This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49a16218-d4ff-48dd-85aa-288cdc958f67.roa File: 49a16218-d4ff-48dd-85aa-288cdc958f67.roa (raw, json) Hash identifier: vj2B8GmaSlm3ZPu+TijzmJIRHbjIYivNZmUabPaGA/U= Subject key identifier: A0:EE:9E:6E:2C:EA:86:E8:33:00:A0:EF:F2:0C:F1:70:CA:40:97:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4176C79B9BA11C66186A84B83A920D5409848D86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49a16218-d4ff-48dd-85aa-288cdc958f67.roa Signing time: Sun 16 Nov 2025 00:20:08 +0000 ROA not before: Sun 16 Nov 2025 00:20:08 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.228.194.0/24 maxlen: 24 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 41:76:c7:9b:9b:a1:1c:66:18:6a:84:b8:3a:92:0d:54:09:84:8d:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 16 00:20:08 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=cc43f474c93286dfea2ba5a6b42837ca1b04c1fc1015e43caf0c50fcfb48d547, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b9:6f:30:a3:de:76:eb:bf:1f:92:1a:84:1c: 6d:20:37:50:d0:40:5e:4b:b2:82:6f:3f:28:00:ce: e0:b8:c8:a1:7f:ff:64:82:8e:8d:5b:77:9d:4c:35: 51:1e:58:56:77:95:d3:ed:d7:a0:db:2e:5d:32:b4: 1e:07:1b:f6:71:1e:e6:a9:b7:97:0a:96:7a:ef:58: 26:18:19:60:b3:36:14:f9:42:83:5b:98:99:88:49: 4c:e0:d0:39:10:9a:61:04:ce:4a:3b:72:52:ce:64: e7:24:a4:82:66:07:02:c4:30:b6:81:04:f3:41:7b: 48:f3:71:9b:f0:13:e8:b6:5b:75:fa:bf:15:cf:f6: 9e:16:a0:cf:25:8c:32:01:f7:a2:df:d7:38:45:2d: 66:ef:08:ce:01:9b:81:6f:81:2f:55:ee:1e:e6:25: a1:30:54:2c:57:58:fd:86:2b:4f:7c:6d:37:06:81: 6f:3e:ed:65:24:67:f6:8e:00:d4:6e:4e:67:0d:48: 3d:f0:90:29:59:72:f1:1b:bf:37:1b:36:75:5d:5a: a4:8e:99:3e:86:6d:13:5e:b7:05:d9:16:b6:5f:bd: d5:49:e1:1c:d7:64:ca:37:2a:cf:cb:ee:ed:4e:bc: 07:7b:f8:12:c9:14:22:50:22:a8:f6:7a:61:df:32: 0c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:EE:9E:6E:2C:EA:86:E8:33:00:A0:EF:F2:0C:F1:70:CA:40:97:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49a16218-d4ff-48dd-85aa-288cdc958f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.228.194.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:b5:f1:ef:ed:fa:3c:b6:44:d6:00:29:21:11:c1:c6:c0:d8: 5c:58:cd:a3:a9:25:ef:be:7b:91:d3:52:f9:76:96:ca:0c:70: f5:80:5d:2f:1b:68:7c:00:70:d6:22:65:91:96:7d:d5:3c:9d: 0d:9a:af:1d:90:82:d7:f9:d3:1a:43:9c:57:89:03:0a:36:f8: b8:1b:df:78:35:e8:6d:d8:cc:ac:f7:a8:90:a4:01:46:a7:e0: 28:76:9a:0b:ea:b4:bf:7f:35:a3:eb:9b:7b:85:b0:2c:62:ea: d7:92:1d:bc:9c:a2:f2:4c:d0:08:f8:86:93:f5:2f:7e:b9:80: 23:63:ee:e9:1c:f5:22:32:5a:0d:bd:3d:53:40:94:b4:8b:e6: 21:58:2a:ed:b5:8c:f6:ca:75:0a:64:e2:26:e8:a8:c2:6a:b9: ac:f0:11:6e:ab:79:46:20:2e:ed:e5:32:9f:d1:bb:13:2c:a3: 48:2b:06:02:d3:65:7c:90:bc:74:4e:28:ec:af:0d:46:07:63: 2f:06:a6:ee:7f:dc:c1:fe:40:a6:33:77:c0:f8:a0:45:d6:68: 86:c9:88:a5:ae:ae:65:03:43:77:07:e4:51:c9:c6:d6:8e:b7: e2:21:28:29:00:9b:b1:7a:68:bc:be:86:24:7f:10:45:e8:59: 90:06:19:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQXbHm5uhHGYYaoS4OpINVAmEjYYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE2MDAyMDA4WhcNMjUxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzQzZjQ3NGM5MzI4NmRmZWEyYmE1YTZiNDI4MzdjYTFi MDRjMWZjMTAxNWU0M2NhZjBjNTBmY2ZiNDhkNTQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4uW8wo952678fkhqEHG0gN1DQQF5LsoJvPygAzuC4yKF/ /2SCjo1bd51MNVEeWFZ3ldPt16DbLl0ytB4HG/ZxHuapt5cKlnrvWCYYGWCzNhT5 QoNbmJmISUzg0DkQmmEEzko7clLOZOckpIJmBwLEMLaBBPNBe0jzcZvwE+i2W3X6 vxXP9p4WoM8ljDIB96Lf1zhFLWbvCM4Bm4FvgS9V7h7mJaEwVCxXWP2GK098bTcG gW8+7WUkZ/aOANRuTmcNSD3wkClZcvEbvzcbNnVdWqSOmT6GbRNetwXZFrZfvdVJ 4RzXZMo3Ks/L7u1OvAd7+BLJFCJQIqj2emHfMgxBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoO6ebizqhugzAKDv8gzxcMpAl2AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5YTE2MjE4LWQ0ZmYtNDhkZC04NWFhLTI4OGNkYzk1OGY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX5MIwDQYJKoZIhvcNAQELBQADggEBAE218e/t+jy2RNYAKSERwcbA2FxY zaOpJe++e5HTUvl2lsoMcPWAXS8baHwAcNYiZZGWfdU8nQ2arx2Qgtf50xpDnFeJ Awo2+Lgb33g16G3YzKz3qJCkAUan4Ch2mgvqtL9/NaPrm3uFsCxi6teSHbycovJM 0Aj4hpP1L365gCNj7ukc9SIyWg29PVNAlLSL5iFYKu21jPbKdQpk4iboqMJquazw EW6reUYgLu3lMp/RuxMso0grBgLTZXyQvHROKOyvDUYHYy8Gpu5/3MH+QKYzd8D4 oEXWaIbJiKWurmUDQ3cH5FHJxtaOt+IhKCkAm7F6aLy+hiR/EEXoWZAGGWg= -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:48 2025 by rpki-client