This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa File: 974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa (raw, json) Hash identifier: UZDAD8ysZ64ZrZA/Q+gb/pWXJIeL9NBaFjX442MVjw8= Subject key identifier: 9A:45:2B:C3:57:6D:4A:04:00:A6:F4:74:12:03:D0:47:D9:E6:AF:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CEEE276862AEF134E41EDA3FEBDD60C34C137 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa Signing time: Thu 20 Nov 2025 00:40:06 +0000 ROA not before: Thu 20 Nov 2025 00:40:06 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f21::/36 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ee:e2:76:86:2a:ef:13:4e:41:ed:a3:fe:bd:d6:0c:34:c1:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:40:06 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=795475cc696aae9bfbb1be5da55436c45a797798cb4630ffe331677cfbef15ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:0e:65:fb:50:5b:56:90:a5:c8:19:dd:de:64: ef:f1:55:41:c7:e3:d6:87:1e:4a:15:df:73:30:36: e6:fc:cc:cc:aa:ea:71:ee:2d:51:24:77:8c:df:ca: 48:d1:c8:36:a6:47:74:32:3f:fb:29:4f:69:1f:7b: 4d:c0:a1:2d:6e:06:cc:7b:12:38:4d:68:55:3d:7d: 97:33:d8:a6:a2:54:b7:22:8c:79:02:e0:24:a5:01: 8e:80:4d:2d:f8:fc:04:d1:a2:6a:e4:79:f1:32:89: 3f:f2:02:01:35:4c:b6:16:a6:04:48:c2:59:b1:0e: 35:f6:2e:be:30:51:1f:ff:4e:ad:61:a1:ce:c8:64: 81:6e:5a:b1:1b:64:4e:23:00:ac:08:af:ae:77:a5: e2:8c:b6:0d:6c:7d:b0:62:6b:c1:97:61:63:80:cf: 3d:29:9c:72:35:c1:90:1c:7e:11:aa:7c:c9:b6:4e: ad:78:ff:be:78:01:e1:44:fd:7c:e2:af:27:9a:bd: 4f:e3:24:b8:c6:42:0a:a7:b3:d6:53:a8:c6:f8:77: 1b:91:32:e1:02:c5:fb:25:25:ad:61:21:3f:37:d4: 8c:83:70:75:6c:ac:14:ff:b9:e4:22:0b:68:c6:14: f0:2a:85:76:d8:41:90:10:0f:23:1e:11:9f:cc:16: 91:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:45:2B:C3:57:6D:4A:04:00:A6:F4:74:12:03:D0:47:D9:E6:AF:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f21::/36 Signature Algorithm: sha256WithRSAEncryption 24:94:a0:06:36:d0:e4:30:37:52:a7:e2:8b:6c:a8:b2:60:d2: 6a:a6:22:eb:cd:76:1f:5b:36:c8:be:f4:2e:04:4a:72:5b:5b: 3b:77:b5:7f:dd:27:2b:b6:b6:c5:c9:c6:13:7a:73:7f:dd:d6: e2:1d:cc:37:aa:58:fd:dc:1c:54:8f:06:1e:1a:14:8b:d9:b4: be:df:07:57:82:8b:0d:b6:7e:45:5c:d0:bf:70:76:a7:81:5f: 5b:97:9b:bb:a7:ba:95:56:f1:87:91:97:79:b3:43:c7:d6:af: 1d:42:e3:02:70:d5:d1:dd:b0:e3:4a:ea:51:25:f9:ca:f6:96: 62:15:b5:88:ad:1a:fa:5e:c7:20:8d:ee:d9:5d:a4:9f:22:75: 13:e2:db:83:30:12:9c:71:9a:43:c5:79:92:bd:52:a6:ae:55: b5:3f:03:41:2d:51:c9:c3:aa:8d:18:06:77:dc:31:f3:2f:50: 35:91:c9:28:83:f3:10:d5:1d:5f:37:d8:b6:c0:7b:69:de:d1: 72:7c:4e:a6:b9:a8:ee:47:14:4c:fa:e1:48:4d:c5:48:e6:b6: bc:78:9e:08:f6:97:c0:f5:be:94:ae:97:0b:42:55:03:01:99: 01:ec:71:96:51:f9:76:99:41:7d:d6:bd:ed:c1:61:6a:6a:76: 4b:f3:9e:d2 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITDO7idoYq7xNOQe2j/r3WDDTBNzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTExMjAwMDQwMDZaFw0yNjAyMTgyMzU5NTla MHoxSTBHBgNVBAUTQDc5NTQ3NWNjNjk2YWFlOWJmYmIxYmU1ZGE1NTQzNmM0NWE3 OTc3OThjYjQ2MzBmZmUzMzE2NzdjZmJlZjE1YmExLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAIkOZftQW1aQpcgZ3d5k7/FVQcfj1oceShXfczA25vzMzKrq ce4tUSR3jN/KSNHINqZHdDI/+ylPaR97TcChLW4GzHsSOE1oVT19lzPYpqJUtyKM eQLgJKUBjoBNLfj8BNGiauR58TKJP/ICATVMthamBEjCWbEONfYuvjBRH/9OrWGh zshkgW5asRtkTiMArAivrnel4oy2DWx9sGJrwZdhY4DPPSmccjXBkBx+Eap8ybZO rXj/vngB4UT9fOKvJ5q9T+MkuMZCCqez1lOoxvh3G5Ey4QLF+yUlrWEhPzfUjINw dWysFP+55CILaMYU8CqFdthBkBAPIx4Rn8wWkW8CAwEAAaOCArMwggKvMB0GA1Ud DgQWBBSaRSvDV21KBACm9HQSA9BH2eavUzAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvOTc0ZTZkZmMtNjFiZi00ZjA1LWIyNmEtYzRlYmNjODc1Y2ZjLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGBCYAHyEAMA0GCSqGSIb3DQEBCwUAA4IBAQAklKAGNtDkMDdSp+KLbKiyYNJq piLrzXYfWzbIvvQuBEpyW1s7d7V/3ScrtrbFycYTenN/3dbiHcw3qlj93BxUjwYe GhSL2bS+3wdXgosNtn5FXNC/cHangV9bl5u7p7qVVvGHkZd5s0PH1q8dQuMCcNXR 3bDjSupRJfnK9pZiFbWIrRr6Xscgje7ZXaSfInUT4tuDMBKccZpDxXmSvVKmrlW1 PwNBLVHJw6qNGAZ33DHzL1A1kckog/MQ1R1fN9i2wHtp3tFyfE6muajuRxRM+uFI TcVI5ra8eJ4I9pfA9b6UrpcLQlUDAZkB7HGWUfl2mUF91r3twWFqanZL857S -----END CERTIFICATE-----Generated at Tue Nov 25 11:34:43 2025 by rpki-client