This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa File: 71e4dd76-d0a5-4298-b47e-b983c7943d01.roa (raw, json) Hash identifier: jcVunUV3i1t0pIAas+iPNaR5PpS4tSg/Y3bkRMLhC4o= Subject key identifier: 39:81:0E:C6:E1:EF:33:5D:3F:5E:61:CF:5D:C6:BE:6A:5E:F0:0A:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B38FDFBDA49396BDB6230C28930DFD20D40480C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa Signing time: Tue 11 Nov 2025 01:10:10 +0000 ROA not before: Tue 11 Nov 2025 01:10:10 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.128.0/22 maxlen: 22 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 7b:38:fd:fb:da:49:39:6b:db:62:30:c2:89:30:df:d2:0d:40:48:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 01:10:10 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=f190abb0a10e52f11e84a35df761616b168ca996e64c677102b62622de2537a2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f1:68:19:c7:ba:2b:dc:13:d2:f0:ab:2c:0a: 00:6f:66:93:89:89:ee:44:b7:a9:2a:4d:90:17:8f: 9f:60:38:61:b1:6a:c9:22:ef:3e:4d:22:42:d4:08: c7:fe:b3:82:c0:e2:2d:f2:af:54:18:ae:a6:00:b0: df:db:a3:24:22:42:1c:3e:88:c7:86:f6:08:d1:c7: 11:7d:af:55:80:ff:6b:df:06:06:92:68:8b:f5:91: bc:02:2f:b0:23:b8:4b:ba:ca:3f:b2:20:b2:a9:c2: 9d:41:de:54:23:b4:a4:d1:b1:89:b0:f3:f9:87:e0: b5:77:f7:f4:40:d7:96:20:97:71:bf:69:a6:1b:8f: ec:61:3f:72:a5:7a:ad:38:bb:bb:29:e5:15:e1:7f: 0c:dd:45:71:37:3e:81:5d:73:2d:4a:48:fe:d2:53: 24:19:60:a1:44:97:07:a7:b6:7e:5e:bf:4e:57:9c: 68:4d:95:80:25:6c:cf:7d:ee:48:7f:86:03:b4:cb: b1:21:26:84:c0:2f:79:19:21:48:5f:dd:3b:18:94: 77:23:0c:62:5f:eb:c0:9c:15:b4:0a:f0:f7:aa:5e: c8:e4:c3:fc:13:c6:1c:b1:1c:e6:9d:6e:86:22:eb: 4c:34:3f:29:9f:ad:6b:5f:b1:07:5e:00:5e:3b:ed: 19:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:81:0E:C6:E1:EF:33:5D:3F:5E:61:CF:5D:C6:BE:6A:5E:F0:0A:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.128.0/22 Signature Algorithm: sha256WithRSAEncryption 02:49:c1:c9:d1:f4:73:9b:41:94:c1:43:74:4c:df:7e:f4:43: 3f:e0:58:26:0d:62:d2:13:fd:55:6a:e5:05:31:71:50:03:28: 1b:e3:07:c5:b6:44:81:bc:1d:9d:2e:9b:b4:0a:6d:3d:56:91: 84:14:ff:cb:34:a0:6a:77:bb:20:c2:a8:c9:32:57:53:ab:36: 3c:58:35:d7:ce:f7:d5:74:b2:8a:2a:bb:dc:2d:0b:26:d7:c8: f4:29:24:ce:9b:c4:a7:5f:51:66:ed:bf:5a:6a:b5:49:4c:70: f0:32:6e:74:13:a7:55:8b:95:5f:53:bb:dc:a0:0b:e9:b8:67: 90:6e:22:02:b9:4e:48:9e:5a:56:cc:5f:c0:b2:c1:0a:73:8c: fc:7e:25:86:a8:34:e0:79:5f:46:4e:fc:fc:b1:44:99:c6:1c: bc:98:88:09:09:8f:26:a2:78:92:72:67:bf:b2:c8:9f:41:3d: c5:1b:6d:7e:ea:53:ec:5a:46:f7:d6:a8:ff:27:d8:cc:ca:ea: c8:6b:29:4b:9a:39:3f:3a:3b:1a:3d:c4:9b:55:a9:23:e3:82: 9e:4c:15:d8:c4:2b:cb:d6:c3:01:38:22:63:9d:9b:15:81:71: af:7c:a8:76:65:81:61:1c:c5:d2:6b:a6:35:13:58:91:44:b7: a2:81:e7:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUezj9+9pJOWvbYjDCiTDf0g1ASAwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTExMDExMDEwWhcNMjUxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTkwYWJiMGExMGU1MmYxMWU4NGEzNWRmNzYxNjE2YjE2 OGNhOTk2ZTY0YzY3NzEwMmI2MjYyMmRlMjUzN2EyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj8WgZx7or3BPS8KssCgBvZpOJie5Et6kqTZAXj59gOGGx aski7z5NIkLUCMf+s4LA4i3yr1QYrqYAsN/boyQiQhw+iMeG9gjRxxF9r1WA/2vf BgaSaIv1kbwCL7AjuEu6yj+yILKpwp1B3lQjtKTRsYmw8/mH4LV39/RA15Ygl3G/ aaYbj+xhP3Kleq04u7sp5RXhfwzdRXE3PoFdcy1KSP7SUyQZYKFElwentn5ev05X nGhNlYAlbM997kh/hgO0y7EhJoTAL3kZIUhf3TsYlHcjDGJf68CcFbQK8PeqXsjk w/wTxhyxHOadboYi60w0PymfrWtfsQdeAF477RkHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOYEOxuHvM10/XmHPXca+al7wCswwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxZTRkZDc2LWQwYTUtNDI5OC1iNDdlLWI5ODNjNzk0M2QwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFIAwDQYJKoZIhvcNAQELBQADggEBAAJJwcnR9HObQZTBQ3RM3370Qz/g WCYNYtIT/VVq5QUxcVADKBvjB8W2RIG8HZ0um7QKbT1WkYQU/8s0oGp3uyDCqMky V1OrNjxYNdfO99V0sooqu9wtCybXyPQpJM6bxKdfUWbtv1pqtUlMcPAybnQTp1WL lV9Tu9ygC+m4Z5BuIgK5TkieWlbMX8CywQpzjPx+JYaoNOB5X0ZO/PyxRJnGHLyY iAkJjyaieJJyZ7+yyJ9BPcUbbX7qU+xaRvfWqP8n2MzK6shrKUuaOT86Oxo9xJtV qSPjgp5MFdjEK8vWwwE4ImOdmxWBca98qHZlgWEcxdJrpjUTWJFEt6KB58s= -----END CERTIFICATE-----Generated at Sat Nov 22 21:37:53 2025 by rpki-client