This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/0b1379a0-a965-4871-ba33-de2086e8028e.roa File: 0b1379a0-a965-4871-ba33-de2086e8028e.roa (raw, json) Hash identifier: ZHzITPkzSPNuAd6wqeDQ0Jvg3F2G5Ds0zg1EYTh2QYI= Subject key identifier: 31:AC:F8:03:4F:2B:B9:E9:5B:28:5C:03:E7:A5:65:2D:0A:D8:2A:54 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 3A8286EB6D6E58B98C2899EDA11E3C52680C4ADA Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/0b1379a0-a965-4871-ba33-de2086e8028e.roa Signing time: Fri 24 Oct 2025 00:30:54 +0000 ROA not before: Fri 24 Oct 2025 00:30:54 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc7:f000::/36 maxlen: 36 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 3a:82:86:eb:6d:6e:58:b9:8c:28:99:ed:a1:1e:3c:52:68:0c:4a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:54 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=e124f77422b761d64f7880836c338d9f3e283e5abb4ed697bfadf21dc1fcf83f, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8e:86:c5:73:2c:57:ac:c6:f9:0e:5e:51:1b: 00:69:11:89:4a:40:10:58:36:63:05:2f:f5:62:95: 6d:7b:b8:03:16:44:e2:3f:82:00:2c:f5:da:e6:27: cc:12:6e:64:7e:45:1a:c9:65:2f:b8:8a:e2:7b:00: 35:6d:af:b9:4c:4f:b8:bd:7a:fd:ae:66:99:78:35: 06:53:9c:91:13:32:f7:00:63:b4:4d:44:5e:5f:29: a5:42:ce:12:2f:82:b7:51:01:57:32:16:fb:b4:64: 5d:97:db:55:24:81:57:75:da:30:bf:81:ea:b8:ae: a6:08:7b:e0:1d:d5:66:d8:ec:79:85:5b:ee:0f:ce: 23:3e:8d:59:e1:26:06:4c:69:52:d1:24:5c:8c:34: 2a:34:d4:6f:eb:75:4c:f9:18:c4:cd:f2:cc:59:5f: 05:3b:54:6d:87:5c:f6:6a:a2:9f:c1:17:c3:92:64: 9e:ac:18:63:25:1b:4a:dc:c6:e5:f2:09:36:86:dd: fd:4d:e7:c2:d2:db:99:70:38:08:ae:d1:a6:a1:ce: 6c:8b:68:ef:d4:d0:a2:7d:7f:12:86:82:e4:b6:e9: 62:21:29:50:f7:11:f5:18:7c:f4:c4:6a:d7:03:62: 3b:b8:7b:3d:6f:eb:9a:39:e0:5c:d9:82:15:8f:11: 2b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AC:F8:03:4F:2B:B9:E9:5B:28:5C:03:E7:A5:65:2D:0A:D8:2A:54 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/0b1379a0-a965-4871-ba33-de2086e8028e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc7:f000::/36 Signature Algorithm: sha256WithRSAEncryption 5b:14:5a:c0:9d:fd:51:10:cb:fd:64:4d:ac:3d:54:73:f6:52: 1a:4d:e3:01:bb:da:00:5b:c0:28:5f:26:3f:6b:a3:4b:4d:ff: ec:7f:b3:22:df:f3:1b:42:ea:f3:32:16:01:8e:c2:bc:ed:15: 76:b9:46:c3:f5:87:22:e6:87:7c:8a:8a:55:b7:71:2b:f7:db: e3:65:8b:7c:4e:c5:ad:19:17:39:5d:54:ba:da:4b:97:6a:2f: 1e:d9:3d:d7:8d:dd:2e:64:dc:c7:45:dc:31:5b:3d:57:ee:16: c0:bf:7b:0e:fe:77:9c:a0:a8:85:93:6a:17:df:da:db:8c:83: 91:53:33:12:b4:13:b0:4d:36:d2:2f:56:17:ad:aa:15:5c:c2: 47:a7:6e:a5:43:6b:f2:10:08:af:f1:24:54:da:9f:a8:0b:bd: c1:62:b2:e0:e9:da:f9:97:ed:e0:f3:2b:4f:fc:06:02:0f:93: 7a:8e:85:f3:d8:e9:5c:19:ec:d9:e2:2d:be:68:c3:e3:c3:5b: 09:5d:e7:4b:19:f5:b0:33:37:41:52:6b:51:b2:e1:ad:f3:4e: 07:cf:77:30:f7:19:f8:f6:95:af:7d:29:e8:3b:61:63:53:c9: 43:e8:1d:c4:27:d2:03:d6:4d:5b:10:bb:4d:b1:05:6a:71:46: 34:c4:16:3d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUOoKG621uWLmMKJntoR48UmgMStowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwNTRaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQGUxMjRmNzc0MjJiNzYxZDY0Zjc4ODA4MzZjMzM4ZDlmM2UyODNlNWFiYjRl ZDY5N2JmYWRmMjFkYzFmY2Y4M2YxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWOhsVzLFesxvkOXlEbAGkRiUpAEFg2YwUv9WKVbXu4AxZE4j+CACz12uYn zBJuZH5FGsllL7iK4nsANW2vuUxPuL16/a5mmXg1BlOckRMy9wBjtE1EXl8ppULO Ei+Ct1EBVzIW+7RkXZfbVSSBV3XaML+B6riupgh74B3VZtjseYVb7g/OIz6NWeEm BkxpUtEkXIw0KjTUb+t1TPkYxM3yzFlfBTtUbYdc9mqin8EXw5JknqwYYyUbStzG 5fIJNobd/U3nwtLbmXA4CK7RpqHObIto79TQon1/EoaC5LbpYiEpUPcR9Rh89MRq 1wNiO7h7PW/rmjngXNmCFY8RKwECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQxrPgD Tyu56VsoXAPnpWUtCtgqVDAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv MGIxMzc5YTAtYTk2NS00ODcxLWJhMzMtZGUyMDg2ZTgwMjhlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABP8fw MA0GCSqGSIb3DQEBCwUAA4IBAQBbFFrAnf1REMv9ZE2sPVRz9lIaTeMBu9oAW8Ao XyY/a6NLTf/sf7Mi3/MbQurzMhYBjsK87RV2uUbD9Yci5od8iopVt3Er99vjZYt8 TsWtGRc5XVS62kuXai8e2T3Xjd0uZNzHRdwxWz1X7hbAv3sO/necoKiFk2oX39rb jIORUzMStBOwTTbSL1YXraoVXMJHp26lQ2vyEAiv8SRU2p+oC73BYrLg6dr5l+3g 8ytP/AYCD5N6joXz2OlcGezZ4i2+aMPjw1sJXedLGfWwMzdBUmtRsuGt804Hz3cw 9xn49pWvfSnoO2FjU8lD6B3EJ9ID1k1bELtNsQVqcUY0xBY9 -----END CERTIFICATE-----Generated at Wed Dec 17 17:50:08 2025 by rpki-client