This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/40f9b1f2-5ad7-442e-b02a-156712d4fa19.roa File: 40f9b1f2-5ad7-442e-b02a-156712d4fa19.roa (raw, json) Hash identifier: c9O8mPQ+5ILObH0Qi3sm0BtaPEsgYICccxRJcfjkqpQ= Subject key identifier: DF:88:E2:F3:E9:5E:F6:FE:0F:6E:0F:C1:9F:15:4D:CF:A4:7A:D8:19 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 5D11BF4268871B4CF635B6209C66B83F87098272 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/40f9b1f2-5ad7-442e-b02a-156712d4fa19.roa Signing time: Fri 24 Oct 2025 00:30:14 +0000 ROA not before: Fri 24 Oct 2025 00:30:14 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc7:5000::/36 maxlen: 36 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 5d:11:bf:42:68:87:1b:4c:f6:35:b6:20:9c:66:b8:3f:87:09:82:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:14 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=37ccceda6013f37f0929bba77ad53035ae209058c38ef070167af91aa46d32bb, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:9e:bd:17:65:41:3a:f2:bb:25:9b:6a:aa: 9d:c4:ae:83:43:bc:ab:ec:34:51:15:9b:d6:17:2c: ed:b6:e2:14:78:06:85:5e:dd:37:98:09:99:01:fc: c2:e1:db:77:b6:c9:71:4f:18:ed:1a:ac:e4:d4:d0: 44:04:cc:6c:e7:32:be:fc:ea:70:0c:7d:32:2e:98: ef:e7:15:88:c6:51:15:49:9d:bf:99:3c:5b:d8:e4: b5:de:d6:ac:ea:20:cb:a0:44:0f:ae:75:cc:fc:13: 9e:47:ea:88:cd:16:56:3f:c5:e5:31:3b:ab:4c:4c: 2e:7e:44:de:42:c1:ff:b5:fd:7e:1c:77:7a:52:04: 2f:81:24:76:d5:42:8b:66:18:22:65:34:87:e4:ef: 8d:13:b7:ec:48:d3:f1:93:0e:f0:0e:31:21:6d:a8: 5a:af:84:94:4a:d9:74:59:5f:81:33:d6:54:93:f2: a5:4e:90:55:9a:e0:72:a8:3e:9a:62:4c:25:9b:bc: e0:2b:ff:29:6f:83:3b:84:79:03:ae:9f:6f:93:ec: 60:6c:f2:40:44:3c:bc:8e:ca:64:8e:a5:4c:8d:92: c0:9e:b4:90:06:6f:e4:fe:c9:7c:0e:76:da:f2:65: 1e:f8:df:fd:db:46:43:98:1b:05:91:cb:05:44:0a: 04:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:88:E2:F3:E9:5E:F6:FE:0F:6E:0F:C1:9F:15:4D:CF:A4:7A:D8:19 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/40f9b1f2-5ad7-442e-b02a-156712d4fa19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc7:5000::/36 Signature Algorithm: sha256WithRSAEncryption 22:a2:f6:e8:65:ca:09:4c:1d:af:02:1e:d7:63:3d:5e:5a:96: 4a:6f:1b:0a:72:00:85:61:0c:c1:54:77:9c:d3:80:04:a2:4f: 25:3b:9d:32:8e:96:2f:60:79:aa:66:03:3a:ad:70:2c:de:19: 69:19:50:00:b6:e6:77:fb:50:3e:f1:3e:82:77:0f:04:3f:d2: 01:49:73:db:70:16:6b:e6:3c:42:11:18:7b:bd:d4:ea:86:71: a8:30:2e:76:7b:cb:c2:91:6e:29:7e:01:0f:5f:3a:54:20:ad: b8:02:f8:31:f9:e0:49:dc:2f:c4:55:f2:01:ef:57:10:0b:53: c4:76:8c:3a:1d:ba:4b:2e:da:21:a0:05:2a:0c:6c:3c:cd:64: 4f:4b:4e:72:27:7f:37:53:20:42:c3:07:4e:3e:f5:6d:d0:a3: b0:f5:18:48:a2:d4:31:7e:c4:31:96:f6:f7:6a:00:7c:e4:6e: 21:2a:e9:c8:9a:60:b2:18:65:00:7a:3d:88:cc:ea:3a:9c:9e: a7:cc:a0:05:89:7f:63:07:98:cd:37:eb:29:b1:d0:47:70:f4: fa:84:5f:6b:94:db:34:a2:ae:64:07:7d:58:85:46:c0:31:88: 06:e3:82:02:94:34:e7:8b:63:4a:ea:12:2c:8a:a7:cf:e7:9d: 2e:bc:4d:52 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUXRG/QmiHG0z2NbYgnGa4P4cJgnIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwMTRaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDM3Y2NjZWRhNjAxM2YzN2YwOTI5YmJhNzdhZDUzMDM1YWUyMDkwNThjMzhl ZjA3MDE2N2FmOTFhYTQ2ZDMyYmIxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnJnr0XZUE68rslm2qqncSug0O8q+w0URWb1hcs7bbiFHgGhV7dN5gJmQH8 wuHbd7bJcU8Y7Rqs5NTQRATMbOcyvvzqcAx9Mi6Y7+cViMZRFUmdv5k8W9jktd7W rOogy6BED651zPwTnkfqiM0WVj/F5TE7q0xMLn5E3kLB/7X9fhx3elIEL4EkdtVC i2YYImU0h+TvjRO37EjT8ZMO8A4xIW2oWq+ElErZdFlfgTPWVJPypU6QVZrgcqg+ mmJMJZu84Cv/KW+DO4R5A66fb5PsYGzyQEQ8vI7KZI6lTI2SwJ60kAZv5P7JfA52 2vJlHvjf/dtGQ5gbBZHLBUQKBIUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTfiOLz 6V72/g9uD8GfFU3PpHrYGTAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv NDBmOWIxZjItNWFkNy00NDJlLWIwMmEtMTU2NzEyZDRmYTE5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABP8dQ MA0GCSqGSIb3DQEBCwUAA4IBAQAiovboZcoJTB2vAh7XYz1eWpZKbxsKcgCFYQzB VHec04AEok8lO50yjpYvYHmqZgM6rXAs3hlpGVAAtuZ3+1A+8T6Cdw8EP9IBSXPb cBZr5jxCERh7vdTqhnGoMC52e8vCkW4pfgEPXzpUIK24Avgx+eBJ3C/EVfIB71cQ C1PEdow6HbpLLtohoAUqDGw8zWRPS05yJ383UyBCwwdOPvVt0KOw9RhIotQxfsQx lvb3agB85G4hKunImmCyGGUAej2IzOo6nJ6nzKAFiX9jB5jNN+spsdBHcPT6hF9r lNs0oq5kB31YhUbAMYgG44IClDTni2NK6hIsiqfP550uvE1S -----END CERTIFICATE-----Generated at Mon Dec 15 20:13:07 2025 by rpki-client