This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa File: 1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa (raw, json) Hash identifier: jD2JVPO/hSD36WWstSVmnEQp98YLgurJQICuWKQG5B0= Subject key identifier: AE:FB:3C:F0:18:EB:C7:5C:E2:5B:CE:99:D9:82:52:88:A6:AF:EA:F6 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 68E50FE6E68814E06CC404BE6B5FC36CC4DD6CB4 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa Signing time: Fri 24 Oct 2025 00:30:47 +0000 ROA not before: Fri 24 Oct 2025 00:30:47 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc1:8c00::/38 maxlen: 38 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 68:e5:0f:e6:e6:88:14:e0:6c:c4:04:be:6b:5f:c3:6c:c4:dd:6c:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:47 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=e3c92eda916d2af7444a36bbc476d876f4ab07c4ace6521bc3adde8ed0e07d5c, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8a:d1:19:79:50:26:59:d2:10:ac:02:d7:e2: 69:9f:35:51:bb:a1:1c:03:2f:0c:64:78:13:ae:7b: fe:88:2c:b0:de:4a:e8:e7:d9:1b:e5:9a:26:ca:45: 87:2e:30:8e:9c:ca:2c:13:f0:97:33:fb:65:fb:f3: 03:ee:53:ec:e5:c1:f2:88:a2:f9:08:0a:c3:30:3c: 15:81:b8:46:2f:d7:b2:c7:16:d0:3c:71:46:57:10: 28:af:15:b6:c6:94:65:82:0d:a0:5f:29:c2:d2:9c: cd:d1:42:b7:2f:b6:0b:75:5d:c0:fe:42:20:a6:8c: 45:d2:cf:77:6a:0b:e0:d7:77:54:69:6e:7f:a7:03: 8a:b3:51:84:d1:81:0a:8a:d1:16:83:c9:92:e4:c8: 29:50:c0:2f:e3:fd:01:8a:d6:48:62:75:01:1c:b4: 55:5a:07:2e:15:b4:46:0d:63:a7:0c:93:88:3a:de: 76:e2:8e:2b:40:ad:33:a5:4e:95:b4:e0:fb:9c:cc: 4b:a3:73:a9:30:cb:60:a8:8e:8a:f7:2e:58:fb:21: 21:75:d4:26:95:05:59:b6:c4:58:fe:cc:44:86:70: 5f:8b:b9:4c:3b:b9:43:df:b1:55:c6:5b:89:7b:a6: 42:2b:a6:10:d8:34:f8:fe:80:5c:e8:b0:ec:f8:32: a0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FB:3C:F0:18:EB:C7:5C:E2:5B:CE:99:D9:82:52:88:A6:AF:EA:F6 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc1:8c00::/38 Signature Algorithm: sha256WithRSAEncryption 1f:15:53:90:48:b3:b0:02:2b:a2:c6:1f:a1:10:ab:aa:23:fe: b5:b2:a7:6d:68:c1:25:c6:3a:f3:86:07:14:56:bc:9e:2d:13: bb:e3:ff:2d:9c:b4:df:d9:12:cf:c2:50:38:4e:3c:18:6d:8a: f3:93:ff:4e:bd:0a:66:f8:18:c7:4b:87:34:95:48:7e:c1:8a: 8b:2b:69:c1:2c:4f:8a:da:b6:49:52:40:a8:da:fb:95:68:81: 0d:0d:6c:7f:b2:25:39:47:f4:c6:16:d5:21:40:3e:12:f0:b0: 06:ff:aa:b8:3e:8e:0e:6d:d2:01:ea:c3:9a:da:aa:13:f4:b5: fc:f8:97:41:41:13:e2:ef:83:c7:a8:6d:a6:1d:50:d8:0d:86: 82:fe:a8:d0:3a:a3:cb:a6:b1:db:22:3a:42:d5:01:38:72:f0: 99:4a:3d:15:f7:d2:84:95:cf:5c:49:a6:38:5b:d1:2f:65:92: d8:a4:1a:c8:92:00:b6:60:a7:d0:d0:dd:27:ce:74:7e:8e:80: 54:34:d0:05:68:b0:30:74:4a:d0:47:a4:06:9f:c9:df:b0:0e: 73:9b:ba:3a:22:40:1e:f0:e4:3d:76:79:28:d9:ae:bd:67:0f: a5:9c:7c:52:9e:3d:71:aa:66:e3:8d:1c:a7:ce:d6:06:94:20: 8a:49:b6:7a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUaOUP5uaIFOBsxAS+a1/DbMTdbLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwNDdaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQGUzYzkyZWRhOTE2ZDJhZjc0NDRhMzZiYmM0NzZkODc2ZjRhYjA3YzRhY2U2 NTIxYmMzYWRkZThlZDBlMDdkNWMxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2K0Rl5UCZZ0hCsAtfiaZ81UbuhHAMvDGR4E657/ogssN5K6OfZG+WaJspF hy4wjpzKLBPwlzP7ZfvzA+5T7OXB8oii+QgKwzA8FYG4Ri/XsscW0DxxRlcQKK8V tsaUZYINoF8pwtKczdFCty+2C3VdwP5CIKaMRdLPd2oL4Nd3VGluf6cDirNRhNGB CorRFoPJkuTIKVDAL+P9AYrWSGJ1ARy0VVoHLhW0Rg1jpwyTiDreduKOK0CtM6VO lbTg+5zMS6NzqTDLYKiOivcuWPshIXXUJpUFWbbEWP7MRIZwX4u5TDu5Q9+xVcZb iXumQiumENg0+P6AXOiw7PgyoNcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSu+zzw GOvHXOJbzpnZglKIpq/q9jAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv MWY3YjJlMzQtYTA0MS00YjEyLWE1YjAtNWFmMGQ2ZjQzYjlhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAiABP8GM MA0GCSqGSIb3DQEBCwUAA4IBAQAfFVOQSLOwAiuixh+hEKuqI/61sqdtaMElxjrz hgcUVryeLRO74/8tnLTf2RLPwlA4TjwYbYrzk/9OvQpm+BjHS4c0lUh+wYqLK2nB LE+K2rZJUkCo2vuVaIENDWx/siU5R/TGFtUhQD4S8LAG/6q4Po4ObdIB6sOa2qoT 9LX8+JdBQRPi74PHqG2mHVDYDYaC/qjQOqPLprHbIjpC1QE4cvCZSj0V99KElc9c SaY4W9EvZZLYpBrIkgC2YKfQ0N0nznR+joBUNNAFaLAwdErQR6QGn8nfsA5zm7o6 IkAe8OQ9dnko2a69Zw+lnHxSnj1xqmbjjRynztYGlCCKSbZ6 -----END CERTIFICATE-----Generated at Mon Dec 15 17:06:20 2025 by rpki-client