This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa File: 06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa (raw, json) Hash identifier: FDukgthYW89sz3Sqfw7sBj4Kd3r6DXE1oEz+/ggQtAE= Subject key identifier: 05:6A:F8:55:34:1A:EB:E1:23:5C:A0:16:A1:20:9C:41:D5:30:B9:DC Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 63A87DF650F1ED12A42C4C7C4D6BE888FD43BDFA Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa Signing time: Fri 24 Oct 2025 00:30:11 +0000 ROA not before: Fri 24 Oct 2025 00:30:11 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc3:8000::/36 maxlen: 36 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 63:a8:7d:f6:50:f1:ed:12:a4:2c:4c:7c:4d:6b:e8:88:fd:43:bd:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:11 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=39f0f298b94b3e694c3c7191a6ae9b7cf38f073a90f4fe3da797b4ba07cfe539, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:d6:7d:80:21:4d:3c:d7:3b:78:81:5e:47:9e: 09:1d:18:c2:81:5e:d7:72:da:97:e7:94:a6:9a:0e: 9e:61:2d:cb:e7:9a:c3:0b:98:c7:90:c1:ee:59:c1: 58:98:3c:e6:7c:86:d1:22:51:d1:14:19:05:f9:eb: 1d:91:4b:ea:77:88:b8:87:0e:8d:ec:9c:0a:98:4d: ba:c6:f0:b5:7b:fc:8b:d3:3a:13:eb:4c:9d:d0:c1: 2a:29:01:07:c7:83:13:b8:be:3e:3c:e4:cc:a3:58: b5:91:3f:e7:83:9c:e9:55:f0:c8:4f:04:e2:00:88: d4:83:6d:51:03:c1:8c:c2:5f:cd:0d:89:06:3d:3c: a8:87:2d:1d:59:fc:b0:cf:1d:f6:41:a0:83:5e:06: e6:55:c3:8e:b3:e5:16:fc:f4:20:2e:11:b1:51:a9: ed:4f:95:31:81:65:7b:ae:1c:15:ed:16:91:91:1d: 40:a3:7c:c4:49:cf:60:7f:bb:fb:f3:43:4d:97:91: 8d:54:94:cb:87:ab:ce:8d:70:76:0e:c5:08:30:f4: 8c:7f:6f:8a:4e:81:80:13:55:d0:45:71:08:63:c0: 46:6d:60:e9:da:bc:e2:9c:83:c3:b5:3a:0f:9b:38: 1c:8a:d4:c4:9a:aa:32:e3:a8:61:62:4f:40:c2:0e: 5e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6A:F8:55:34:1A:EB:E1:23:5C:A0:16:A1:20:9C:41:D5:30:B9:DC X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc3:8000::/36 Signature Algorithm: sha256WithRSAEncryption 79:95:a4:e4:7d:cd:3b:11:d4:35:58:e1:79:de:5a:02:54:f4: 6a:2f:a2:37:98:91:40:a2:54:0b:fd:25:50:bd:29:dc:de:88: c7:1b:27:8a:d8:12:c0:24:b0:84:24:5c:73:58:a1:50:69:79: 21:83:4a:c8:1f:09:a3:55:80:02:ad:22:28:f7:90:90:3e:57: 56:41:cc:08:6a:31:93:a2:8c:fb:b1:c5:1d:e7:50:a6:5d:cf: bb:66:56:33:43:81:09:3a:e6:21:b4:78:44:9c:e0:f0:ca:89: 11:cf:47:44:a3:e3:08:71:07:60:f9:df:66:aa:8e:c5:00:6b: 19:03:95:e8:e9:43:51:16:79:81:d3:16:9f:20:78:41:0a:c2: 12:c6:a8:55:16:7b:0f:43:0d:d4:a6:96:87:52:09:d2:9c:b1: c7:63:57:e0:88:2c:b3:c8:61:e3:d3:9e:d4:d5:e2:8e:94:13: bc:a4:20:b9:d7:9b:1a:8f:4f:ab:52:9d:7f:b4:9d:72:f2:68: ad:f2:30:62:c8:58:75:45:b3:f4:af:c8:db:b3:6b:89:98:cc: 6b:77:a7:74:46:08:50:79:b2:59:3f:72:2b:b5:fc:4d:02:dd: cd:d2:63:df:15:c4:f1:44:ab:53:7d:65:d6:f8:db:cc:6e:95: e4:13:3b:41 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUY6h99lDx7RKkLEx8TWvoiP1DvfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwMTFaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDM5ZjBmMjk4Yjk0YjNlNjk0YzNjNzE5MWE2YWU5YjdjZjM4ZjA3M2E5MGY0 ZmUzZGE3OTdiNGJhMDdjZmU1MzkxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI3WfYAhTTzXO3iBXkeeCR0YwoFe13Lal+eUppoOnmEty+eawwuYx5DB7lnB WJg85nyG0SJR0RQZBfnrHZFL6neIuIcOjeycCphNusbwtXv8i9M6E+tMndDBKikB B8eDE7i+PjzkzKNYtZE/54Oc6VXwyE8E4gCI1INtUQPBjMJfzQ2JBj08qIctHVn8 sM8d9kGgg14G5lXDjrPlFvz0IC4RsVGp7U+VMYFle64cFe0WkZEdQKN8xEnPYH+7 +/NDTZeRjVSUy4erzo1wdg7FCDD0jH9vik6BgBNV0EVxCGPARm1g6dq84pyDw7U6 D5s4HIrUxJqqMuOoYWJPQMIOXo8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQFavhV NBrr4SNcoBahIJxB1TC53DAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv MDZmNTMyNGYtZmIyZC00MjEyLWIxZjctNmNhMGIxNzJiZjIyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABP8OA MA0GCSqGSIb3DQEBCwUAA4IBAQB5laTkfc07EdQ1WOF53loCVPRqL6I3mJFAolQL /SVQvSnc3ojHGyeK2BLAJLCEJFxzWKFQaXkhg0rIHwmjVYACrSIo95CQPldWQcwI ajGTooz7scUd51CmXc+7ZlYzQ4EJOuYhtHhEnODwyokRz0dEo+MIcQdg+d9mqo7F AGsZA5Xo6UNRFnmB0xafIHhBCsISxqhVFnsPQw3UppaHUgnSnLHHY1fgiCyzyGHj 057U1eKOlBO8pCC515saj0+rUp1/tJ1y8mit8jBiyFh1RbP0r8jbs2uJmMxrd6d0 RghQebJZP3IrtfxNAt3N0mPfFcTxRKtTfWXW+NvMbpXkEztB -----END CERTIFICATE-----Generated at Sun Dec 14 00:06:04 2025 by rpki-client