This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa File: 50c8b954-ffa6-4746-9859-9ac0de781ad5.roa (raw, json) Hash identifier: WsZsx4Tsr88JWnU1TL5TSapgVc8W3X/1Yof2BXwsLj4= Subject key identifier: AC:87:1A:94:79:57:D0:36:DD:02:A7:B9:30:B3:46:49:D2:20:E6:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BA7926D374F92D5D92D92B289EC668AE6A9E16D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa Signing time: Wed 12 Nov 2025 00:31:46 +0000 ROA not before: Wed 12 Nov 2025 00:31:46 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f25:8000::/36 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a7:92:6d:37:4f:92:d5:d9:2d:92:b2:89:ec:66:8a:e6:a9:e1:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 00:31:46 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=228bcf6239c7fb3ba50da6130d6912476d35620893ca885d5f7759aeabe3298d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:38:24:fa:a0:e9:9c:98:10:49:60:8c:85:7e: 97:d9:af:e8:1f:06:d8:e5:b3:1d:d8:1d:56:8c:cf: 4a:51:6b:84:b5:f4:43:31:12:bc:66:7d:71:20:ac: b2:5a:d0:d8:a2:62:00:3d:28:57:4d:05:93:ab:2c: d9:2d:7d:de:62:e4:05:a4:f5:70:7f:6f:35:e6:11: 33:c6:ba:e8:ea:3c:f2:b5:0b:b8:9b:2a:64:c8:8e: 55:a7:b1:6b:75:67:59:3a:68:64:9f:f7:09:ee:f7: bb:de:4d:9a:a5:cd:68:56:ad:14:56:5a:ba:e4:ea: 88:6e:ff:8f:80:75:ac:91:05:52:bf:ab:c5:dd:51: c9:c3:5d:76:0a:2e:c0:6e:74:d9:29:25:ba:e2:f8: c8:b5:82:af:1d:c6:64:de:af:0a:1e:ab:ce:61:29: 12:2a:cd:73:cc:b2:42:c1:30:72:fb:3a:07:7d:30: a7:99:ea:49:98:99:ae:bd:84:4a:9e:4f:2b:38:6c: 36:68:66:66:9b:d8:7c:87:53:d4:3d:ca:98:15:ab: a8:27:d4:10:9e:57:13:b0:60:32:d0:85:e5:9b:10: b1:5a:aa:9c:d0:08:ec:80:9f:0e:a4:ae:d5:c2:a6: ce:ce:20:23:fd:4d:6c:d0:21:55:a5:50:8c:94:ec: 85:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:87:1A:94:79:57:D0:36:DD:02:A7:B9:30:B3:46:49:D2:20:E6:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:8000::/36 Signature Algorithm: sha256WithRSAEncryption d2:c8:0d:3c:5a:0b:84:e3:f4:89:57:30:d3:82:83:37:4e:02: 77:b0:cd:17:6f:9e:b0:8a:5a:e3:43:6c:c9:cf:aa:aa:6f:04: 69:33:b8:6a:59:b7:1e:fd:37:ec:e3:f4:28:ab:66:a8:ee:ec: 82:c4:78:3b:09:1c:f6:63:1c:78:d1:6d:db:36:24:cd:ea:e9: 84:6b:b1:9b:3d:3b:45:d4:1e:b9:f0:68:dd:07:5b:f0:9c:77: 4c:69:01:13:0a:5b:a2:a8:a0:bb:25:55:90:f2:3c:66:02:0e: 6e:5e:0f:3d:fe:fe:51:a2:fc:c0:15:d4:1e:15:07:88:ae:d6: 1e:cb:5f:1f:a6:4c:b2:e1:4a:61:f7:d1:11:83:95:4c:5a:79: f0:21:2c:82:93:ee:73:12:f0:ce:7c:81:c6:d3:9a:c5:9e:f7: 1f:df:5e:e5:c6:04:61:81:f9:5e:15:c9:47:63:98:1b:f5:cb: 42:42:5a:af:aa:b6:c7:69:57:16:5b:7b:66:c8:9e:b8:78:00: 32:ef:68:7b:be:f1:2b:09:ff:7c:c5:c8:96:1e:ac:b0:59:de: 00:80:75:78:bc:10:ae:35:ce:6b:29:87:44:07:8c:f0:f6:84: 1c:f1:65:d4:e4:a6:69:0e:e0:c9:c7:b0:06:e3:78:33:ca:30: 4e:35:14:82 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG6eSbTdPktXZLZKyiexmiuap4W0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDAzMTQ2WhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjhiY2Y2MjM5YzdmYjNiYTUwZGE2MTMwZDY5MTI0NzZk MzU2MjA4OTNjYTg4NWQ1Zjc3NTlhZWFiZTMyOThkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiOCT6oOmcmBBJYIyFfpfZr+gfBtjlsx3YHVaMz0pRa4S1 9EMxErxmfXEgrLJa0NiiYgA9KFdNBZOrLNktfd5i5AWk9XB/bzXmETPGuujqPPK1 C7ibKmTIjlWnsWt1Z1k6aGSf9wnu97veTZqlzWhWrRRWWrrk6ohu/4+AdayRBVK/ q8XdUcnDXXYKLsBudNkpJbri+Mi1gq8dxmTerwoeq85hKRIqzXPMskLBMHL7Ogd9 MKeZ6kmYma69hEqeTys4bDZoZmab2HyHU9Q9ypgVq6gn1BCeVxOwYDLQheWbELFa qpzQCOyAnw6krtXCps7OICP9TWzQIVWlUIyU7IXtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrIcalHlX0DbdAqe5MLNGSdIg5uswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwYzhiOTU0LWZmYTYtNDc0Ni05ODU5LTlhYzBkZTc4MWFkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lgDANBgkqhkiG9w0BAQsFAAOCAQEA0sgNPFoLhOP0iVcw04KDN04C d7DNF2+esIpa40Nsyc+qqm8EaTO4alm3Hv037OP0KKtmqO7sgsR4Owkc9mMceNFt 2zYkzerphGuxmz07RdQeufBo3Qdb8Jx3TGkBEwpboqiguyVVkPI8ZgIObl4PPf7+ UaL8wBXUHhUHiK7WHstfH6ZMsuFKYffREYOVTFp58CEsgpPucxLwznyBxtOaxZ73 H99e5cYEYYH5XhXJR2OYG/XLQkJar6q2x2lXFlt7ZsieuHgAMu9oe77xKwn/fMXI lh6ssFneAIB1eLwQrjXOaymHRAeM8PaEHPFl1OSmaQ7gycewBuN4M8owTjUUgg== -----END CERTIFICATE-----Generated at Sat Nov 22 21:36:21 2025 by rpki-client