This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/4723f2a2-88af-42fa-b700-a780f4cd2903.roa File: 4723f2a2-88af-42fa-b700-a780f4cd2903.roa (raw, json) Hash identifier: j4Wp5byjXMiCfpHt4c1sMX3KgYZW+1Kmc0ZAmpFw2zA= Subject key identifier: A3:CC:19:81:26:54:14:93:63:90:AA:56:7A:A0:58:A2:F9:A7:8A:66 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 6844744315D212169A412EB1C75F706521FC6913 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/4723f2a2-88af-42fa-b700-a780f4cd2903.roa Signing time: Fri 24 Oct 2025 00:30:12 +0000 ROA not before: Fri 24 Oct 2025 00:30:12 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc3:a000::/36 maxlen: 36 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 68:44:74:43:15:d2:12:16:9a:41:2e:b1:c7:5f:70:65:21:fc:69:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:12 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=c90569e8988897fec903a91e1a6b6cf99ed9ccdfa1e4f5b0dad64ed296320cd5, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d0:3e:6c:5f:f8:90:fd:34:b8:71:b0:2f:3f: e6:e8:bf:06:ef:6c:c8:45:9c:a3:35:60:91:78:39: 51:67:61:a1:d0:1a:19:26:64:e2:e2:ce:fe:62:f5: 7c:81:cf:ff:6e:70:f6:2d:0c:69:55:ca:2a:d1:fc: bb:2d:a6:70:97:7e:16:c3:7b:61:67:b2:a1:1d:32: 8c:6f:0b:24:6e:13:00:de:3b:b3:9f:00:9a:5b:ff: 5c:79:36:6c:78:38:11:d9:91:80:9e:2f:3a:bc:a5: 7a:1b:fd:14:7b:f6:21:a1:4d:ee:be:76:5a:1f:4e: 94:75:a0:50:b3:e3:4d:22:69:7b:e0:b9:14:8a:d2: 5d:75:e3:fb:20:e5:ba:5d:b1:e5:84:af:71:2f:9b: 5a:76:14:9a:4b:05:f2:e3:06:22:27:37:2b:7e:fd: 19:10:66:82:6b:40:aa:42:08:92:72:53:81:b2:7c: 26:07:28:33:72:fd:ea:92:17:7d:f1:d7:c6:a4:b8: 4f:42:f6:2f:68:f7:b7:68:7f:61:d3:5d:a0:15:d3: 98:a1:4d:f4:93:67:29:51:c2:50:d6:f5:6e:ae:7a: 28:e9:80:68:c9:62:58:b2:7e:7e:b5:44:8d:e8:ce: cf:05:f6:b3:fe:52:97:c4:99:ac:d8:b0:43:1e:8f: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CC:19:81:26:54:14:93:63:90:AA:56:7A:A0:58:A2:F9:A7:8A:66 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/4723f2a2-88af-42fa-b700-a780f4cd2903.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc3:a000::/36 Signature Algorithm: sha256WithRSAEncryption 8b:6a:86:ea:1a:b9:39:a0:28:00:4c:c0:85:5b:59:c4:11:9d: 70:61:bf:21:4c:b7:6c:98:83:c3:b0:92:1e:b3:1c:dd:59:f3: 0d:6d:b9:7b:be:8c:d2:7d:d8:84:6a:32:42:0d:c3:b5:c7:72: 84:ee:06:74:56:d5:11:c3:f2:54:79:02:71:7b:65:88:6c:a4: ad:cb:9d:01:e5:cf:ca:6a:78:00:d0:79:28:59:58:9a:46:bb: d9:61:56:94:7a:d6:60:4f:37:85:d3:7c:9c:3e:a5:0e:2c:1d: 36:e4:bd:b8:24:86:ce:bb:30:58:fa:66:f1:4b:76:de:e1:a0: 3a:70:7b:47:42:d6:37:ab:13:75:0a:3e:26:e4:3e:ee:50:fd: b3:3b:2a:e5:af:8e:b7:8b:78:9e:77:7a:6e:fc:58:32:27:1d: 76:26:a0:e6:24:6a:f6:e6:92:0f:9d:c5:5b:bc:51:46:f4:a0: f2:0e:7c:91:1a:56:01:15:45:bd:19:64:31:96:dd:26:b4:c7: 9c:a4:d1:24:fb:9a:07:a1:37:b7:7d:38:e7:a9:1c:36:62:a3: 74:73:53:b9:ff:42:ec:58:63:3f:3a:b7:38:05:42:35:b6:5d: 1f:be:cc:35:e0:af:4f:62:5e:0a:42:86:b5:9e:f4:5c:11:3a: 2b:cb:bf:0d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUaER0QxXSEhaaQS6xx19wZSH8aRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwMTJaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQGM5MDU2OWU4OTg4ODk3ZmVjOTAzYTkxZTFhNmI2Y2Y5OWVkOWNjZGZhMWU0 ZjViMGRhZDY0ZWQyOTYzMjBjZDUxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANHQPmxf+JD9NLhxsC8/5ui/Bu9syEWcozVgkXg5UWdhodAaGSZk4uLO/mL1 fIHP/25w9i0MaVXKKtH8uy2mcJd+FsN7YWeyoR0yjG8LJG4TAN47s58Amlv/XHk2 bHg4EdmRgJ4vOrylehv9FHv2IaFN7r52Wh9OlHWgULPjTSJpe+C5FIrSXXXj+yDl ul2x5YSvcS+bWnYUmksF8uMGIic3K379GRBmgmtAqkIIknJTgbJ8JgcoM3L96pIX ffHXxqS4T0L2L2j3t2h/YdNdoBXTmKFN9JNnKVHCUNb1bq56KOmAaMliWLJ+frVE jejOzwX2s/5Sl8SZrNiwQx6PSYUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSjzBmB JlQUk2OQqlZ6oFii+aeKZjAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv NDcyM2YyYTItODhhZi00MmZhLWI3MDAtYTc4MGY0Y2QyOTAzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABP8Og MA0GCSqGSIb3DQEBCwUAA4IBAQCLaobqGrk5oCgATMCFW1nEEZ1wYb8hTLdsmIPD sJIesxzdWfMNbbl7vozSfdiEajJCDcO1x3KE7gZ0VtURw/JUeQJxe2WIbKSty50B 5c/KangA0HkoWViaRrvZYVaUetZgTzeF03ycPqUOLB025L24JIbOuzBY+mbxS3be 4aA6cHtHQtY3qxN1Cj4m5D7uUP2zOyrlr463i3ied3pu/FgyJx12JqDmJGr25pIP ncVbvFFG9KDyDnyRGlYBFUW9GWQxlt0mtMecpNEk+5oHoTe3fTjnqRw2YqN0c1O5 /0LsWGM/Orc4BUI1tl0fvsw14K9PYl4KQoa1nvRcETory78N -----END CERTIFICATE-----Generated at Sun Dec 14 01:57:44 2025 by rpki-client