This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa File: 7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa (raw, json) Hash identifier: +SSZlelwDGB9mODuoRCOiL8CPP5zYlcItx2u6vVbW6Y= Subject key identifier: 3A:F1:EE:77:73:6C:D1:B9:2D:31:D9:26:7B:A3:F4:5C:F9:C5:43:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07EC05E576710B18E9662F7CCC96BF53BA521A66 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa Signing time: Tue 11 Nov 2025 01:00:05 +0000 ROA not before: Tue 11 Nov 2025 01:00:05 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.32.0/21 maxlen: 21 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 07:ec:05:e5:76:71:0b:18:e9:66:2f:7c:cc:96:bf:53:ba:52:1a:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 01:00:05 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=6652e9f5a64ad16370580bf530e704d5060c7718f0155b7d3e2fe285a160bdd9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:23:42:07:f5:be:31:65:ef:68:9e:ec:28:2d: ea:ba:b5:05:d1:eb:41:e7:2f:83:d2:09:08:e3:0d: 40:0e:0b:72:54:38:82:28:e6:43:21:c8:e8:25:58: 5b:8a:e9:c1:59:1b:cb:84:a2:31:b6:7a:88:31:ea: 28:7b:f5:48:ed:55:3d:a2:24:e3:e2:fb:d2:e3:c7: 5c:39:38:6b:1d:46:dc:17:69:1d:9a:d2:fc:eb:db: d6:d1:1b:2e:47:51:5e:76:5b:57:e4:91:5f:a8:69: 62:d8:6f:81:9e:1e:c6:18:0d:93:90:73:28:80:b4: 07:6a:e3:21:ab:f8:06:3c:6e:c1:63:db:2d:e1:1f: 8e:7c:07:d0:78:e3:c4:e7:55:f3:f1:59:d6:98:88: 79:52:2c:29:5a:54:20:e9:71:18:e7:72:db:83:a8: e9:95:8c:6a:7f:08:dd:21:b5:b2:e7:a7:5e:94:8b: f3:42:f0:4e:36:fa:0a:88:c8:15:78:b8:b7:b7:07: 8f:cc:b4:09:1b:0a:3d:32:7a:87:ce:4d:20:60:63: d3:02:30:f3:71:f9:25:fd:60:fc:df:9a:9e:98:1c: 52:5c:1b:f6:62:93:c9:90:48:d0:d4:6c:31:55:85: 5e:63:eb:43:a9:fd:8b:5a:be:2b:1e:2d:7d:ea:c5: 08:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F1:EE:77:73:6C:D1:B9:2D:31:D9:26:7B:A3:F4:5C:F9:C5:43:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.32.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:4d:cd:c6:8a:af:50:41:22:93:71:a5:43:88:c9:9a:0b:5b: 5c:3b:00:04:97:bc:fa:dc:bf:55:e0:52:1b:63:03:ba:d6:b2: 29:4f:38:55:07:86:3c:cb:a1:a4:da:e4:a8:2e:b4:ee:d6:87: 4b:94:31:3d:49:55:4a:22:5e:dc:a9:40:e1:00:d2:0a:49:57: 96:d0:a0:b0:21:e9:90:7f:a7:ea:b4:64:fe:c3:f2:25:49:7a: 6a:86:eb:f7:49:2a:c5:b6:c9:69:3c:59:47:9e:b4:8d:39:b2: c5:10:54:11:ac:09:79:62:c2:64:78:3b:77:e5:83:13:a4:77: 6a:d6:de:99:8d:1b:68:49:66:93:28:5a:d5:24:d5:b4:e6:db: 02:08:96:84:3e:cb:cf:d0:1f:17:86:64:c7:2d:3d:80:50:bb: 2d:f7:7e:b2:e6:39:d0:a3:33:18:e4:d0:1d:aa:00:ac:47:b3: de:5c:20:45:3f:2d:fc:02:9a:8f:ce:88:a0:f0:42:0e:58:8e: 93:9d:eb:d6:37:90:76:e4:d0:0b:af:54:b7:d5:ad:6e:ea:4a: 90:43:68:23:cd:40:55:d8:ce:f1:78:2e:9b:53:a6:00:3b:ad: a6:0d:9b:3e:d9:a1:ab:dd:75:21:0c:3f:c6:70:f6:43:e8:e9: c3:34:dc:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB+wF5XZxCxjpZi98zJa/U7pSGmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTExMDEwMDA1WhcNMjUxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NjUyZTlmNWE2NGFkMTYzNzA1ODBiZjUzMGU3MDRkNTA2 MGM3NzE4ZjAxNTViN2QzZTJmZTI4NWExNjBiZGQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHI0IH9b4xZe9onuwoLeq6tQXR60HnL4PSCQjjDUAOC3JU OIIo5kMhyOglWFuK6cFZG8uEojG2eogx6ih79UjtVT2iJOPi+9Ljx1w5OGsdRtwX aR2a0vzr29bRGy5HUV52W1fkkV+oaWLYb4GeHsYYDZOQcyiAtAdq4yGr+AY8bsFj 2y3hH458B9B448TnVfPxWdaYiHlSLClaVCDpcRjnctuDqOmVjGp/CN0htbLnp16U i/NC8E42+gqIyBV4uLe3B4/MtAkbCj0yeofOTSBgY9MCMPNx+SX9YPzfmp6YHFJc G/Zik8mQSNDUbDFVhV5j60Op/YtaviseLX3qxQjzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOvHud3Ns0bktMdkme6P0XPnFQwQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjMjhjM2MwLTJiY2YtNDZkOS04ODBiLTA4NjcyZTNlZGM5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOugSAwDQYJKoZIhvcNAQELBQADggEBAC9NzcaKr1BBIpNxpUOIyZoLW1w7 AASXvPrcv1XgUhtjA7rWsilPOFUHhjzLoaTa5KgutO7Wh0uUMT1JVUoiXtypQOEA 0gpJV5bQoLAh6ZB/p+q0ZP7D8iVJemqG6/dJKsW2yWk8WUeetI05ssUQVBGsCXli wmR4O3flgxOkd2rW3pmNG2hJZpMoWtUk1bTm2wIIloQ+y8/QHxeGZMctPYBQuy33 frLmOdCjMxjk0B2qAKxHs95cIEU/LfwCmo/OiKDwQg5YjpOd69Y3kHbk0AuvVLfV rW7qSpBDaCPNQFXYzvF4LptTpgA7raYNmz7ZoavddSEMP8Zw9kPo6cM03N8= -----END CERTIFICATE-----Generated at Sat Nov 22 21:32:18 2025 by rpki-client