This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/0869fd21-e07d-44bc-b068-73be998c5028.roa File: 0869fd21-e07d-44bc-b068-73be998c5028.roa (raw, json) Hash identifier: HrQm8+7Dg4Qd6ADz+qrCAsjeWTBrItIit3L77LeO9bU= Subject key identifier: 51:FE:C0:BB:69:4D:5A:0E:FF:C0:08:42:E6:F6:98:A2:73:C7:3A:45 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 0FE2D250AAFD3AF4F033DC33A1031D47BBE0F200 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/0869fd21-e07d-44bc-b068-73be998c5028.roa Signing time: Fri 24 Oct 2025 00:30:15 +0000 ROA not before: Fri 24 Oct 2025 00:30:15 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc7:f800::/40 maxlen: 40 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e2:d2:50:aa:fd:3a:f4:f0:33:dc:33:a1:03:1d:47:bb:e0:f2:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:15 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=edcb826bdc35b466771fb4c26b4d883339c93a6d4e8d06d3aeb1109099db06e5, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:9d:74:f9:72:27:6f:9a:ef:47:b4:7a:de: d7:b7:6f:52:97:db:da:5d:68:04:38:22:48:0f:a0: 4c:8f:34:ed:da:ea:09:ac:46:d4:c1:d4:a0:f6:b7: 34:58:23:53:88:a7:71:06:51:a8:56:27:4a:18:49: b8:01:bf:7f:7b:e9:3d:3c:06:4e:66:26:a3:07:31: db:b8:0b:03:b8:cd:43:40:68:08:68:e6:5b:1b:5c: 11:bb:d0:f3:3c:98:2c:72:b9:8e:32:76:cb:be:be: eb:fe:28:0f:14:65:61:de:6e:14:43:a8:f9:7b:9b: a0:e3:8b:47:ac:fc:4f:6b:90:30:ad:77:81:c9:a6: 2a:9f:9c:80:c5:d2:3c:b1:7b:c6:23:08:df:e5:c2: 49:29:e1:6d:e5:77:7d:79:d6:dc:7e:ea:72:86:14: 29:63:ca:2f:69:91:53:9d:43:bd:65:04:8f:38:cd: 80:d2:a0:83:b0:db:19:b1:3d:5a:a7:ef:89:d8:79: a2:c5:62:fd:1c:2d:ab:7b:49:a9:39:0c:63:ab:ab: c7:7d:b7:41:88:73:cf:30:ec:7a:34:5d:a4:fe:9d: e7:6a:07:9e:6c:e1:05:6b:b1:1d:07:23:5f:c4:c9: 20:31:59:d0:41:a3:3d:40:40:2c:26:ff:eb:05:a3: 29:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FE:C0:BB:69:4D:5A:0E:FF:C0:08:42:E6:F6:98:A2:73:C7:3A:45 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/0869fd21-e07d-44bc-b068-73be998c5028.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc7:f800::/40 Signature Algorithm: sha256WithRSAEncryption 69:ec:74:55:62:be:6d:fc:e2:86:7f:8c:aa:c8:4c:d9:6c:85: 0b:17:a7:8b:2b:db:fe:a7:93:af:81:c8:40:a7:b9:6e:03:ef: 2d:1d:85:d3:98:21:0a:e7:eb:45:38:35:fd:94:d9:94:76:f0: 2b:e5:11:67:a8:9c:69:1b:07:57:a0:1e:75:61:0e:28:3d:ba: 3a:d2:4b:91:da:60:bf:48:6f:0f:6d:19:75:87:44:d4:e2:dc: a9:d0:81:95:57:ab:4f:b3:da:66:a1:d4:a3:5e:22:26:12:e0: 10:43:99:fa:55:76:76:c4:d3:e5:17:98:60:15:21:63:c8:94: 8a:a7:b3:fd:80:e7:67:91:b8:c1:75:e6:af:19:49:cc:73:0b: 9f:8c:38:90:35:e8:8f:da:3b:63:ad:40:e2:5d:08:ea:9c:80: aa:44:69:8c:8a:d6:3f:fa:17:1f:00:7e:bb:15:2f:b8:16:bb: 52:32:a4:fb:08:98:a4:1f:85:2f:18:f5:ef:a3:8d:c0:4e:cb: 04:4f:ec:b7:76:a7:0d:2b:7a:fa:d4:17:04:47:f8:a1:e6:f0: 62:fd:17:d3:da:bf:f5:3b:0d:76:15:37:85:bb:dd:18:a2:f3: cd:64:4e:0e:a9:2d:c9:7b:d8:c4:47:21:a4:7b:ce:6b:7f:b9: 66:48:05:ae -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUD+LSUKr9OvTwM9wzoQMdR7vg8gAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwMTVaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQGVkY2I4MjZiZGMzNWI0NjY3NzFmYjRjMjZiNGQ4ODMzMzljOTNhNmQ0ZThk MDZkM2FlYjExMDkwOTlkYjA2ZTUxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfdnXT5cidvmu9HtHre17dvUpfb2l1oBDgiSA+gTI807drqCaxG1MHUoPa3 NFgjU4incQZRqFYnShhJuAG/f3vpPTwGTmYmowcx27gLA7jNQ0BoCGjmWxtcEbvQ 8zyYLHK5jjJ2y76+6/4oDxRlYd5uFEOo+XuboOOLR6z8T2uQMK13gcmmKp+cgMXS PLF7xiMI3+XCSSnhbeV3fXnW3H7qcoYUKWPKL2mRU51DvWUEjzjNgNKgg7DbGbE9 Wqfvidh5osVi/Rwtq3tJqTkMY6urx323QYhzzzDsejRdpP6d52oHnmzhBWuxHQcj X8TJIDFZ0EGjPUBALCb/6wWjKe8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRR/sC7 aU1aDv/ACELm9piic8c6RTAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv MDg2OWZkMjEtZTA3ZC00NGJjLWIwNjgtNzNiZTk5OGM1MDI4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACABP8f4 MA0GCSqGSIb3DQEBCwUAA4IBAQBp7HRVYr5t/OKGf4yqyEzZbIULF6eLK9v+p5Ov gchAp7luA+8tHYXTmCEK5+tFODX9lNmUdvAr5RFnqJxpGwdXoB51YQ4oPbo60kuR 2mC/SG8PbRl1h0TU4typ0IGVV6tPs9pmodSjXiImEuAQQ5n6VXZ2xNPlF5hgFSFj yJSKp7P9gOdnkbjBdeavGUnMcwufjDiQNeiP2jtjrUDiXQjqnICqRGmMitY/+hcf AH67FS+4FrtSMqT7CJikH4UvGPXvo43ATssET+y3dqcNK3r61BcER/ih5vBi/RfT 2r/1Ow12FTeFu90YovPNZE4OqS3Je9jERyGke85rf7lmSAWu -----END CERTIFICATE-----Generated at Wed Dec 17 15:26:38 2025 by rpki-client