This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/4318c3f0-c6a7-430c-bfad-645d9ad814d0.roa File: 4318c3f0-c6a7-430c-bfad-645d9ad814d0.roa (raw, json) Hash identifier: rbsuEcrVkgZninIm5LNkH1DH8VBb8U5D7fYcCsbhCXI= Subject key identifier: 21:4D:82:79:C6:C7:37:F9:62:2D:ED:1D:A0:A6:A3:CB:08:F8:DC:A5 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 57AC233F5E14651EB3BA7648B8A3EF165FC86827 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/4318c3f0-c6a7-430c-bfad-645d9ad814d0.roa Signing time: Fri 24 Oct 2025 00:30:32 +0000 ROA not before: Fri 24 Oct 2025 00:30:32 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc2:8000::/36 maxlen: 36 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 57:ac:23:3f:5e:14:65:1e:b3:ba:76:48:b8:a3:ef:16:5f:c8:68:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:32 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=7726bf9864aae77f202b8fd3ac982261cc59c44a64c89a151e9cba54ba17c84a, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d3:d6:f5:64:81:bc:7a:56:42:05:c4:87:dc: ff:fb:25:f8:5d:93:68:6f:c5:2f:51:5d:bd:f0:0d: 8f:e4:5b:bc:4f:38:a7:07:c4:66:57:18:d0:56:cd: 5a:2f:cb:c4:16:02:44:27:cb:c4:9b:31:3a:2a:f8: 57:9e:13:fb:9a:f8:94:0e:de:3e:22:69:48:59:51: 14:03:e4:0b:11:17:d4:18:54:a9:21:7e:b6:7f:43: c5:e2:68:08:98:d9:2b:2d:ee:d8:7d:63:45:f3:d6: 2f:b7:17:0c:77:ac:a0:c7:a4:75:70:14:3c:96:fd: dc:f8:b9:7d:1d:7a:22:35:21:f5:6a:29:a3:5a:b3: c4:7d:06:f1:12:e0:db:de:db:7d:90:43:e3:cb:fb: 75:85:26:6e:47:4c:28:55:7d:4f:34:d6:52:f1:86: 2c:fd:c2:14:2d:eb:cb:f2:1f:3a:6b:4e:bd:48:26: f5:bb:c7:48:3a:c8:99:e8:af:95:cc:fd:10:c9:57: a1:99:43:94:58:34:f0:f7:ff:9f:f6:39:1a:31:e1: f1:7c:29:09:49:8e:56:c3:e4:5c:9f:4f:5a:7c:86: f1:3f:5b:08:a1:4d:eb:9f:cb:cd:27:93:9f:90:e6: 9f:de:c5:6e:40:9b:46:96:50:87:e3:3b:d0:3b:4c: 59:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:4D:82:79:C6:C7:37:F9:62:2D:ED:1D:A0:A6:A3:CB:08:F8:DC:A5 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/4318c3f0-c6a7-430c-bfad-645d9ad814d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc2:8000::/36 Signature Algorithm: sha256WithRSAEncryption 89:a3:0c:95:3c:b0:0c:19:bb:64:b9:c5:85:2c:0d:92:a8:8b: 8b:1c:98:75:2a:2c:d5:c5:a5:0d:22:a3:51:a9:bd:03:b3:d4: 75:7e:84:4e:3e:98:7e:e2:de:5e:bd:0c:73:b6:34:77:93:2d: 4e:a6:60:9a:66:cc:53:ac:3e:7a:92:5f:a2:15:e0:33:d0:4d: b7:9d:e2:46:ac:a3:84:7f:d4:60:fa:57:1a:0c:83:f6:e7:c3: 92:19:85:e7:8c:c9:62:b1:24:c4:3f:a4:d0:21:06:9d:5f:43: da:22:d1:0b:cf:4f:76:eb:bd:0b:1b:8b:34:01:69:8a:e3:fa: ca:9f:f1:a8:76:cb:7e:40:de:a2:57:92:0f:b0:0d:32:c5:94: e1:c1:be:b9:49:23:18:b1:ee:1c:8e:d2:87:a5:f6:7e:61:4a: d1:79:b0:a4:f2:e7:45:83:85:62:20:88:27:4c:c3:d2:a8:1b: 0c:a2:c6:e9:c1:17:0c:82:3a:65:67:c3:72:00:41:64:ce:8c: c9:cc:07:84:9b:cf:14:80:a2:21:12:0e:ee:ec:0c:5c:f3:74: 14:48:7e:ac:f0:a5:de:72:8b:2f:08:83:93:20:7b:fc:fe:4b: 65:16:9e:59:07:0b:2f:15:f9:6c:39:21:1a:5c:8f:90:a2:d7: fd:91:58:76 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUV6wjP14UZR6zunZIuKPvFl/IaCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwMzJaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDc3MjZiZjk4NjRhYWU3N2YyMDJiOGZkM2FjOTgyMjYxY2M1OWM0NGE2NGM4 OWExNTFlOWNiYTU0YmExN2M4NGExLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ/T1vVkgbx6VkIFxIfc//sl+F2TaG/FL1FdvfANj+RbvE84pwfEZlcY0FbN Wi/LxBYCRCfLxJsxOir4V54T+5r4lA7ePiJpSFlRFAPkCxEX1BhUqSF+tn9DxeJo CJjZKy3u2H1jRfPWL7cXDHesoMekdXAUPJb93Pi5fR16IjUh9Wopo1qzxH0G8RLg 297bfZBD48v7dYUmbkdMKFV9TzTWUvGGLP3CFC3ry/IfOmtOvUgm9bvHSDrImeiv lcz9EMlXoZlDlFg08Pf/n/Y5GjHh8XwpCUmOVsPkXJ9PWnyG8T9bCKFN65/LzSeT n5Dmn97FbkCbRpZQh+M70DtMWdUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQhTYJ5 xsc3+WIt7R2gpqPLCPjcpTAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv NDMxOGMzZjAtYzZhNy00MzBjLWJmYWQtNjQ1ZDlhZDgxNGQwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABP8KA MA0GCSqGSIb3DQEBCwUAA4IBAQCJowyVPLAMGbtkucWFLA2SqIuLHJh1KizVxaUN IqNRqb0Ds9R1foROPph+4t5evQxztjR3ky1OpmCaZsxTrD56kl+iFeAz0E23neJG rKOEf9Rg+lcaDIP258OSGYXnjMlisSTEP6TQIQadX0PaItELz092670LG4s0AWmK 4/rKn/Godst+QN6iV5IPsA0yxZThwb65SSMYse4cjtKHpfZ+YUrRebCk8udFg4Vi IIgnTMPSqBsMosbpwRcMgjplZ8NyAEFkzozJzAeEm88UgKIhEg7u7Axc83QUSH6s 8KXecosvCIOTIHv8/ktlFp5ZBwsvFflsOSEaXI+Qotf9kVh2 -----END CERTIFICATE-----Generated at Mon Dec 15 17:06:11 2025 by rpki-client