This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac5a06c6-e178-437c-bf99-638b8a909fef.roa File: ac5a06c6-e178-437c-bf99-638b8a909fef.roa (raw, json) Hash identifier: uQmSiqKHXv1btsfZYgK2Xm8nwnQCa3njVIa6CXtS4v8= Subject key identifier: 0D:34:8E:31:D6:A9:91:B1:30:3F:16:E8:81:60:A1:58:BD:73:62:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A2037030EF46EC86DF4C670F38D521153285F93 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac5a06c6-e178-437c-bf99-638b8a909fef.roa Signing time: Tue 11 Nov 2025 02:20:51 +0000 ROA not before: Tue 11 Nov 2025 02:20:51 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.160.0/19 maxlen: 19 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 2a:20:37:03:0e:f4:6e:c8:6d:f4:c6:70:f3:8d:52:11:53:28:5f:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 02:20:51 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=65f916adc27976a86e1f3b38bdff62c2909c15bdf8ad49dd7fb62950b3164899, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c9:80:bc:3b:b6:33:28:d3:8c:39:db:f0:51: 22:af:98:a3:ab:bd:56:0f:d7:24:b4:fd:3b:f8:6c: ad:8b:7e:58:53:53:ca:c4:a8:2d:d3:b2:06:e2:df: 6d:f2:fd:01:3e:f8:2e:3e:f1:85:2a:6e:84:4c:e1: c1:ec:e2:78:26:3f:7e:03:86:ca:ee:6d:64:50:f0: 69:d1:2b:4d:28:ec:a4:1a:62:8c:13:8c:f3:a0:8d: 55:ac:b6:a0:14:7b:2c:ee:e7:cf:d4:55:fa:65:57: ce:9e:c0:98:ce:f2:b7:b0:ef:fc:09:9e:b0:d1:0b: 4d:91:47:aa:9a:de:13:c4:aa:53:23:e6:7f:75:69: 23:f1:21:08:79:78:86:06:c6:12:d6:dc:f5:05:5d: 7e:c3:ef:3f:35:4c:49:ed:af:59:43:97:47:9c:83: 80:91:69:d9:71:b3:e9:3b:a4:72:3f:ae:8c:8f:c7: c6:5b:41:9c:45:42:8d:0d:b5:4b:e8:b1:49:f2:30: f1:5b:25:8c:c0:42:6a:ba:5e:d9:ac:f3:bf:34:72: 0f:c6:c3:e6:0e:14:fe:b0:78:70:47:b1:a0:30:b9: b0:13:a6:22:a7:fa:c8:21:0f:4e:60:97:93:8b:ff: d7:38:43:77:41:b4:6b:97:13:96:e0:86:19:7c:e5: a2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:34:8E:31:D6:A9:91:B1:30:3F:16:E8:81:60:A1:58:BD:73:62:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac5a06c6-e178-437c-bf99-638b8a909fef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.160.0/19 Signature Algorithm: sha256WithRSAEncryption 51:a2:62:aa:ed:0b:64:1f:ff:c9:db:f5:23:a6:46:5e:3a:2e: 53:8f:e7:e8:ba:c9:15:cc:db:20:af:40:75:61:ff:0c:27:04: d1:98:63:94:5b:d6:bc:3b:e6:18:01:df:3e:aa:c9:67:db:d6: 78:d2:76:49:ff:20:2f:c0:6e:8e:dc:66:37:47:af:e8:e7:d8: 7e:e1:9d:d0:4f:e4:46:66:3a:10:c4:50:53:74:df:4a:ca:32: 6e:e0:fe:1b:59:00:03:06:1e:30:9e:0a:80:d0:53:8b:fd:b8: 56:70:9b:48:c5:79:0c:37:be:46:95:1c:b4:9d:11:45:e5:68: 69:8c:76:74:f1:1a:87:e9:c6:fc:30:22:4e:f5:b9:2a:19:1c: f0:6a:f6:b1:b9:fc:49:6f:cf:21:39:6a:eb:d0:24:e3:01:2a: 16:aa:89:8e:5e:3b:27:ec:db:3e:af:ee:18:5f:27:86:a2:d6: f7:1b:70:b7:54:bb:bc:fb:79:7f:9e:9f:bf:ad:5c:c0:3a:ee: 66:c6:af:bf:f9:15:c7:09:39:af:fe:3c:2d:f0:7f:e7:8f:44: 94:1d:bf:57:93:ce:78:9a:d6:05:14:6a:0b:d8:64:14:da:03: df:ae:bb:77:63:ad:dd:65:94:8a:b3:89:e2:43:d8:74:f7:05: 35:71:21:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKiA3Aw70bsht9MZw841SEVMoX5MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTExMDIyMDUxWhcNMjUxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWY5MTZhZGMyNzk3NmE4NmUxZjNiMzhiZGZmNjJjMjkw OWMxNWJkZjhhZDQ5ZGQ3ZmI2Mjk1MGIzMTY0ODk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8yYC8O7YzKNOMOdvwUSKvmKOrvVYP1yS0/Tv4bK2LflhT U8rEqC3Tsgbi323y/QE++C4+8YUqboRM4cHs4ngmP34DhsrubWRQ8GnRK00o7KQa YowTjPOgjVWstqAUeyzu58/UVfplV86ewJjO8rew7/wJnrDRC02RR6qa3hPEqlMj 5n91aSPxIQh5eIYGxhLW3PUFXX7D7z81TEntr1lDl0ecg4CRadlxs+k7pHI/royP x8ZbQZxFQo0NtUvosUnyMPFbJYzAQmq6Xtms8780cg/Gw+YOFP6weHBHsaAwubAT piKn+sghD05gl5OL/9c4Q3dBtGuXE5bghhl85aJ5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDTSOMdapkbEwPxbogWChWL1zYpYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjNWEwNmM2LWUxNzgtNDM3Yy1iZjk5LTYzOGI4YTkwOWZlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrFKAwDQYJKoZIhvcNAQELBQADggEBAFGiYqrtC2Qf/8nb9SOmRl46LlOP 5+i6yRXM2yCvQHVh/wwnBNGYY5Rb1rw75hgB3z6qyWfb1njSdkn/IC/Abo7cZjdH r+jn2H7hndBP5EZmOhDEUFN030rKMm7g/htZAAMGHjCeCoDQU4v9uFZwm0jFeQw3 vkaVHLSdEUXlaGmMdnTxGofpxvwwIk71uSoZHPBq9rG5/ElvzyE5auvQJOMBKhaq iY5eOyfs2z6v7hhfJ4ai1vcbcLdUu7z7eX+en7+tXMA67mbGr7/5FccJOa/+PC3w f+ePRJQdv1eTznia1gUUagvYZBTaA9+uu3djrd1llIqzieJD2HT3BTVxIbU= -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:19 2025 by rpki-client