This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa File: d3454ba8-e03c-463a-be52-e46f944b7fa6.roa (raw, json) Hash identifier: B0/HKuL3G7sckpSZLWtpSuEdwYDfGtlyZiH+uQPhU+A= Subject key identifier: 2F:FA:11:48:A7:73:E3:2B:20:3A:9F:74:D7:7B:CB:B2:0E:8B:23:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67D446272DFCF7EFD0516DA85D7A0673584470B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa Signing time: Wed 19 Nov 2025 00:30:56 +0000 ROA not before: Wed 19 Nov 2025 00:30:56 +0000 ROA not after: Tue 17 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.104.0.0/16 maxlen: 24 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 67:d4:46:27:2d:fc:f7:ef:d0:51:6d:a8:5d:7a:06:73:58:44:70:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:30:56 2025 GMT Not After : Feb 17 23:59:59 2026 GMT Subject: serialNumber=47ea37ac3eb8ea25a7d8fa60b3fa50896cdd72e6213b685ba6414c6309db9a66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b7:f8:4d:df:49:b9:ff:05:c5:ff:1e:2b:b6: 12:1a:bb:02:dd:c0:bf:80:11:92:a4:48:55:73:cc: 8f:9c:54:fc:3c:a0:6c:6f:dc:0f:da:1f:7d:56:1f: 3b:b8:83:7a:e0:ad:39:8a:25:a6:e6:c7:6f:fa:97: 22:ee:c4:3d:16:c8:ba:71:e5:85:77:12:4a:ad:ed: 8b:25:ab:f1:8f:65:c2:ee:37:21:3b:13:fa:4d:d1: 75:d8:fb:da:5f:59:72:e5:ed:3a:5a:4d:9e:17:b4: 82:e3:7e:76:65:97:65:9e:08:4f:54:3b:ca:b7:ac: 00:d8:88:01:bf:cc:f0:2a:eb:33:82:49:52:c4:74: 16:60:9b:41:d5:f9:b3:e5:b8:95:4c:78:14:c0:4d: a1:a0:eb:73:83:e1:b5:05:cb:dd:ec:7e:f1:9f:57: be:d5:b0:c2:11:f0:30:5c:d5:f5:18:2c:87:49:8f: b5:93:7a:9a:69:d0:bd:53:61:b3:11:05:f7:c4:95: ff:fc:61:52:7b:38:cc:f5:c9:1b:5d:0d:bb:01:94: 47:2f:34:ff:6f:c3:f1:a9:92:8e:68:ad:f4:e8:82: 06:9f:74:ae:14:f7:e3:e9:d6:f2:3e:6b:9d:a7:11: 6c:b1:86:56:30:b7:2e:65:86:eb:1e:84:ac:51:8c: 75:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:FA:11:48:A7:73:E3:2B:20:3A:9F:74:D7:7B:CB:B2:0E:8B:23:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:08:4b:29:24:c0:da:d3:48:79:49:2d:1e:fb:56:4a:74:aa: c7:7e:76:2e:6f:dc:6c:c6:72:cb:63:54:db:37:93:fc:dc:28: dd:84:42:60:19:af:95:63:65:0a:dd:d4:8c:cc:8b:c5:47:6e: 7e:bb:3c:79:23:e1:91:59:12:f4:c8:a3:8f:1e:f2:b4:70:a0: 17:7b:f3:4f:26:36:31:5e:4d:10:37:61:8e:2f:c4:cc:d2:b6: 79:bc:85:01:05:92:dc:67:2d:f4:d9:fe:50:18:99:f2:4d:50: 8c:a0:44:46:fa:5f:45:6d:6b:a9:72:02:57:45:48:ec:ab:43: cd:7d:62:78:59:98:1d:71:89:3d:5e:3f:fa:0e:20:e3:ad:d8: 98:de:1e:a5:0d:4a:07:8b:50:09:1b:f6:6d:1c:27:24:a3:e2: 16:84:aa:9e:30:ab:34:f0:b6:fa:92:bd:cb:a8:04:f0:e5:56: ae:67:e6:63:44:02:8a:a5:32:eb:78:bf:d0:c2:f3:9e:69:4e: 78:06:bf:b2:31:2d:d7:14:d0:cd:dd:c8:02:90:02:95:fb:c9: ed:1e:d0:a8:66:98:0d:df:07:65:c9:f7:ad:4f:bc:ec:ea:10: 2c:c1:6b:04:c0:47:57:4f:d7:b4:e8:69:e3:03:4b:16:37:ae: 63:68:b4:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ9RGJy389+/QUW2oXXoGc1hEcLAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE5MDAzMDU2WhcNMjYwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2VhMzdhYzNlYjhlYTI1YTdkOGZhNjBiM2ZhNTA4OTZj ZGQ3MmU2MjEzYjY4NWJhNjQxNGM2MzA5ZGI5YTY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCst/hN30m5/wXF/x4rthIauwLdwL+AEZKkSFVzzI+cVPw8 oGxv3A/aH31WHzu4g3rgrTmKJabmx2/6lyLuxD0WyLpx5YV3Ekqt7Yslq/GPZcLu NyE7E/pN0XXY+9pfWXLl7TpaTZ4XtILjfnZll2WeCE9UO8q3rADYiAG/zPAq6zOC SVLEdBZgm0HV+bPluJVMeBTATaGg63OD4bUFy93sfvGfV77VsMIR8DBc1fUYLIdJ j7WTeppp0L1TYbMRBffElf/8YVJ7OMz1yRtdDbsBlEcvNP9vw/Gpko5orfToggaf dK4U9+Pp1vI+a52nEWyxhlYwty5lhusehKxRjHWLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUL/oRSKdz4ysgOp9013vLsg6LI60wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzNDU0YmE4LWUwM2MtNDYzYS1iZTUyLWU0NmY5NDRiN2ZhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQaDANBgkqhkiG9w0BAQsFAAOCAQEA1ghLKSTA2tNIeUktHvtWSnSqx352 Lm/cbMZyy2NU2zeT/Nwo3YRCYBmvlWNlCt3UjMyLxUdufrs8eSPhkVkS9Mijjx7y tHCgF3vzTyY2MV5NEDdhji/EzNK2ebyFAQWS3Gct9Nn+UBiZ8k1QjKBERvpfRW1r qXICV0VI7KtDzX1ieFmYHXGJPV4/+g4g463YmN4epQ1KB4tQCRv2bRwnJKPiFoSq njCrNPC2+pK9y6gE8OVWrmfmY0QCiqUy63i/0MLznmlOeAa/sjEt1xTQzd3IApAC lfvJ7R7QqGaYDd8HZcn3rU+87OoQLMFrBMBHV0/XtOhp4wNLFjeuY2i0aQ== -----END CERTIFICATE-----Generated at Thu Nov 20 02:03:39 2025 by rpki-client