c:37:aa:6d:8b:db:99:6a:dc:63:94:25: 20:64:b1:57:ac:af:69:1f:1d:ca:d7:d6:2e:02:4e: a3:11:b0:ff:41:cc:42:ab:b1:28:ad:f0:5a:84:e7: b7:08:4c:83:41:8e:a8:8f:b1:61:a3:ec:2f:a2:14: 8f:1c:30:09:6d:ca:68:4d:a8:1b:4b:d2:fa:16:06: 29:c0:09:f0:33:c8:8e:8c:62:22:f3:7b:2d:3d:f9: 15:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:96:FB:11:AB:87:F8:C2:E3:BF:A4:50:C8:C0:CA:52:C7:F3:0D:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2a:c800::/37 Signature Algorithm: sha256WithRSAEncryption 3a:5a:c7:30:ff:5e:81:d2:28:69:e0:46:e2:fe:3a:4e:18:e2: fd:11:94:de:49:30:75:12:15:1d:e3:3b:60:05:ac:71:19:b6: df:89:4f:a0:cf:a2:1b:3a:e9:1a:e4:9f:64:9b:67:3d:7c:22: 83:4c:65:3c:1f:99:09:50:4e:85:f4:ff:4c:ac:95:9b:61:4d: 08:7d:62:bf:d7:c7:23:dc:24:55:8d:89:13:a1:12:68:10:67: 81:7c:8c:b0:50:e1:2a:e1:bc:b7:7c:9f:6e:46:02:53:6d:64: 16:84:84:b2:df:ba:04:bb:ce:00:83:92:72:ee:a2:14:23:88: 06:c7:e8:f0:1f:b7:0a:e1:ce:fd:17:ff:2f:4a:85:31:0a:3b: 0d:36:66:46:d0:b6:83:d8:92:c0:bd:38:52:7d:d5:96:51:09: 7d:ec:73:85:82:2c:d1:2a:2a:b9:a3:0d:87:c6:51:d7:eb:e7: be:2d:a6:70:a2:35:da:82:23:f3:c0:42:f2:ac:5c:93:8d:8a: 61:18:e9:b9:a4:be:4c:85:91:84:3e:56:da:a0:78:23:d6:11: cb:7f:17:ad:fb:7f:08:7e:2b:6c:4b:16:69:b5:7c:b5:b6:3d: 6c:39:d1:0c:c9:58:e5:70:cb:5b:f1:e0:8f:93:10:5e:97:77: 83:6e:ad:83 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGvTveVg8deD1FrhtsJXgBoFPtHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE1MDA0MDQ4WhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWI4ODg1MGJlZjM2YjdlOTA4MGQ0YzlhNzkwNTY4ZmEz YWJkZjMyY2E3MDcxN2NkNDE3YjFmOTRiOTc1OWU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO96yQ+oDhXcjYIwFjZpiSB0xboOIB0c2SBOGkfAbqQBWo gTaBdCYcVt2aJSrK7/8hL8pQwaL94m8k0zGrKmd87sElntnNPL96efHF9ZE0pZND v6SsQvM3P6n9yAW95xkeaLusdV6ySTLXxWl21eKbiWrVvSeEm22xThhZVTcVfJ+B czUaDBF7Ggq+kA/aQwXR9iX7vCGsMY1xi0+ozisZotKeTI+3QDw3qm2L25lq3GOU JSBksVesr2kfHcrX1i4CTqMRsP9BzEKrsSit8FqE57cITINBjqiPsWGj7C+iFI8c MAltymhNqBtL0voWBinACfAzyI6MYiLzey09+RXlAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhpb7EauH+MLjv6RQyMDKUsfzDSUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjZjUwYWQ2LTk0NDItNDU5Ny04Yzg5LWU1YmViNTJkNTBlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8qyDANBgkqhkiG9w0BAQsFAAOCAQEAOlrHMP9egdIoaeBG4v46Thji /RGU3kkwdRIVHeM7YAWscRm234lPoM+iGzrpGuSfZJtnPXwig0xlPB+ZCVBOhfT/ TKyVm2FNCH1iv9fHI9wkVY2JE6ESaBBngXyMsFDhKuG8t3yfbkYCU21kFoSEst+6 BLvOAIOScu6iFCOIBsfo8B+3CuHO/Rf/L0qFMQo7DTZmRtC2g9iSwL04Un3VllEJ fexzhYIs0SoquaMNh8ZR1+vnvi2mcKI12oIj88BC8qxck42KYRjpuaS+TIWRhD5W 2qB4I9YRy38Xrft/CH4rbEsWabV8tbY9bDnRDMlY5XDLW/Hgj5MQXpd3g26tgw== -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:55 2025 by rpki-client