This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/13e0b0a3-49b4-4990-a108-1beddb3a18bc.roa File: 13e0b0a3-49b4-4990-a108-1beddb3a18bc.roa (raw, json) Hash identifier: 4Qs17T5ZQhmC9ZcDu1Duz/XGqF6zylbqIQ7SLRrVTJY= Subject key identifier: 4B:B5:62:1B:4C:B2:A0:E8:7E:8E:93:EE:BE:47:90:27:9C:27:93:85 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 391206900658F4C69225E0A5562362E9B88E2294 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/13e0b0a3-49b4-4990-a108-1beddb3a18bc.roa Signing time: Fri 24 Oct 2025 00:30:51 +0000 ROA not before: Fri 24 Oct 2025 00:30:51 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc7:28c0::/48 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 39:12:06:90:06:58:f4:c6:92:25:e0:a5:56:23:62:e9:b8:8e:22:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:51 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=3b1964e579f88e7d5ad59c40b7a8d76ea4a99c8f6d079b4e9269949be9c7a2b6, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:52:c4:38:1c:c3:2a:97:85:c0:04:03:ec:3c: 22:e0:30:7c:b5:d5:4e:2a:1c:1b:e9:5b:7b:b6:44: ad:e7:cd:21:d2:db:52:0e:01:0e:f8:1f:ae:f6:52: 0d:d6:0c:5d:57:03:73:e6:27:66:3f:7d:7b:6e:62: f8:bd:75:a4:9c:88:27:11:12:29:47:0c:66:db:20: f9:28:9e:6e:5f:7b:a2:1d:6a:8f:df:32:59:ce:1f: 99:26:3b:b8:cd:b2:ce:a1:75:72:27:ce:75:ff:1d: aa:bb:b0:74:75:ef:f3:cb:01:a9:d7:fa:7f:99:8b: 51:26:2c:7c:a3:bc:12:1d:2e:21:f8:f3:49:4f:57: 21:38:e7:b9:aa:4f:10:97:56:db:b0:c3:ab:97:8c: a7:b6:3d:e3:2a:c0:6d:09:41:42:d1:71:e1:be:5d: 23:8f:90:69:3e:03:ec:d8:57:60:0f:07:db:bf:f9: 78:bb:15:06:65:7f:3c:b9:29:78:4b:e4:64:4a:cd: f3:bc:23:f0:38:7e:8f:17:b1:82:a7:15:8e:46:b3: 60:55:57:fd:69:4b:bc:18:52:92:b6:ba:26:73:94: 6e:32:02:fe:e8:6f:a8:00:ae:9a:b5:0c:a6:9f:45: de:e7:7a:e1:7f:83:f1:b5:de:16:ea:a6:b7:83:d5: 42:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B5:62:1B:4C:B2:A0:E8:7E:8E:93:EE:BE:47:90:27:9C:27:93:85 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/13e0b0a3-49b4-4990-a108-1beddb3a18bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc7:28c0::/48 Signature Algorithm: sha256WithRSAEncryption 9f:f3:84:63:e6:3c:f4:b7:12:d3:bd:74:f1:ff:9a:54:7b:20: be:ba:75:3a:a9:0c:f3:5c:b7:3c:a9:6a:d8:47:08:46:be:ed: 25:64:63:4f:a3:83:7e:98:8e:3e:98:29:eb:14:08:fd:34:a3: ca:5d:cb:e9:cc:ff:0a:3c:5c:cd:69:9a:5b:de:e9:87:2f:f0: 74:35:8e:34:b4:0e:cb:46:e6:1e:cd:0a:14:65:96:11:37:6e: 60:9e:b8:81:50:48:59:e1:62:a1:64:2e:09:57:25:cd:61:8c: 50:13:5d:0c:d3:aa:39:08:c5:00:2c:35:ce:3b:29:b3:da:dd: 6c:6c:eb:e6:bb:cf:5e:7f:6d:be:a0:9e:b4:29:58:d1:65:4d: 0b:05:80:f2:fa:a1:d3:d1:6c:88:76:47:b6:d4:68:ab:60:1d: 6e:61:ec:dc:33:45:b1:6a:ad:15:ff:2d:6f:f5:cf:12:5f:2e: cd:99:84:97:f4:2d:0b:97:dd:5d:13:4e:11:ef:76:69:6e:d3: 85:03:14:a8:c4:44:88:ab:66:3e:02:66:f9:6a:60:5d:83:cf: 64:f6:b6:8e:67:ee:23:55:33:6c:5b:7d:6b:f7:69:40:2f:ea: 28:33:33:5a:45:ec:08:1d:a5:d7:c8:78:91:f1:72:44:88:be: 6d:0a:37:68 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUORIGkAZY9MaSJeClViNi6biOIpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwNTFaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDNiMTk2NGU1NzlmODhlN2Q1YWQ1OWM0MGI3YThkNzZlYTRhOTljOGY2ZDA3 OWI0ZTkyNjk5NDliZTljN2EyYjYxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOVSxDgcwyqXhcAEA+w8IuAwfLXVTiocG+lbe7ZErefNIdLbUg4BDvgfrvZS DdYMXVcDc+YnZj99e25i+L11pJyIJxESKUcMZtsg+Siebl97oh1qj98yWc4fmSY7 uM2yzqF1cifOdf8dqruwdHXv88sBqdf6f5mLUSYsfKO8Eh0uIfjzSU9XITjnuapP EJdW27DDq5eMp7Y94yrAbQlBQtFx4b5dI4+QaT4D7NhXYA8H27/5eLsVBmV/PLkp eEvkZErN87wj8Dh+jxexgqcVjkazYFVX/WlLvBhSkra6JnOUbjIC/uhvqACumrUM pp9F3ud64X+D8bXeFuqmt4PVQiMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRLtWIb TLKg6H6Ok+6+R5AnnCeThTAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv MTNlMGIwYTMtNDliNC00OTkwLWExMDgtMWJlZGRiM2ExOGJjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABP8co wDANBgkqhkiG9w0BAQsFAAOCAQEAn/OEY+Y89LcS07108f+aVHsgvrp1OqkM81y3 PKlq2EcIRr7tJWRjT6ODfpiOPpgp6xQI/TSjyl3L6cz/CjxczWmaW97phy/wdDWO NLQOy0bmHs0KFGWWETduYJ64gVBIWeFioWQuCVclzWGMUBNdDNOqOQjFACw1zjsp s9rdbGzr5rvPXn9tvqCetClY0WVNCwWA8vqh09FsiHZHttRoq2AdbmHs3DNFsWqt Ff8tb/XPEl8uzZmEl/QtC5fdXRNOEe92aW7ThQMUqMREiKtmPgJm+WpgXYPPZPa2 jmfuI1UzbFt9a/dpQC/qKDMzWkXsCB2l18h4kfFyRIi+bQo3aA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:54:54 2025 by rpki-client