This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a13bd1b-83be-4772-b2ef-75052230daca.roa File: 8a13bd1b-83be-4772-b2ef-75052230daca.roa (raw, json) Hash identifier: F1kODARrgL5Dd5SXI4YiClVG/x7jqP651PMrYRcGsgo= Subject key identifier: 5F:09:EE:80:84:45:60:0C:B8:67:43:D2:38:1A:78:38:04:9A:58:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A4FF1BF0C582C701767AF53BC1C23D8786360CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a13bd1b-83be-4772-b2ef-75052230daca.roa Signing time: Wed 12 Nov 2025 01:50:54 +0000 ROA not before: Wed 12 Nov 2025 01:50:54 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1c:c000::/37 maxlen: 37 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4f:f1:bf:0c:58:2c:70:17:67:af:53:bc:1c:23:d8:78:63:60:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 01:50:54 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=6f7c4346a361d2fbcf816c399ee32652c81ec36ae312a656908833e12d3f8d27, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:46:be:a7:66:7b:08:c6:78:40:eb:9f:69:21: 53:db:a7:67:e5:6f:ed:36:f4:53:ed:7c:52:ef:45: 01:4d:89:73:0c:60:ef:60:b5:ae:0b:40:a7:e6:dd: c6:73:b3:90:a9:c1:f7:50:fe:87:1f:db:b1:16:8c: 0f:5c:c2:9e:04:2c:26:49:ae:04:a7:c4:73:31:50: 04:0f:cd:37:07:c1:ac:0e:eb:b0:ca:4c:bc:e5:7a: 05:de:63:a3:2f:9d:62:f9:07:8b:0c:5a:c0:92:ec: 55:de:34:52:14:c0:d9:6d:de:2f:96:8c:cd:c2:b5: c0:07:5f:ed:5a:ea:d4:76:28:51:7b:ef:16:a8:33: c6:6d:ac:87:d9:c2:50:3b:79:20:94:2f:67:ac:aa: 6b:8f:80:58:df:d4:a1:55:0e:c5:c0:1b:03:a8:9f: 62:bc:17:05:ba:8f:d7:4a:c1:f6:b5:fb:6c:00:da: 05:87:a9:f0:c7:f4:db:e9:40:e4:09:fd:4e:9c:b9: 5a:3f:55:8f:e6:57:ec:92:1b:36:6d:e7:14:df:5f: b9:88:78:1c:07:08:f1:b7:18:a6:19:d7:b1:ed:98: be:26:37:25:ca:08:79:9b:0c:e2:90:95:b2:91:21: f4:17:fd:ef:52:d7:56:b1:ff:29:f6:11:70:df:c8: a5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:09:EE:80:84:45:60:0C:B8:67:43:D2:38:1A:78:38:04:9A:58:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a13bd1b-83be-4772-b2ef-75052230daca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1c:c000::/37 Signature Algorithm: sha256WithRSAEncryption 5d:32:c5:b0:0c:f6:24:19:96:e2:1e:07:e5:85:12:79:7d:45: a1:9c:c6:a6:78:97:9b:7b:8b:8f:52:60:3f:37:64:8e:e4:71: 17:fb:ac:2d:13:c4:d5:ed:ba:01:0b:e3:16:9e:4e:48:da:4e: 49:7a:b1:53:cc:5a:64:ca:ea:a1:93:28:9a:f9:92:a7:c6:4d: 7d:d9:c6:38:a8:ed:b3:e8:99:9e:0e:05:da:39:99:2b:7f:f5: 7b:87:64:68:ae:f4:88:c3:b1:9d:e9:6b:a6:60:9a:9b:16:fc: 27:dc:80:3e:72:9d:71:ca:9a:fc:76:2c:8f:78:26:b3:39:0e: 6d:09:ab:48:19:d9:de:88:bd:b5:ba:86:a8:c3:bb:20:e3:01: c0:a4:94:72:d0:b5:4c:e6:c1:7f:e8:48:b5:d1:5b:00:fa:ef: 36:5f:ac:c2:d2:ba:1e:3a:11:63:41:8b:a0:05:33:90:46:1b: 0c:32:d0:59:b9:4b:36:bd:d5:ff:02:21:b8:af:9b:b4:36:a2: d0:70:7d:f6:07:dd:92:4b:02:5d:49:9a:89:c6:5d:ea:5b:3a: 16:ca:44:9e:8e:26:f0:ad:3f:5f:01:f9:d0:2c:0c:8b:71:f2: d4:92:cd:9f:ee:1f:fc:85:f2:2a:9a:5e:15:25:95:49:59:2f: 55:c8:18:03 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOk/xvwxYLHAXZ69TvBwj2HhjYMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDE1MDU0WhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjdjNDM0NmEzNjFkMmZiY2Y4MTZjMzk5ZWUzMjY1MmM4 MWVjMzZhZTMxMmE2NTY5MDg4MzNlMTJkM2Y4ZDI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLRr6nZnsIxnhA659pIVPbp2flb+029FPtfFLvRQFNiXMM YO9gta4LQKfm3cZzs5CpwfdQ/ocf27EWjA9cwp4ELCZJrgSnxHMxUAQPzTcHwawO 67DKTLzlegXeY6MvnWL5B4sMWsCS7FXeNFIUwNlt3i+WjM3CtcAHX+1a6tR2KFF7 7xaoM8ZtrIfZwlA7eSCUL2esqmuPgFjf1KFVDsXAGwOon2K8FwW6j9dKwfa1+2wA 2gWHqfDH9NvpQOQJ/U6cuVo/VY/mV+ySGzZt5xTfX7mIeBwHCPG3GKYZ17HtmL4m NyXKCHmbDOKQlbKRIfQX/e9S11ax/yn2EXDfyKX7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXwnugIRFYAy4Z0PSOBp4OASaWOMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhMTNiZDFiLTgzYmUtNDc3Mi1iMmVmLTc1MDUyMjMwZGFjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8cwDANBgkqhkiG9w0BAQsFAAOCAQEAXTLFsAz2JBmW4h4H5YUSeX1F oZzGpniXm3uLj1JgPzdkjuRxF/usLRPE1e26AQvjFp5OSNpOSXqxU8xaZMrqoZMo mvmSp8ZNfdnGOKjts+iZng4F2jmZK3/1e4dkaK70iMOxnelrpmCamxb8J9yAPnKd ccqa/HYsj3gmszkObQmrSBnZ3oi9tbqGqMO7IOMBwKSUctC1TObBf+hItdFbAPrv Nl+swtK6HjoRY0GLoAUzkEYbDDLQWblLNr3V/wIhuK+btDai0HB99gfdkksCXUma icZd6ls6FspEno4m8K0/XwH50CwMi3Hy1JLNn+4f/IXyKppeFSWVSVkvVcgYAw== -----END CERTIFICATE-----Generated at Sat Nov 22 21:42:50 2025 by rpki-client