This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa File: 35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa (raw, json) Hash identifier: KlBoAHlApERZUhZE5Wq4x3qN7pXBQe3CN5rvdSw5nC0= Subject key identifier: 58:78:AC:AF:E2:24:15:06:FB:70:B5:01:7D:47:11:F8:71:BF:06:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A175C9A6863586B2891901241991D16968A024B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa Signing time: Wed 12 Nov 2025 02:00:04 +0000 ROA not before: Wed 12 Nov 2025 02:00:04 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1f:4800::/37 maxlen: 37 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 3a:17:5c:9a:68:63:58:6b:28:91:90:12:41:99:1d:16:96:8a:02:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 02:00:04 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=924e40c811596cfbdb2e32b9f78cdd0db0953495d0bac5ceb29536ad833c9530, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:64:0c:a1:73:01:1e:f6:ae:7e:84:ec:53:b7: b7:60:85:f9:ad:4f:92:dc:dd:f1:14:4d:e4:c2:f8: 2f:69:26:ed:7d:db:fd:2a:28:a7:a2:be:f6:51:ab: b6:6a:2c:38:65:80:ea:a6:eb:73:2b:5d:36:be:14: 43:2f:c1:8b:df:33:ea:74:2e:41:dc:f3:fb:e1:71: 48:c3:0d:10:8e:c0:af:c1:a3:cd:e0:04:63:d1:3e: 0e:e6:04:cd:b0:94:48:35:7e:41:21:ce:63:89:e8: 7f:3c:66:4b:89:40:e1:5b:c7:fd:95:f6:49:b2:29: 6f:55:fc:23:75:c6:5a:e8:78:ef:02:65:76:82:90: 6f:67:39:a6:d0:94:5d:b5:06:3c:75:d2:87:7a:99: 01:ee:ae:5b:57:f9:0c:f1:ca:d1:2e:ce:bb:10:44: 57:71:3c:3f:6e:fb:57:00:2f:2a:4c:e6:8d:36:59: bd:8c:a5:40:42:b7:df:65:1b:a6:75:b6:70:9e:3b: 75:29:97:04:7b:46:df:c1:a6:d4:dd:36:6a:1e:b4: 33:9a:45:30:95:64:b8:3e:92:8c:40:02:3a:4d:be: 90:dc:0b:aa:d9:54:e6:87:01:10:7c:19:76:5d:c2: 11:8a:f0:79:f0:ba:14:de:37:27:45:2d:d8:ab:fd: b4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:78:AC:AF:E2:24:15:06:FB:70:B5:01:7D:47:11:F8:71:BF:06:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:4800::/37 Signature Algorithm: sha256WithRSAEncryption c8:34:11:b8:d4:be:2a:da:06:93:71:01:f7:1b:1b:92:00:8c: ca:2e:9d:8b:4f:1c:7a:ae:bb:dd:c5:4f:bd:4c:0e:f4:3a:78: 70:a5:62:03:83:4d:b1:a3:ea:5d:41:ff:29:76:8f:e9:4e:5a: f8:64:ed:d0:4c:2f:69:a5:25:1c:d1:3b:dc:36:df:8d:dc:c4: 16:97:9e:d0:5d:76:c4:b5:28:65:1a:d0:ac:fd:5e:e5:4a:78: 90:7d:e4:2d:e3:9e:ff:5e:eb:47:39:6e:63:68:7c:57:87:80: 75:b3:b6:69:7b:ef:31:e6:00:76:65:48:53:b0:b2:e9:31:b3: a1:06:df:df:e7:ea:b8:98:6c:59:4c:b7:4b:3d:ef:05:47:a1: de:4c:1c:4d:30:e9:5b:72:20:12:74:ef:64:f4:3f:1f:74:49: af:f0:fe:0b:10:34:90:ba:d4:1e:a0:19:8e:c0:04:44:ce:44: a1:a8:1f:06:2b:c9:c8:c6:f5:2d:c1:5c:d8:c5:3f:e3:67:6f: 75:c2:1f:bc:05:dd:60:cc:88:4a:bb:4d:72:02:c5:d5:f4:0a: 62:3f:c7:15:35:29:e1:6c:09:b7:60:f0:fe:06:6e:fc:4d:ef: a9:a6:9a:32:3c:c2:db:a2:70:66:df:63:75:81:59:66:d4:74: fd:ab:3b:8f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOhdcmmhjWGsokZASQZkdFpaKAkswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDIwMDA0WhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjRlNDBjODExNTk2Y2ZiZGIyZTMyYjlmNzhjZGQwZGIw OTUzNDk1ZDBiYWM1Y2ViMjk1MzZhZDgzM2M5NTMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2ZAyhcwEe9q5+hOxTt7dghfmtT5Lc3fEUTeTC+C9pJu19 2/0qKKeivvZRq7ZqLDhlgOqm63MrXTa+FEMvwYvfM+p0LkHc8/vhcUjDDRCOwK/B o83gBGPRPg7mBM2wlEg1fkEhzmOJ6H88ZkuJQOFbx/2V9kmyKW9V/CN1xlroeO8C ZXaCkG9nOabQlF21Bjx10od6mQHurltX+QzxytEuzrsQRFdxPD9u+1cALypM5o02 Wb2MpUBCt99lG6Z1tnCeO3UplwR7Rt/BptTdNmoetDOaRTCVZLg+koxAAjpNvpDc C6rZVOaHARB8GXZdwhGK8HnwuhTeNydFLdir/bQnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWHisr+IkFQb7cLUBfUcR+HG/BucwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ZGY4NGJkLWY4NWUtNDFjZC05OWIxLTNmN2E5ZWJiMTQ4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8fSDANBgkqhkiG9w0BAQsFAAOCAQEAyDQRuNS+KtoGk3EB9xsbkgCM yi6di08ceq673cVPvUwO9Dp4cKViA4NNsaPqXUH/KXaP6U5a+GTt0EwvaaUlHNE7 3DbfjdzEFpee0F12xLUoZRrQrP1e5Up4kH3kLeOe/17rRzluY2h8V4eAdbO2aXvv MeYAdmVIU7Cy6TGzoQbf3+fquJhsWUy3Sz3vBUeh3kwcTTDpW3IgEnTvZPQ/H3RJ r/D+CxA0kLrUHqAZjsAERM5EoagfBivJyMb1LcFc2MU/42dvdcIfvAXdYMyISrtN cgLF1fQKYj/HFTUp4WwJt2Dw/gZu/E3vqaaaMjzC26JwZt9jdYFZZtR0/as7jw== -----END CERTIFICATE-----Generated at Sat Nov 22 21:29:59 2025 by rpki-client