This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/6ab0b120-4886-40dd-bd1e-286dca434f7f.roa File: 6ab0b120-4886-40dd-bd1e-286dca434f7f.roa (raw, json) Hash identifier: opr+H1Vzk/y5piYnH2zoPhA7GM9a/KaYzTajsYm0g+c= Subject key identifier: EC:FD:A9:EE:8D:91:B2:08:41:02:E9:C2:31:FC:7C:5E:E3:7B:9F:EF Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 2A7BF1161414CB6F274DE7807DE6228522CE6801 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/6ab0b120-4886-40dd-bd1e-286dca434f7f.roa Signing time: Fri 24 Oct 2025 00:31:03 +0000 ROA not before: Fri 24 Oct 2025 00:31:03 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc1:8800::/38 maxlen: 38 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 2a:7b:f1:16:14:14:cb:6f:27:4d:e7:80:7d:e6:22:85:22:ce:68:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:31:03 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=d5a03909c9caf20772409efeaaf0417674a1aee504cfa87726b64ccf35d4fee0, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6f:e3:c5:c9:ed:4f:3a:09:87:f0:89:ec:3f: 8c:c5:bb:77:0e:a2:7e:91:7b:54:b7:74:c3:a7:72: d4:fb:6f:d4:dc:59:aa:1e:62:c6:2f:b9:57:b3:e6: ad:16:06:d8:01:b0:a4:87:14:8c:3a:f3:0d:19:da: ac:b4:7c:ef:38:fa:1e:72:91:a0:f7:6a:b4:26:80: f2:4d:96:f7:31:dd:ec:2c:0c:ba:4d:aa:bf:0a:37: d4:81:cb:ea:7b:7c:c8:ed:60:69:fa:61:f8:06:45: 21:c3:8c:db:83:55:12:dc:9f:80:c6:21:7f:77:81: 2d:f8:4e:b6:d9:a2:4a:b7:fd:89:5c:01:50:9a:c1: ff:70:fb:cb:2b:3e:26:ae:9b:50:ae:99:97:f7:f3: 60:67:34:f2:7e:8a:67:bd:66:5d:e4:76:72:92:29: 43:07:6d:0e:ca:76:6c:4f:e9:1e:16:6b:3f:7c:20: 34:c6:fd:d2:13:9b:e5:d6:dd:32:04:6e:7a:f4:0d: 5a:46:98:ec:e3:97:a1:ce:a1:4b:d2:b2:d6:18:01: d4:66:b2:3f:3a:85:66:ad:74:09:9c:2b:64:18:0c: 5a:ae:1f:2b:1f:0f:d2:81:19:21:3a:1a:2a:79:7a: 3b:f4:f6:b3:24:3f:8f:5f:a0:15:80:1b:fa:4b:80: 75:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:FD:A9:EE:8D:91:B2:08:41:02:E9:C2:31:FC:7C:5E:E3:7B:9F:EF X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/6ab0b120-4886-40dd-bd1e-286dca434f7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc1:8800::/38 Signature Algorithm: sha256WithRSAEncryption 67:7c:e9:ff:55:62:44:a4:b3:dd:2d:a3:94:a8:22:26:6a:93: 1f:9b:3f:28:0d:a9:8b:32:6b:34:0c:a0:24:c0:4e:4e:b3:6c: 48:bd:57:bb:ec:72:c4:04:8a:70:a2:df:9c:a1:5d:63:00:5b: f2:57:ea:44:b3:97:b5:76:f8:2e:bc:9a:5c:e9:37:62:a2:d2: 52:17:e5:70:a7:0d:8d:ec:f4:b7:c1:1b:2d:80:9e:fa:38:31: d4:32:bb:03:41:b5:df:f9:62:6d:37:8d:e8:0c:c2:2c:12:16: 98:64:f4:96:b3:2d:0a:c7:53:83:c9:54:da:7c:c4:2e:1d:b3: 52:fc:75:9e:0d:fd:96:3d:ce:92:d7:e9:cd:d2:bc:98:10:4f: 6a:79:ac:bb:a2:13:dd:e2:22:47:9b:6e:38:33:ef:7b:c8:49: a4:9f:92:bd:ed:ab:49:52:cb:ff:10:c1:39:27:a2:d5:9a:b6: be:ff:9a:16:b1:86:b2:f1:b7:6e:89:f8:07:f5:4c:de:03:f9: 85:ea:5a:5d:ed:75:63:f2:24:bf:91:59:e7:38:37:7f:af:cf: 68:10:c8:5f:8a:6c:fa:d8:c1:fe:65:1f:76:65:0f:a0:35:6e: ff:45:0d:a0:a2:87:45:be:83:2e:13:a0:8e:8c:0c:60:6d:0a: 56:55:19:bf -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUKnvxFhQUy28nTeeAfeYihSLOaAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMxMDNaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQGQ1YTAzOTA5YzljYWYyMDc3MjQwOWVmZWFhZjA0MTc2NzRhMWFlZTUwNGNm YTg3NzI2YjY0Y2NmMzVkNGZlZTAxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBv48XJ7U86CYfwiew/jMW7dw6ifpF7VLd0w6dy1Ptv1NxZqh5ixi+5V7Pm rRYG2AGwpIcUjDrzDRnarLR87zj6HnKRoPdqtCaA8k2W9zHd7CwMuk2qvwo31IHL 6nt8yO1gafph+AZFIcOM24NVEtyfgMYhf3eBLfhOttmiSrf9iVwBUJrB/3D7yys+ Jq6bUK6Zl/fzYGc08n6KZ71mXeR2cpIpQwdtDsp2bE/pHhZrP3wgNMb90hOb5dbd MgRuevQNWkaY7OOXoc6hS9Ky1hgB1GayPzqFZq10CZwrZBgMWq4fKx8P0oEZIToa Knl6O/T2syQ/j1+gFYAb+kuAdU0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTs/anu jZGyCEEC6cIx/Hxe43uf7zAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv NmFiMGIxMjAtNDg4Ni00MGRkLWJkMWUtMjg2ZGNhNDM0ZjdmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAiABP8GI MA0GCSqGSIb3DQEBCwUAA4IBAQBnfOn/VWJEpLPdLaOUqCImapMfmz8oDamLMms0 DKAkwE5Os2xIvVe77HLEBIpwot+coV1jAFvyV+pEs5e1dvguvJpc6TdiotJSF+Vw pw2N7PS3wRstgJ76ODHUMrsDQbXf+WJtN43oDMIsEhaYZPSWsy0Kx1ODyVTafMQu HbNS/HWeDf2WPc6S1+nN0ryYEE9qeay7ohPd4iJHm244M+97yEmkn5K97atJUsv/ EME5J6LVmra+/5oWsYay8bduifgH9UzeA/mF6lpd7XVj8iS/kVnnODd/r89oEMhf imz62MH+ZR92ZQ+gNW7/RQ2goodFvoMuE6COjAxgbQpWVRm/ -----END CERTIFICATE-----Generated at Tue Dec 16 10:57:54 2025 by rpki-client