This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1e498054-99a2-4f2b-82cb-7448499c313c.roa File: 1e498054-99a2-4f2b-82cb-7448499c313c.roa (raw, json) Hash identifier: dxBY+mcU6j7wFVTVEUpnFEiCIxQ7m9h25JI7+gMnly8= Subject key identifier: EC:7F:70:15:21:01:F7:F1:D3:BC:B7:97:6D:5C:9F:E0:75:8C:EA:78 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 74C14F596F36E3A04DC35A5FA6EA509A2C9BEA49 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1e498054-99a2-4f2b-82cb-7448499c313c.roa Signing time: Fri 24 Oct 2025 00:31:03 +0000 ROA not before: Fri 24 Oct 2025 00:31:03 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc0::/29 maxlen: 29 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 74:c1:4f:59:6f:36:e3:a0:4d:c3:5a:5f:a6:ea:50:9a:2c:9b:ea:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:31:03 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=551edc9a0607457a381d1318bbea9afa3156ddc99a94a5aa4c1ad5b6e48371b7, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f8:4c:98:88:79:37:1c:e6:01:b9:af:d5:77: 0b:33:df:e1:ab:30:70:fc:70:38:fe:90:d7:b0:50: dc:20:30:04:a1:e6:93:9a:85:d5:da:f1:76:ae:ee: d1:d8:c4:51:1f:04:2d:50:07:3e:62:6a:ba:4b:a9: 5c:92:49:91:b4:84:8d:97:89:ef:0d:68:c1:f2:a5: 39:18:7b:ed:f1:a5:96:0d:f7:e0:ae:54:8f:2c:a9: 57:9b:24:9f:6d:07:97:94:c8:95:eb:02:0a:c1:50: 16:2f:66:3e:6e:62:4e:3d:8c:06:b4:68:39:a8:a8: 1e:4d:ff:1c:a4:6c:0b:43:76:b2:5d:54:59:fd:0f: 44:00:a5:9b:13:64:1e:e2:f3:4e:da:0e:26:4e:99: 45:17:9b:c1:d3:bd:13:af:0a:73:24:e2:76:94:6a: fe:1a:3e:d2:f2:76:02:9b:fe:ab:a8:9b:77:3e:e0: 28:98:8c:42:f1:af:7a:25:d6:64:78:d0:18:ff:1b: b1:da:50:99:36:5a:39:cf:79:6c:cc:11:49:b0:78: 0d:ae:fd:f1:38:18:1a:90:89:04:42:6c:57:54:bc: 54:6d:c4:ea:92:ee:7c:b1:40:54:95:53:1e:91:37: cf:05:e0:4d:8b:b5:51:56:43:29:1f:18:fe:75:48: 9f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7F:70:15:21:01:F7:F1:D3:BC:B7:97:6D:5C:9F:E0:75:8C:EA:78 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1e498054-99a2-4f2b-82cb-7448499c313c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc0::/29 Signature Algorithm: sha256WithRSAEncryption 21:81:66:39:8e:08:58:cc:66:ab:1a:d5:ef:4f:0a:41:f4:d3: 44:4e:2f:58:26:0a:b3:f5:d9:3e:5d:f9:84:29:cb:b8:05:ac: 1a:cf:e9:24:38:0a:89:bf:85:4a:aa:64:40:6a:8a:21:a8:fc: 5a:ea:60:7e:43:fb:36:a3:fd:bc:69:56:83:da:ff:5f:37:3b: 45:73:62:29:6b:6b:0e:a1:51:13:5f:bd:e9:01:b1:50:12:1f: 55:0d:20:b1:94:2d:d5:1f:39:6d:d0:e7:21:96:33:e3:c2:86: 09:16:49:b3:21:1c:ea:7b:84:a5:83:30:c5:ab:44:f9:fc:89: 84:ae:cf:9f:22:81:f6:16:17:ba:f6:cc:07:cb:ae:e9:ee:d4: 81:f5:e9:0a:9e:31:20:0a:cd:c2:b9:c1:d6:fd:01:f0:ee:5c: 7a:57:7d:82:da:fa:94:31:3d:8e:18:d3:12:57:2d:2c:2b:40: 40:23:fd:40:a5:65:ad:78:31:6b:6c:64:ee:e1:6a:f7:3f:0d: 2d:2f:44:bc:5e:21:99:ae:18:82:b0:2d:3e:e6:0d:6d:58:3e: d3:f7:9b:e9:e1:db:13:b3:6c:97:1f:b1:d6:45:cd:39:f5:3a: 7e:89:f1:5d:ed:3a:74:fb:0b:ae:52:f1:aa:27:0d:a2:83:87: dc:fc:96:bc -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUdMFPWW8246BNw1pfpupQmiyb6kkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMxMDNaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDU1MWVkYzlhMDYwNzQ1N2EzODFkMTMxOGJiZWE5YWZhMzE1NmRkYzk5YTk0 YTVhYTRjMWFkNWI2ZTQ4MzcxYjcxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALf4TJiIeTcc5gG5r9V3CzPf4aswcPxwOP6Q17BQ3CAwBKHmk5qF1drxdq7u 0djEUR8ELVAHPmJqukupXJJJkbSEjZeJ7w1owfKlORh77fGllg334K5UjyypV5sk n20Hl5TIlesCCsFQFi9mPm5iTj2MBrRoOaioHk3/HKRsC0N2sl1UWf0PRAClmxNk HuLzTtoOJk6ZRRebwdO9E68KcyTidpRq/ho+0vJ2Apv+q6ibdz7gKJiMQvGveiXW ZHjQGP8bsdpQmTZaOc95bMwRSbB4Da798TgYGpCJBEJsV1S8VG3E6pLufLFAVJVT HpE3zwXgTYu1UVZDKR8Y/nVIn98CAwEAAaOCAiIwggIeMB0GA1UdDgQWBBTsf3AV IQH38dO8t5dtXJ/gdYzqeDAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv MWU0OTgwNTQtOTlhMi00ZjJiLTgyY2ItNzQ0ODQ5OWMzMTNjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyABP8Aw DQYJKoZIhvcNAQELBQADggEBACGBZjmOCFjMZqsa1e9PCkH000ROL1gmCrP12T5d +YQpy7gFrBrP6SQ4Com/hUqqZEBqiiGo/FrqYH5D+zaj/bxpVoPa/183O0VzYilr aw6hURNfvekBsVASH1UNILGULdUfOW3Q5yGWM+PChgkWSbMhHOp7hKWDMMWrRPn8 iYSuz58igfYWF7r2zAfLrunu1IH16QqeMSAKzcK5wdb9AfDuXHpXfYLa+pQxPY4Y 0xJXLSwrQEAj/UClZa14MWtsZO7havc/DS0vRLxeIZmuGIKwLT7mDW1YPtP3m+nh 2xOzbJcfsdZFzTn1On6J8V3tOnT7C65S8aonDaKDh9z8lrw= -----END CERTIFICATE-----Generated at Wed Dec 17 13:43:25 2025 by rpki-client