This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa File: 1ea431c8-e4df-4671-a74c-024b16849a0d.roa (raw, json) Hash identifier: rgtFRUD/RhOt8zaSd+lk1WPEqac+gc0SkSCpAEh6h9M= Subject key identifier: E3:5C:71:24:DC:FC:F1:81:D2:D5:77:D4:CC:65:CE:36:5C:27:6A:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 593062BB887E21CD777CA01F78FC617B3E35D044 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa Signing time: Wed 12 Nov 2025 00:10:46 +0000 ROA not before: Wed 12 Nov 2025 00:10:46 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb9:8000::/39 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 59:30:62:bb:88:7e:21:cd:77:7c:a0:1f:78:fc:61:7b:3e:35:d0:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 00:10:46 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=af1926076c1706669c898ae60dc0d23e7375c20ea2320e4e803347d84c907d62, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:23:6a:93:c0:a1:30:b6:2b:dd:73:bd:f0:03: a7:57:f4:cf:e5:6f:13:2c:8a:0a:31:f5:c4:1f:32: a5:36:e4:39:c1:e8:68:61:67:b5:70:84:de:31:a1: 36:96:21:c2:94:ac:dc:76:d3:ce:08:c6:6a:cd:26: 2a:1f:12:94:8b:79:e6:07:0c:36:17:22:51:03:8f: ab:a0:73:57:e8:70:6d:93:1a:8b:b8:d9:03:0c:3d: c4:cd:9e:8d:70:50:d2:26:22:ca:5b:c3:47:64:ce: c7:d0:d9:a2:86:3e:3a:c6:1a:0e:e8:5a:d6:11:1a: c8:01:4f:8c:5a:3e:f9:9c:7e:4a:76:11:69:e1:e6: 31:27:f7:36:d0:9c:3d:39:cd:c9:94:4e:49:f0:4a: c1:2c:8f:f8:7d:c3:31:07:ff:0c:fd:4a:c6:23:40: 3e:ee:92:73:f7:fb:74:51:1a:8a:37:72:c1:14:f2: 4e:f8:68:11:78:ca:89:37:7e:be:84:32:c9:91:bb: ba:6b:f3:31:d7:1d:31:ac:20:0f:96:a9:95:55:37: 1d:d2:63:7e:62:b2:ff:4c:dc:78:ab:50:e7:71:38: 42:f2:ca:b0:e4:72:30:a7:8f:81:1d:1b:a2:b0:1e: 60:37:26:48:bb:70:0f:a5:a7:5b:ca:fc:54:72:b5: 65:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5C:71:24:DC:FC:F1:81:D2:D5:77:D4:CC:65:CE:36:5C:27:6A:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:8000::/39 Signature Algorithm: sha256WithRSAEncryption 95:f7:a3:84:1e:77:b1:67:f5:91:6d:81:69:ec:59:3e:a0:30: 9a:6e:b6:5f:cf:bb:36:b5:ee:d4:07:ee:f7:53:61:02:4d:4e: 30:57:6b:6d:67:f7:54:dc:fa:f0:5b:52:73:a1:e7:74:2e:7c: 3b:45:82:2d:36:7f:22:13:04:81:f9:bf:90:ea:30:b4:29:b1: f9:7f:e8:92:66:ff:df:58:b7:a1:f0:71:36:23:bd:06:7c:fc: 22:5d:bf:73:ab:0c:86:4c:14:aa:ea:23:df:b1:cb:35:68:ae: 08:e0:9b:ab:05:01:13:e5:b7:fd:ed:c9:64:08:a2:84:36:4d: 36:b3:79:a3:de:ef:2c:fc:fe:bd:53:6f:45:62:3d:ba:be:60: a5:f8:44:c6:cb:a6:17:08:b8:c4:f4:dd:bb:b9:b6:a0:91:70: d5:d8:0f:c0:5f:90:dc:62:26:42:3c:c5:d0:07:24:ae:b4:81: 93:7e:f0:3a:f1:cd:01:af:41:b6:81:b4:46:09:31:b7:20:2b: 56:92:c0:9e:3b:19:b2:fb:f2:3c:37:56:cc:6b:6b:59:27:05: e8:19:b3:b8:39:a1:ca:b1:42:a1:c2:d4:c8:de:2c:1b:46:c9: 46:27:7d:79:9a:20:21:9d:b2:34:a0:4a:fe:0c:20:c8:eb:93: 26:e6:7e:5a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWTBiu4h+Ic13fKAfePxhez410EQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDAxMDQ2WhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjE5MjYwNzZjMTcwNjY2OWM4OThhZTYwZGMwZDIzZTcz NzVjMjBlYTIzMjBlNGU4MDMzNDdkODRjOTA3ZDYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfI2qTwKEwtivdc73wA6dX9M/lbxMsigox9cQfMqU25DnB 6GhhZ7VwhN4xoTaWIcKUrNx2084IxmrNJiofEpSLeeYHDDYXIlEDj6ugc1focG2T Gou42QMMPcTNno1wUNImIspbw0dkzsfQ2aKGPjrGGg7oWtYRGsgBT4xaPvmcfkp2 EWnh5jEn9zbQnD05zcmUTknwSsEsj/h9wzEH/wz9SsYjQD7uknP3+3RRGoo3csEU 8k74aBF4yok3fr6EMsmRu7pr8zHXHTGsIA+WqZVVNx3SY35isv9M3HirUOdxOELy yrDkcjCnj4EdG6KwHmA3Jki7cA+lp1vK/FRytWUBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU41xxJNz88YHS1XfUzGXONlwnauYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlYTQzMWM4LWU0ZGYtNDY3MS1hNzRjLTAyNGIxNjg0OWEwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+5gDANBgkqhkiG9w0BAQsFAAOCAQEAlfejhB53sWf1kW2BaexZPqAw mm62X8+7NrXu1Afu91NhAk1OMFdrbWf3VNz68FtSc6HndC58O0WCLTZ/IhMEgfm/ kOowtCmx+X/okmb/31i3ofBxNiO9Bnz8Il2/c6sMhkwUquoj37HLNWiuCOCbqwUB E+W3/e3JZAiihDZNNrN5o97vLPz+vVNvRWI9ur5gpfhExsumFwi4xPTdu7m2oJFw 1dgPwF+Q3GImQjzF0AckrrSBk37wOvHNAa9BtoG0RgkxtyArVpLAnjsZsvvyPDdW zGtrWScF6BmzuDmhyrFCocLUyN4sG0bJRid9eZogIZ2yNKBK/gwgyOuTJuZ+Wg== -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:17 2025 by rpki-client