This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa File: bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa (raw, json) Hash identifier: SvgZ8XB3CJGfRJmaIGS8TiwVINzhXkYi9rNcJzz0lwA= Subject key identifier: 01:B3:F6:EA:F9:71:83:20:B0:05:34:27:02:18:14:E4:B9:B8:19:7C Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 5F58309D503377BFA3A009C3B799945A7FF3D921 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa Signing time: Fri 24 Oct 2025 00:30:38 +0000 ROA not before: Fri 24 Oct 2025 00:30:38 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc7:f880::/48 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 5f:58:30:9d:50:33:77:bf:a3:a0:09:c3:b7:99:94:5a:7f:f3:d9:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:38 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=89d6a5975520fced45f12c47c780afa2ab1055b8ba28f8a94038bdccb61168ad, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6f:89:ab:3d:5b:ab:d5:df:47:12:9b:7d:4f: 59:b4:97:cf:2e:9a:73:0d:f8:ed:06:f0:05:6f:11: 6a:46:16:a2:f5:0b:e9:6c:7b:b2:d5:22:18:d2:31: c9:82:d1:93:64:c8:63:8a:98:29:5e:e1:28:6a:f9: 94:17:95:33:7b:55:26:9a:e8:94:3a:44:4a:b1:50: b4:e4:af:6e:cc:4f:bf:3d:b0:7a:d3:6c:94:98:81: a4:e8:2e:19:9d:37:7c:e7:d9:bf:d8:ef:fc:37:e9: 69:d0:7d:6d:df:4e:88:a0:d6:80:f9:3c:19:2c:a8: 37:15:f5:75:f1:07:ad:4f:97:5c:6b:40:be:9a:65: 6e:29:b6:aa:7f:be:21:01:b2:6e:62:74:06:b3:7a: c7:f8:96:28:49:1e:5e:7c:fa:e3:e6:82:e9:41:c3: 86:aa:e3:2a:14:49:1a:8c:00:b7:f3:a6:bb:6a:b0: 29:92:8a:a6:23:f4:96:85:24:e5:2d:f4:aa:10:9a: 4d:3b:02:9b:8e:af:0e:de:c3:ff:ea:e5:54:44:94: c4:b4:8d:ee:d1:f2:cb:7e:c9:85:a9:54:26:d3:05: 1a:a5:00:67:1b:85:17:b6:dc:0d:de:57:83:d9:11: 6b:b3:72:83:43:8c:e7:b9:9a:63:bd:c7:19:75:8b: cc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B3:F6:EA:F9:71:83:20:B0:05:34:27:02:18:14:E4:B9:B8:19:7C X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc7:f880::/48 Signature Algorithm: sha256WithRSAEncryption 10:18:47:ae:5a:35:54:47:8d:9d:56:82:c6:8d:8b:fe:fb:13: b4:d5:59:cc:dc:25:9c:58:4e:01:23:fe:ef:9e:f7:4b:51:95: 93:8d:8a:d7:e0:29:e0:39:71:e0:e2:29:08:43:df:ab:84:db: c2:b9:57:a5:68:14:1c:e2:1b:99:7d:3a:57:52:1a:6e:2c:d1: c3:ec:d2:c2:42:17:f2:9f:84:f2:63:90:ba:d8:b1:c0:f6:16: 8b:ba:e8:fb:0b:1c:49:c7:92:20:53:94:14:4c:ad:ed:f9:1a: dd:26:c8:f5:1b:60:aa:ac:2d:c7:83:bf:01:a4:d5:19:e2:83: fe:23:c1:c7:16:6e:d3:65:82:fb:af:6e:50:75:d0:3e:26:d6: a1:27:0c:0a:58:f6:a5:20:db:3e:c6:c0:95:88:65:04:3e:b1: 3a:d9:9e:49:51:a5:2e:5e:0f:69:e1:17:90:49:0f:f1:22:87: e4:13:30:51:35:81:49:73:95:79:54:97:af:19:f0:b6:c5:d5: c8:da:b9:db:d4:d8:69:1a:85:e0:08:66:62:fc:d9:5d:bb:12: 2c:bc:da:29:c4:4f:c1:c5:e5:62:32:2c:e5:cd:6f:1c:e0:cb: 0c:26:16:72:fe:e3:ea:9e:c1:08:27:ea:27:94:d2:41:c2:63: ba:f2:1f:7f -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUX1gwnVAzd7+joAnDt5mUWn/z2SEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwMzhaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDg5ZDZhNTk3NTUyMGZjZWQ0NWYxMmM0N2M3ODBhZmEyYWIxMDU1YjhiYTI4 ZjhhOTQwMzhiZGNjYjYxMTY4YWQxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRvias9W6vV30cSm31PWbSXzy6acw347QbwBW8RakYWovUL6Wx7stUiGNIx yYLRk2TIY4qYKV7hKGr5lBeVM3tVJprolDpESrFQtOSvbsxPvz2wetNslJiBpOgu GZ03fOfZv9jv/DfpadB9bd9OiKDWgPk8GSyoNxX1dfEHrU+XXGtAvpplbim2qn++ IQGybmJ0BrN6x/iWKEkeXnz64+aC6UHDhqrjKhRJGowAt/Omu2qwKZKKpiP0loUk 5S30qhCaTTsCm46vDt7D/+rlVESUxLSN7tHyy37JhalUJtMFGqUAZxuFF7bcDd5X g9kRa7Nyg0OM57maY73HGXWLzC0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQBs/bq +XGDILAFNCcCGBTkubgZfDAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv YmI5MjY4NTMtZjNhZC00ZjFhLWIwMjQtMTJiMzRjNTVkNWJjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABP8f4 gDANBgkqhkiG9w0BAQsFAAOCAQEAEBhHrlo1VEeNnVaCxo2L/vsTtNVZzNwlnFhO ASP+7573S1GVk42K1+Ap4Dlx4OIpCEPfq4TbwrlXpWgUHOIbmX06V1IabizRw+zS wkIX8p+E8mOQutixwPYWi7ro+wscSceSIFOUFEyt7fka3SbI9Rtgqqwtx4O/AaTV GeKD/iPBxxZu02WC+69uUHXQPibWoScMClj2pSDbPsbAlYhlBD6xOtmeSVGlLl4P aeEXkEkP8SKH5BMwUTWBSXOVeVSXrxnwtsXVyNq529TYaRqF4AhmYvzZXbsSLLza KcRPwcXlYjIs5c1vHODLDCYWcv7j6p7BCCfqJ5TSQcJjuvIffw== -----END CERTIFICATE-----Generated at Sun Dec 14 01:52:24 2025 by rpki-client