This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef1681d2-ccb0-459c-89f1-3dea31b1515a.roa File: ef1681d2-ccb0-459c-89f1-3dea31b1515a.roa (raw, json) Hash identifier: Yd/vePEhMpbiLS5Xdyelhen3ovvUCBB99AXSuDtwsl8= Subject key identifier: E5:26:65:97:FA:1F:24:A7:FB:4C:6A:EE:CD:29:8C:4F:CC:CC:41:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6AFA2488DBDAF3F9F492985A3FC92E1629402211 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef1681d2-ccb0-459c-89f1-3dea31b1515a.roa Signing time: Wed 12 Nov 2025 01:00:50 +0000 ROA not before: Wed 12 Nov 2025 01:00:50 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1d:4000::/37 maxlen: 37 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 6a:fa:24:88:db:da:f3:f9:f4:92:98:5a:3f:c9:2e:16:29:40:22:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 01:00:50 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=d8502e322bf9b9d861297a6db9817749a3d5cad44b9a6b826de299158e218fea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a6:1a:e1:7d:26:1f:c7:9f:28:e0:77:c1:5c: a4:41:b7:e8:69:01:49:9b:1a:32:1b:73:a5:b7:e3: 94:9b:dc:85:37:06:66:d1:59:5c:2f:75:59:a7:6b: 17:87:22:15:90:c4:de:90:b9:60:f5:1a:47:9a:81: 97:75:71:ad:5c:99:01:61:ff:10:a0:d9:67:af:3a: 5f:32:cc:ca:34:bd:cb:33:39:99:a7:0e:a7:41:81: 95:ba:f6:bc:ce:0e:99:fc:54:15:f5:45:c6:7e:97: 05:a5:68:7f:75:fc:a9:ec:c4:55:94:f2:2d:7b:ba: 1b:6e:37:8a:66:7f:8d:65:da:74:9c:ad:d7:bc:27: 4b:8f:8f:ae:af:8d:d9:e4:2d:94:b6:af:d1:42:55: 1c:72:89:62:e2:f7:0d:98:5e:1e:6e:49:a9:75:73: 8a:4e:4d:63:14:01:eb:e6:c2:a2:39:e7:b4:c1:d3: b6:64:f3:4d:22:9a:46:c0:b4:7d:db:28:64:ee:9e: 77:e9:83:06:be:cc:c1:72:65:79:c5:3c:6b:42:1c: 7e:1e:9a:4e:94:9f:bd:8d:e8:5d:df:47:67:e4:ae: d4:68:71:5f:1b:bf:6a:82:55:c0:b9:68:a3:ef:44: ba:ee:a3:31:02:5e:8d:e3:0d:ab:83:a6:dd:00:dc: 0d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:26:65:97:FA:1F:24:A7:FB:4C:6A:EE:CD:29:8C:4F:CC:CC:41:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef1681d2-ccb0-459c-89f1-3dea31b1515a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1d:4000::/37 Signature Algorithm: sha256WithRSAEncryption 09:9b:d2:2e:cc:b6:95:83:ba:a3:f6:c9:99:10:8f:e2:f2:2b: 91:12:7b:67:f9:f8:1a:d8:0f:91:5c:d7:58:01:79:f1:6a:94: aa:cd:64:a4:56:8b:f4:9d:e1:0a:46:b0:ce:40:96:ab:95:2f: 30:25:7b:24:43:64:46:ac:6e:e2:4c:dc:6f:0b:8e:0b:6e:ad: 85:50:b1:b8:eb:36:ea:7f:07:6c:7c:e5:d7:e7:d8:49:36:39: ef:a4:51:1d:07:47:95:2d:56:93:7f:ea:3a:52:9b:74:c7:97: 9c:cb:6a:55:db:42:99:3a:dc:03:14:af:a2:03:4a:9e:a1:b1: e0:a0:98:35:e1:56:d7:ee:c3:b6:f3:34:64:db:a6:2f:a8:d1: 28:07:19:6c:d6:f8:02:cc:f2:a7:ba:76:ed:14:d8:35:f6:8f: 64:f6:76:ef:5a:31:1a:5d:cb:a3:61:e9:5b:18:81:97:3a:c4: 2c:ab:ab:3c:b5:b2:d4:20:83:81:3e:65:79:ac:1c:0a:de:50: 41:65:59:c8:d6:0f:63:c8:63:83:c7:cf:9c:ca:73:9d:72:42: 2d:44:fc:7f:31:ff:cf:a5:17:42:b9:cf:34:c4:0b:da:b1:56: e6:a9:79:9a:59:8f:fd:f9:75:0f:4f:3e:8d:fb:f4:c6:02:a2: 1f:64:4d:50 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUavokiNva8/n0kphaP8kuFilAIhEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEyMDEwMDUwWhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODUwMmUzMjJiZjliOWQ4NjEyOTdhNmRiOTgxNzc0OWEz ZDVjYWQ0NGI5YTZiODI2ZGUyOTkxNThlMjE4ZmVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWphrhfSYfx58o4HfBXKRBt+hpAUmbGjIbc6W345Sb3IU3 BmbRWVwvdVmnaxeHIhWQxN6QuWD1GkeagZd1ca1cmQFh/xCg2WevOl8yzMo0vcsz OZmnDqdBgZW69rzODpn8VBX1RcZ+lwWlaH91/KnsxFWU8i17uhtuN4pmf41l2nSc rde8J0uPj66vjdnkLZS2r9FCVRxyiWLi9w2YXh5uSal1c4pOTWMUAevmwqI557TB 07Zk800imkbAtH3bKGTunnfpgwa+zMFyZXnFPGtCHH4emk6Un72N6F3fR2fkrtRo cV8bv2qCVcC5aKPvRLruozECXo3jDauDpt0A3A1BAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5SZll/ofJKf7TGruzSmMT8zMQR0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmMTY4MWQyLWNjYjAtNDU5Yy04OWYxLTNkZWEzMWIxNTE1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8dQDANBgkqhkiG9w0BAQsFAAOCAQEACZvSLsy2lYO6o/bJmRCP4vIr kRJ7Z/n4GtgPkVzXWAF58WqUqs1kpFaL9J3hCkawzkCWq5UvMCV7JENkRqxu4kzc bwuOC26thVCxuOs26n8HbHzl1+fYSTY576RRHQdHlS1Wk3/qOlKbdMeXnMtqVdtC mTrcAxSvogNKnqGx4KCYNeFW1+7DtvM0ZNumL6jRKAcZbNb4Aszyp7p27RTYNfaP ZPZ271oxGl3Lo2HpWxiBlzrELKurPLWy1CCDgT5leawcCt5QQWVZyNYPY8hjg8fP nMpznXJCLUT8fzH/z6UXQrnPNMQL2rFW5ql5mlmP/fl1D08+jfv0xgKiH2RNUA== -----END CERTIFICATE-----Generated at Sat Nov 22 21:29:57 2025 by rpki-client