This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa File: a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa (raw, json) Hash identifier: oDQqeHsgZsZIyFApccovGxJiRFOtmG9Q8iyvDh9T4lk= Subject key identifier: 45:01:D4:90:4D:60:69:3B:0A:81:87:24:60:33:F2:AF:B5:36:92:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A2BD38EC220C0D2C4C8E2A80611D67C1013E41C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa Signing time: Wed 12 Nov 2025 00:10:44 +0000 ROA not before: Wed 12 Nov 2025 00:10:44 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8000::/40 maxlen: 40 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 0a:2b:d3:8e:c2:20:c0:d2:c4:c8:e2:a8:06:11:d6:7c:10:13:e4:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 00:10:44 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=eef54f994d263f3caa9f5a17b4590abcf2298f65888d0f04bcde8143106781d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:88:15:ec:4a:b5:5a:74:5f:6c:3b:05:63:63: 97:cb:c3:ed:5c:87:7b:32:66:01:7a:fb:b3:44:d5: d8:e2:aa:8b:49:0d:d1:62:35:95:0d:15:4a:51:24: e4:8e:21:b5:1f:83:7d:1d:4e:b9:36:45:07:0c:aa: 61:fa:1d:a2:8f:9b:09:34:ed:34:30:47:6c:54:ab: e7:c2:15:7b:f9:ac:a6:81:cc:5f:e2:db:f5:19:f5: 1a:4f:1b:9e:52:35:33:6d:ed:53:c0:91:66:55:7a: 93:9d:44:64:5b:a6:3c:eb:cc:a5:71:62:8b:03:16: e4:e9:0d:b1:39:72:42:8c:93:12:62:94:48:d2:21: b9:2b:65:e7:e5:bb:d7:8f:0c:8f:84:72:58:f6:59: 48:b8:27:b2:e5:fe:5b:aa:3b:a4:8a:38:d6:71:6b: 45:6c:45:19:31:88:63:7a:c2:3d:a4:db:33:cb:e1: 51:d8:20:fe:71:f5:50:a9:aa:83:22:70:77:28:ec: ee:e5:ce:34:e4:33:8d:ac:5e:d0:be:8e:fa:04:26: b4:db:15:a1:78:5c:76:48:18:db:15:fd:96:0f:7c: 9b:cf:85:86:aa:c3:7d:39:00:a4:fa:a2:63:55:49: f9:58:d4:3a:37:27:e8:a7:58:c8:80:4d:6a:c7:f7: fa:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:01:D4:90:4D:60:69:3B:0A:81:87:24:60:33:F2:AF:B5:36:92:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 1e:87:4e:b7:cd:cb:91:ce:db:b5:1b:97:9c:72:1b:98:dc:5a: 05:4f:e5:c6:63:d6:42:8e:63:da:87:8f:a9:ca:9b:2f:4f:75: 5e:c9:dd:81:3f:32:9b:1f:98:c9:91:0f:db:0b:13:de:75:de: ac:e8:79:1a:cb:af:c3:5c:54:17:7d:64:45:30:ed:e6:7b:39: 93:f9:26:9e:9d:75:45:56:3e:64:40:f7:20:0d:75:55:4f:84: e7:de:1b:3f:b3:95:ad:21:0d:8d:b6:9a:00:06:bf:04:a4:13: 88:d2:71:f2:dd:fe:ea:bf:cb:c0:cb:98:4f:e7:9f:47:09:88: dc:9a:a7:7a:ba:87:6e:11:e8:e2:d9:53:02:21:eb:17:db:79: 06:2c:4c:38:4e:11:c7:66:37:68:6d:ec:48:41:1b:45:06:76: dd:8d:82:1c:66:0c:5e:6e:4f:66:75:82:1d:36:16:87:50:05: e2:c0:c4:61:1c:9e:51:e4:5f:a4:d1:52:2c:e9:c9:07:9e:15: 17:1f:82:1e:33:79:c6:fd:73:f6:4d:af:1d:73:2c:91:a8:57: 52:eb:fb:cd:88:e3:be:02:56:ab:d3:10:a4:95:f8:2f:6f:3b: 48:4a:6e:b6:e8:26:86:29:4c:38:f7:2e:ba:5e:5e:91:ea:25: 42:5e:55:0c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCivTjsIgwNLEyOKoBhHWfBAT5BwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDAxMDQ0WhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWY1NGY5OTRkMjYzZjNjYWE5ZjVhMTdiNDU5MGFiY2Yy Mjk4ZjY1ODg4ZDBmMDRiY2RlODE0MzEwNjc4MWQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCViBXsSrVadF9sOwVjY5fLw+1ch3syZgF6+7NE1djiqotJ DdFiNZUNFUpRJOSOIbUfg30dTrk2RQcMqmH6HaKPmwk07TQwR2xUq+fCFXv5rKaB zF/i2/UZ9RpPG55SNTNt7VPAkWZVepOdRGRbpjzrzKVxYosDFuTpDbE5ckKMkxJi lEjSIbkrZeflu9ePDI+Eclj2WUi4J7Ll/luqO6SKONZxa0VsRRkxiGN6wj2k2zPL 4VHYIP5x9VCpqoMicHco7O7lzjTkM42sXtC+jvoEJrTbFaF4XHZIGNsV/ZYPfJvP hYaqw305AKT6omNVSflY1Do3J+inWMiATWrH9/qVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURQHUkE1gaTsKgYckYDPyr7U2kvkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4ODdlZGRmLTIzYjYtNGE5NS1iYWNkLWNiN2Y4ZTA5NmZmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//gDANBgkqhkiG9w0BAQsFAAOCAQEAHodOt83Lkc7btRuXnHIbmNxa BU/lxmPWQo5j2oePqcqbL091XsndgT8ymx+YyZEP2wsT3nXerOh5Gsuvw1xUF31k RTDt5ns5k/kmnp11RVY+ZED3IA11VU+E594bP7OVrSENjbaaAAa/BKQTiNJx8t3+ 6r/LwMuYT+efRwmI3JqnerqHbhHo4tlTAiHrF9t5BixMOE4Rx2Y3aG3sSEEbRQZ2 3Y2CHGYMXm5PZnWCHTYWh1AF4sDEYRyeUeRfpNFSLOnJB54VFx+CHjN5xv1z9k2v HXMskahXUuv7zYjjvgJWq9MQpJX4L287SEputugmhilMOPcuul5ekeolQl5VDA== -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:24 2025 by rpki-client