This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa File: 9d94a7aa-9505-4db3-925e-cf3f285b296b.roa (raw, json) Hash identifier: nMYRDMd1CJNvpSTqele6j3CZgByd43nNvkkWXavDpR0= Subject key identifier: 04:32:57:3E:42:33:E0:F4:37:EA:BA:9B:AF:C4:55:54:DE:8E:16:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 401447F0B716586F7995EC26D9B0ACD9DF29D135 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa Signing time: Wed 12 Nov 2025 01:40:09 +0000 ROA not before: Wed 12 Nov 2025 01:40:09 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f10:8000::/36 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 40:14:47:f0:b7:16:58:6f:79:95:ec:26:d9:b0:ac:d9:df:29:d1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 01:40:09 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=249d5cbd348b6f66e9fb3d0e56ecd5bec462f394f3086a6c608ff99eeedb8177, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fd:ad:95:19:73:a4:31:ee:c1:fe:13:4a:f5: 38:35:74:f9:e1:95:47:63:f8:00:db:2e:b1:37:ee: cd:40:ab:22:f6:75:31:8e:59:37:ed:8d:57:0c:c2: 31:83:6b:e4:e8:be:89:4d:ce:9c:d3:64:d0:51:5d: c1:1d:8b:5f:72:a0:b8:28:14:bc:37:50:8b:34:7e: a8:c7:9d:41:7f:b3:3c:1c:62:bf:a4:02:0e:ed:36: 63:2c:e2:0c:aa:8e:df:c9:10:b3:f6:5d:98:ab:b1: db:b3:39:21:b3:ee:b5:a6:39:3b:81:d7:ad:00:41: c6:b3:bc:c1:63:e6:67:96:5b:e1:e3:93:77:70:c1: 25:60:b1:61:8a:a6:7a:ec:e2:2f:3f:a6:1a:fa:a8: bb:ba:5a:02:ff:8a:96:39:75:15:55:57:a9:a5:83: 11:49:db:0b:da:9a:09:d7:4f:21:30:93:fd:fb:a6: 03:e9:3d:ce:d5:0a:fe:3a:40:f6:88:87:d9:b5:30: 3e:60:e2:11:2e:28:d3:f1:1e:48:c8:02:4e:9d:76: 3a:a2:e1:8d:6d:3b:82:bd:87:e5:65:c0:d0:94:7d: 63:12:9a:ea:53:a6:39:fd:01:54:99:45:62:ad:7a: 84:9d:ac:27:a3:44:86:e4:1e:b0:91:8e:52:28:2d: bc:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:32:57:3E:42:33:E0:F4:37:EA:BA:9B:AF:C4:55:54:DE:8E:16:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:8000::/36 Signature Algorithm: sha256WithRSAEncryption b0:94:e6:83:d7:10:bc:e4:13:f4:a8:e4:9e:d9:6c:a4:4d:74: b8:d7:74:82:a0:5e:79:58:e7:1f:b5:78:89:d8:79:5e:79:b8: 92:4a:f9:9a:6d:c7:54:00:a4:1c:33:11:88:b6:c4:4f:dc:24: 0a:d9:de:fa:2d:a1:7d:42:c9:d6:20:2d:10:5f:4e:2e:6c:bd: 0e:7e:6d:21:f9:77:fe:ea:13:5f:29:85:e3:32:bc:58:d5:b0: da:90:a3:72:d1:56:89:a7:fc:80:3f:12:78:6e:66:d2:9d:f4: eb:c6:33:fa:4b:50:45:22:7c:70:a5:03:85:33:e2:7d:e8:1e: 75:94:da:50:85:fc:40:cd:b0:dc:55:36:39:c6:85:9d:b6:1f: c0:53:61:10:ed:98:b7:72:b2:f7:3e:76:73:98:ea:90:96:7f: e8:80:88:ac:b2:00:8d:48:11:f3:c3:c9:ad:cc:45:41:06:a0: c9:03:bf:ff:47:00:e9:56:93:58:3a:64:5a:f5:7c:40:5d:2f: f4:92:d6:8a:b4:9b:bd:bb:31:f6:c8:88:8a:db:ff:9d:60:af: 26:73:b5:8a:87:6d:51:ff:81:e7:ba:eb:2d:f1:dc:e0:bf:14: 69:5b:eb:85:e6:75:ff:a7:06:c8:7e:78:d9:34:87:ae:27:ed: 8e:a3:3f:26 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQBRH8LcWWG95lewm2bCs2d8p0TUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDE0MDA5WhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDlkNWNiZDM0OGI2ZjY2ZTlmYjNkMGU1NmVjZDViZWM0 NjJmMzk0ZjMwODZhNmM2MDhmZjk5ZWVlZGI4MTc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb/a2VGXOkMe7B/hNK9Tg1dPnhlUdj+ADbLrE37s1AqyL2 dTGOWTftjVcMwjGDa+TovolNzpzTZNBRXcEdi19yoLgoFLw3UIs0fqjHnUF/szwc Yr+kAg7tNmMs4gyqjt/JELP2XZirsduzOSGz7rWmOTuB160AQcazvMFj5meWW+Hj k3dwwSVgsWGKpnrs4i8/phr6qLu6WgL/ipY5dRVVV6mlgxFJ2wvamgnXTyEwk/37 pgPpPc7VCv46QPaIh9m1MD5g4hEuKNPxHkjIAk6ddjqi4Y1tO4K9h+VlwNCUfWMS mupTpjn9AVSZRWKteoSdrCejRIbkHrCRjlIoLbyhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBDJXPkIz4PQ36rqbr8RVVN6OFmUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkOTRhN2FhLTk1MDUtNGRiMy05MjVlLWNmM2YyODViMjk2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8QgDANBgkqhkiG9w0BAQsFAAOCAQEAsJTmg9cQvOQT9KjkntlspE10 uNd0gqBeeVjnH7V4idh5Xnm4kkr5mm3HVACkHDMRiLbET9wkCtne+i2hfULJ1iAt EF9OLmy9Dn5tIfl3/uoTXymF4zK8WNWw2pCjctFWiaf8gD8SeG5m0p3068Yz+ktQ RSJ8cKUDhTPifegedZTaUIX8QM2w3FU2OcaFnbYfwFNhEO2Yt3Ky9z52c5jqkJZ/ 6ICIrLIAjUgR88PJrcxFQQagyQO//0cA6VaTWDpkWvV8QF0v9JLWirSbvbsx9siI itv/nWCvJnO1iodtUf+B57rrLfHc4L8UaVvrheZ1/6cGyH542TSHriftjqM/Jg== -----END CERTIFICATE-----Generated at Sat Nov 22 21:41:39 2025 by rpki-client