This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa File: 12b6201c-9d02-4277-832d-0f1c79e967c0.roa (raw, json) Hash identifier: /Y2S3umXzenvHYJ8p65lEvJ6Hq5OIm0+kCDl/igggD8= Subject key identifier: FC:7A:DD:92:AF:A3:68:3D:43:53:47:3B:FE:CC:FC:45:07:07:6B:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71D8B5B58F3010C26AD5248D0D69D7CFE7EB6111 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa Signing time: Wed 12 Nov 2025 01:50:53 +0000 ROA not before: Wed 12 Nov 2025 01:50:53 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 71:d8:b5:b5:8f:30:10:c2:6a:d5:24:8d:0d:69:d7:cf:e7:eb:61:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 01:50:53 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=9dc0bbebb81407d83a81fbdb71b7d56a4d5b3e0fd8867e2c430d122706ad74f4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:71:d3:2f:34:be:ea:fd:78:1e:58:26:40:d9: 84:66:3c:67:68:4f:29:52:d0:42:f7:50:ba:b3:b1: e4:85:ca:be:dd:99:7b:ef:94:3b:7f:39:9b:1c:e8: 2e:a2:d1:1e:82:ad:ce:0a:c6:81:67:47:90:0b:6d: e1:c8:95:24:9d:58:56:7c:bf:05:cf:f9:61:19:15: b8:51:fa:7d:85:54:a6:c4:2d:e0:18:7c:1b:e8:44: 92:42:0a:c3:47:f8:c6:7c:27:b7:37:40:4a:7f:3f: ef:b0:6f:91:00:12:73:c1:e0:10:8f:aa:a3:54:6c: 83:a0:54:83:74:1c:59:de:ff:56:20:46:49:7e:e6: bb:b3:f8:f7:f8:ed:33:ba:8d:3b:df:76:e2:f7:c3: 7f:c7:68:0f:fe:5c:8d:69:fc:74:2c:73:a0:63:cf: 9b:c9:08:cd:10:63:9d:5e:69:6c:01:4e:79:f1:de: 10:bc:8e:49:c2:17:de:13:8f:75:e6:48:bb:8b:80: aa:68:8b:09:fa:94:b3:7e:d7:a3:47:d2:df:d5:3b: b3:ad:49:59:ec:2a:b2:10:aa:f0:66:47:70:24:d1: 85:dc:7e:3a:c6:01:06:e8:be:53:bf:45:6a:9c:8e: b9:3e:14:f2:5b:e5:01:1d:ac:a4:b4:fc:c0:23:46: f0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:7A:DD:92:AF:A3:68:3D:43:53:47:3B:FE:CC:FC:45:07:07:6B:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption 34:c5:3e:1f:b5:d6:58:6c:fe:7a:8b:77:c2:21:31:13:95:7a: ad:63:e2:c0:37:5d:6c:43:04:f8:80:9e:d2:37:2d:73:e7:44: 44:ca:a6:8b:63:d4:03:93:a5:46:5e:cc:a3:45:75:fe:72:ae: 4f:16:b2:84:1b:a1:f7:a2:e7:ff:6d:1b:8c:eb:5d:3a:ec:40: 91:96:ff:52:42:83:ec:b8:5c:91:8c:dc:0e:c5:e9:bb:c6:ee: df:36:bd:be:79:68:5d:d9:03:24:f8:ce:0e:ac:31:32:3f:96: 64:ce:71:34:0f:0b:b6:ad:d3:ad:65:2b:36:66:aa:fb:83:a7: f7:82:17:e5:76:11:40:5f:50:4a:20:09:f3:14:de:09:0e:ce: 60:db:51:03:9f:55:f4:d2:3d:44:2d:4a:9f:18:cd:33:df:ae: e2:9d:fa:cf:3a:71:7d:20:7c:4d:6f:fd:5c:ff:6c:50:52:23: 38:bf:e7:ce:86:b0:92:d5:0e:90:d3:db:0b:a6:58:90:77:82: b7:1b:07:e0:32:06:13:46:41:65:6c:48:9a:b5:03:fd:10:e9: b5:a0:38:03:27:9e:1b:06:51:52:35:d9:ee:ae:07:42:a8:58: a8:eb:0f:de:b4:c5:15:c3:b2:6f:cc:c0:e0:54:b8:7a:9c:6a: de:63:2e:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcdi1tY8wEMJq1SSNDWnXz+frYREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDE1MDUzWhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGMwYmJlYmI4MTQwN2Q4M2E4MWZiZGI3MWI3ZDU2YTRk NWIzZTBmZDg4NjdlMmM0MzBkMTIyNzA2YWQ3NGY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCCcdMvNL7q/XgeWCZA2YRmPGdoTylS0EL3ULqzseSFyr7d mXvvlDt/OZsc6C6i0R6Crc4KxoFnR5ALbeHIlSSdWFZ8vwXP+WEZFbhR+n2FVKbE LeAYfBvoRJJCCsNH+MZ8J7c3QEp/P++wb5EAEnPB4BCPqqNUbIOgVIN0HFne/1Yg Rkl+5ruz+Pf47TO6jTvfduL3w3/HaA/+XI1p/HQsc6Bjz5vJCM0QY51eaWwBTnnx 3hC8jknCF94Tj3XmSLuLgKpoiwn6lLN+16NH0t/VO7OtSVnsKrIQqvBmR3Ak0YXc fjrGAQbovlO/RWqcjrk+FPJb5QEdrKS0/MAjRvC5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/Hrdkq+jaD1DU0c7/sz8RQcHa+4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyYjYyMDFjLTlkMDItNDI3Ny04MzJkLTBmMWM3OWU5NjdjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBADTFPh+11lhs/nqLd8IhMROVeq1j 4sA3XWxDBPiAntI3LXPnRETKpotj1AOTpUZezKNFdf5yrk8WsoQbofei5/9tG4zr XTrsQJGW/1JCg+y4XJGM3A7F6bvG7t82vb55aF3ZAyT4zg6sMTI/lmTOcTQPC7at 061lKzZmqvuDp/eCF+V2EUBfUEogCfMU3gkOzmDbUQOfVfTSPUQtSp8YzTPfruKd +s86cX0gfE1v/Vz/bFBSIzi/586GsJLVDpDT2wumWJB3grcbB+AyBhNGQWVsSJq1 A/0Q6bWgOAMnnhsGUVI12e6uB0KoWKjrD960xRXDsm/MwOBUuHqcat5jLsY= -----END CERTIFICATE-----Generated at Sat Nov 22 21:37:21 2025 by rpki-client