This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa File: 7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa (raw, json) Hash identifier: tRK93xwf2qsItiuzT+KWZnURxw27F+2fGoCuddrMv8Q= Subject key identifier: 4F:69:AF:13:6D:DE:2A:B8:09:4A:0D:6E:89:76:D6:A7:2E:08:89:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F39585E34BAEBDAF67D8F9860D4DE0AD790D5C9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa Signing time: Tue 18 Nov 2025 00:11:07 +0000 ROA not before: Tue 18 Nov 2025 00:11:07 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 128.167.0.0/16 maxlen: 24 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 6f:39:58:5e:34:ba:eb:da:f6:7d:8f:98:60:d4:de:0a:d7:90:d5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 18 00:11:07 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=d9651645a03d328ab060f1b1a3502ce42b135548e8928ded5bb3fdc9f548a709, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e9:1a:fb:e9:6c:76:a1:2c:30:66:a4:33:f9: ce:49:e2:a3:8d:94:dc:ba:26:14:f8:7c:b5:a0:20: be:e0:fc:03:0f:0c:e8:3d:05:58:b2:7a:9f:40:be: f0:c9:97:91:35:ec:04:12:fb:3a:c5:9b:b3:84:a9: 59:8c:75:4c:82:e3:ac:77:84:df:00:60:d1:7d:5c: 15:df:e5:da:9f:c0:f6:f7:c6:b9:d7:77:83:90:a3: 33:bd:f8:1c:c8:01:3c:6b:96:39:0e:70:38:82:01: 34:e0:25:22:90:ed:c6:b7:9f:1d:9d:ec:c1:b3:0a: 85:c4:f0:cc:3e:37:7f:ff:ea:33:a6:07:f0:7d:91: 5d:27:70:1c:9f:3e:07:de:5b:23:a1:52:77:1d:33: f0:ba:76:34:22:ff:33:9c:d3:6a:03:87:2c:f9:7b: 8e:cf:78:4c:92:34:ea:c1:fd:63:78:26:28:a9:35: 9d:2b:2e:fd:6a:08:7e:c9:a7:7d:a9:bf:05:e9:b4: 2a:02:d7:c2:34:2e:ff:a8:c5:b9:03:57:a6:da:13: f3:59:c5:b1:23:5a:7b:5f:95:41:ba:ac:22:ef:bd: 1d:67:fc:29:02:c3:79:fe:9f:dd:8e:d6:25:96:6b: 1a:e9:53:31:93:60:e1:72:9c:5c:9c:70:4c:03:5a: 6a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:69:AF:13:6D:DE:2A:B8:09:4A:0D:6E:89:76:D6:A7:2E:08:89:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.167.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:60:cd:fb:cb:8c:8d:39:aa:2f:7e:6b:79:c1:2a:84:9c:39: 25:c7:98:f3:ff:13:4e:ab:fd:fd:89:95:28:14:3f:23:38:8a: 4c:46:a2:1c:48:a4:1a:a6:4c:b8:2e:18:90:40:a8:54:b3:af: 5e:ce:79:1c:a7:20:a9:30:5f:52:62:1d:ca:9d:d7:7b:1e:5c: b7:36:47:08:12:85:59:54:bd:59:ea:bd:a9:2b:d7:1e:79:9a: 0f:aa:40:f1:67:c1:20:26:9f:3d:23:b0:a8:94:70:21:21:78: 31:cb:0d:11:31:76:1b:c6:20:69:91:1c:1e:91:13:03:53:b7: 24:3e:e5:e3:c3:3c:aa:28:a8:c4:b7:ca:45:b6:a5:5f:a8:bf: 3c:af:aa:72:f3:88:f2:2d:cc:2f:e4:c3:86:fa:56:2e:18:dd: 21:c2:0d:4e:f4:4e:0d:f2:ba:33:db:70:49:19:aa:97:59:95: d6:81:f4:eb:2d:ba:31:ed:45:5d:49:24:72:8e:eb:8f:70:7c: d2:38:98:bd:c9:96:14:50:c2:a3:3b:b6:90:f3:42:31:f7:6f: 09:16:3a:d0:0b:bb:0f:5a:3b:e3:9b:0f:c4:73:c5:e4:eb:c4: 31:a4:58:7b:3b:3b:bb:06:4f:0d:07:b6:55:5b:dd:56:03:bb: 2b:c7:3c:11 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbzlYXjS669r2fY+YYNTeCteQ1ckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE4MDAxMTA3WhcNMjYwMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTY1MTY0NWEwM2QzMjhhYjA2MGYxYjFhMzUwMmNlNDJi MTM1NTQ4ZTg5MjhkZWQ1YmIzZmRjOWY1NDhhNzA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC76Rr76Wx2oSwwZqQz+c5J4qONlNy6JhT4fLWgIL7g/AMP DOg9BViyep9AvvDJl5E17AQS+zrFm7OEqVmMdUyC46x3hN8AYNF9XBXf5dqfwPb3 xrnXd4OQozO9+BzIATxrljkOcDiCATTgJSKQ7ca3nx2d7MGzCoXE8Mw+N3//6jOm B/B9kV0ncByfPgfeWyOhUncdM/C6djQi/zOc02oDhyz5e47PeEySNOrB/WN4Jiip NZ0rLv1qCH7Jp32pvwXptCoC18I0Lv+oxbkDV6baE/NZxbEjWntflUG6rCLvvR1n /CkCw3n+n92O1iWWaxrpUzGTYOFynFyccEwDWmpdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUT2mvE23eKrgJSg1uiXbWpy4IiSowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdiNzQzNjI1LThhYjgtNGQxZi1hNWVlLWIyNjU3YmFkMzIwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCApzANBgkqhkiG9w0BAQsFAAOCAQEAIGDN+8uMjTmqL35recEqhJw5JceY 8/8TTqv9/YmVKBQ/IziKTEaiHEikGqZMuC4YkECoVLOvXs55HKcgqTBfUmIdyp3X ex5ctzZHCBKFWVS9Weq9qSvXHnmaD6pA8WfBICafPSOwqJRwISF4McsNETF2G8Yg aZEcHpETA1O3JD7l48M8qiioxLfKRbalX6i/PK+qcvOI8i3ML+TDhvpWLhjdIcIN TvRODfK6M9twSRmql1mV1oH06y26Me1FXUkkco7rj3B80jiYvcmWFFDCozu2kPNC MfdvCRY60Au7D1o745sPxHPF5OvEMaRYezs7uwZPDQe2VVvdVgO7K8c8EQ== -----END CERTIFICATE-----Generated at Sat Nov 22 09:11:33 2025 by rpki-client