This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa File: 4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa (raw, json) Hash identifier: lKZQFVYMTTfX+xKmMihDhVslaaCqLShv45FdagZ851E= Subject key identifier: 40:CA:68:62:33:F6:C5:68:9D:0E:B8:3A:5C:16:FC:99:49:15:44:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F5A98D804381C219C6044DA35302AC6F22C5ECD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa Signing time: Mon 17 Nov 2025 20:51:51 +0000 ROA not before: Mon 17 Nov 2025 20:51:51 +0000 ROA not after: Sun 15 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 16.174.0.0/16 maxlen: 16 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 1f:5a:98:d8:04:38:1c:21:9c:60:44:da:35:30:2a:c6:f2:2c:5e:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 17 20:51:51 2025 GMT Not After : Feb 15 23:59:59 2026 GMT Subject: serialNumber=77f4a7a3c45c86924794b709bc1579a8f2b7bfc35ad1e73fb8342d22f9b7b6ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:04:5e:ba:ca:cd:92:82:92:6f:82:ec:61:f5: 9b:f5:1f:5b:39:a5:c3:a9:16:6a:48:a5:8f:3d:bc: f6:67:11:44:07:42:18:21:35:96:80:17:83:b5:d0: 2d:6f:12:3c:0b:11:3f:6e:4d:bc:c3:52:8f:e5:02: a8:03:e1:5f:38:d7:f8:a2:b0:58:ef:8f:6b:61:a6: 8b:d8:6d:c5:a2:76:47:5b:d2:cc:ae:d8:4e:83:b7: 00:72:3c:e8:4d:51:f4:43:5b:c6:3f:af:5d:a0:28: fe:fa:63:9e:21:98:7e:83:bf:3c:56:fa:28:04:e8: 7f:bb:9a:b0:3c:ea:c4:31:ea:51:14:19:b0:5a:6c: 47:6d:8a:70:c6:b5:80:5e:f9:a7:b2:a6:e6:96:32: 66:1f:ab:9f:ee:30:e3:c3:9c:39:a5:07:79:84:04: 58:4e:83:0b:51:05:39:20:1a:c2:29:38:b8:83:1e: de:31:32:78:a3:3d:8c:19:9e:09:e2:e5:0d:eb:13: 36:d0:62:01:8b:d0:30:ea:8c:d5:78:10:76:b6:4a: e1:87:40:4c:04:cf:dd:8f:54:ba:44:eb:04:0d:d0: 3c:8f:7e:68:33:2c:aa:f0:c6:7b:40:cb:cb:8e:1c: 49:9f:86:32:17:ca:7c:1e:ca:5e:01:67:e2:e5:c4: 28:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:CA:68:62:33:F6:C5:68:9D:0E:B8:3A:5C:16:FC:99:49:15:44:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:eb:3d:59:e3:d8:65:e7:73:bf:b3:1f:7a:d9:1b:ac:18:d5: f7:52:c1:a9:b4:bf:0f:f9:b0:b7:45:f8:62:d9:af:f4:b8:f0: 0e:e0:7b:b2:d0:67:f0:69:a6:55:58:c8:84:f5:25:c4:54:d1: 9c:bd:bf:1f:00:ed:65:eb:63:ab:dd:b5:aa:1f:d6:3a:5f:6f: 8a:be:c5:53:b5:ca:22:a8:df:87:4b:1c:3d:b5:c3:b4:fd:dd: 83:6a:7f:14:77:7b:82:9a:59:a1:ad:e0:22:c0:cc:71:d0:1d: ca:2c:20:0b:26:94:60:d2:6e:44:1f:5c:7b:04:5d:26:bc:83: e0:a3:d3:58:bc:b9:89:7c:7e:cd:34:84:45:53:28:77:7a:95: cb:88:48:38:9c:98:eb:cd:f5:79:ca:01:bd:49:68:81:6c:a6: 17:84:75:2a:c0:ab:1d:07:76:82:2d:66:78:06:2e:5f:0b:94: 79:6b:34:be:b8:75:cf:2c:da:d2:3c:bc:68:95:41:68:05:f6: 7f:e1:7a:82:d4:9f:b7:38:a8:04:88:78:6f:09:0e:ee:8d:f3: 1c:ad:9c:c0:72:f3:7d:f5:36:97:bb:ab:04:06:e6:46:06:0e: 6c:30:8e:83:6b:a2:26:b7:07:50:02:56:b5:8b:90:56:76:80: 49:9d:bf:e4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH1qY2AQ4HCGcYETaNTAqxvIsXs0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE3MjA1MTUxWhcNMjYwMjE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2Y0YTdhM2M0NWM4NjkyNDc5NGI3MDliYzE1NzlhOGYy YjdiZmMzNWFkMWU3M2ZiODM0MmQyMmY5YjdiNmFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChBF66ys2SgpJvguxh9Zv1H1s5pcOpFmpIpY89vPZnEUQH QhghNZaAF4O10C1vEjwLET9uTbzDUo/lAqgD4V841/iisFjvj2thpovYbcWidkdb 0syu2E6DtwByPOhNUfRDW8Y/r12gKP76Y54hmH6DvzxW+igE6H+7mrA86sQx6lEU GbBabEdtinDGtYBe+aeypuaWMmYfq5/uMOPDnDmlB3mEBFhOgwtRBTkgGsIpOLiD Ht4xMnijPYwZngni5Q3rEzbQYgGL0DDqjNV4EHa2SuGHQEwEz92PVLpE6wQN0DyP fmgzLKrwxntAy8uOHEmfhjIXynweyl4BZ+LlxCjzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQMpoYjP2xWidDrg6XBb8mUkVREQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyMjJmMzlhLWUxM2ItNGY5MC04ZmFjLWQ3ZjNkZGQ3ODA0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQrjANBgkqhkiG9w0BAQsFAAOCAQEATes9WePYZedzv7MfetkbrBjV91LB qbS/D/mwt0X4Ytmv9LjwDuB7stBn8GmmVVjIhPUlxFTRnL2/HwDtZetjq921qh/W Ol9vir7FU7XKIqjfh0scPbXDtP3dg2p/FHd7gppZoa3gIsDMcdAdyiwgCyaUYNJu RB9cewRdJryD4KPTWLy5iXx+zTSERVMod3qVy4hIOJyY6831ecoBvUlogWymF4R1 KsCrHQd2gi1meAYuXwuUeWs0vrh1zyza0jy8aJVBaAX2f+F6gtSftzioBIh4bwkO 7o3zHK2cwHLzffU2l7urBAbmRgYObDCOg2uiJrcHUAJWtYuQVnaASZ2/5A== -----END CERTIFICATE-----Generated at Sat Nov 22 21:34:43 2025 by rpki-client