This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/b128bc8d-b462-4700-9503-592938317487.roa File: b128bc8d-b462-4700-9503-592938317487.roa (raw, json) Hash identifier: +jh7FTSuuOvjK7x8fEb6sIqE4Uk56HYkmJX8LSbe8Ak= Subject key identifier: B3:66:40:21:42:1B:4A:AE:84:41:FD:11:C9:7F:51:BC:B4:33:05:CC Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 6745076D391490D46B1BBC656AAECA73C7DD164D Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/b128bc8d-b462-4700-9503-592938317487.roa Signing time: Fri 24 Oct 2025 00:30:45 +0000 ROA not before: Fri 24 Oct 2025 00:30:45 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc0:880::/48 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 67:45:07:6d:39:14:90:d4:6b:1b:bc:65:6a:ae:ca:73:c7:dd:16:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:45 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=f64fb367ede7dd4f8ced9932bf25db370e47ba5eff91a581c5951fcae97cbaa4, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c5:27:a8:47:4f:f5:70:30:17:54:99:85:0f: ea:ed:3d:ce:8d:79:a7:d1:5a:cd:83:19:8e:b2:a2: 64:d2:43:98:e9:c7:02:ba:56:de:32:1f:20:37:cd: 5d:6e:13:e7:23:31:62:72:c9:b2:2b:5b:a0:6f:af: 9a:19:07:eb:d8:74:90:08:e7:1d:72:fc:df:16:df: 1c:e1:64:b6:73:c5:32:b3:ac:f0:d5:f8:10:62:88: ba:0a:30:0b:e6:62:f5:35:3c:57:e3:c1:a6:a8:9d: 3f:22:fd:c9:d8:92:74:45:42:78:44:ff:a0:6c:3a: 07:54:92:81:ea:4c:ec:bd:62:4f:e9:18:0e:ee:26: 82:25:ab:aa:04:a9:19:6f:01:92:1a:c2:8a:f8:c3: d2:8c:eb:b3:ac:25:a0:48:d7:0f:58:46:a7:90:95: 6a:11:d7:60:7a:2f:ff:8d:35:0d:4f:6c:22:54:29: 32:a3:b2:c4:38:c7:e9:37:d9:79:14:72:c2:4b:0f: 3e:9f:45:86:56:15:0b:e0:0b:4c:24:79:08:cd:4a: 42:8f:78:89:33:5e:5d:1b:2f:a4:db:74:96:3a:a9: 6a:8e:1e:c9:d0:35:da:84:cd:4d:d5:3f:32:49:77: 86:f3:b7:64:ce:b2:8b:93:cb:7a:91:9c:21:52:62: 4f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:66:40:21:42:1B:4A:AE:84:41:FD:11:C9:7F:51:BC:B4:33:05:CC X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/b128bc8d-b462-4700-9503-592938317487.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc0:880::/48 Signature Algorithm: sha256WithRSAEncryption 19:c7:08:41:ed:43:5e:5f:80:ac:14:23:0b:88:c9:58:d4:8e: 3f:7c:aa:0f:0f:d3:77:89:fd:30:4d:66:16:73:45:f6:bb:e9: 6f:ef:52:e7:30:28:0c:fd:8c:0f:30:45:84:07:8e:6a:89:e0: a8:5a:5e:f0:30:85:e1:db:50:c1:19:34:11:b6:c9:9e:dc:de: 11:82:42:c1:68:c9:d7:8c:58:14:82:58:9e:24:6c:2f:11:d7: 47:7f:aa:cc:49:17:e7:d0:4c:58:b8:5f:1b:4b:a1:53:a0:60: 8e:e9:ba:91:91:01:ca:eb:34:ab:78:42:70:fd:ab:bd:d5:92: 45:47:ff:27:fa:2f:52:98:3b:41:26:fb:f9:05:9d:4d:29:06: 17:1a:55:c2:0e:67:86:6d:f4:1c:1c:1b:b9:8a:c1:d5:48:1c: be:f3:0a:19:82:d3:bb:ee:49:8c:e0:a9:fd:ee:ae:65:21:37: df:b5:16:6f:a4:b1:cb:f4:39:5c:16:ef:3d:7e:69:d7:f7:3c: 0f:31:39:f7:0a:c7:51:9d:ad:04:31:a1:36:3f:58:a0:31:77: a9:66:59:82:9c:bc:5c:7d:53:87:09:9a:32:a8:36:22:cc:8e: 69:15:55:03:8d:ec:0e:81:0a:6b:f0:39:a7:1b:1f:6a:a2:1a: c1:9c:38:10 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUZ0UHbTkUkNRrG7xlaq7Kc8fdFk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwNDVaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQGY2NGZiMzY3ZWRlN2RkNGY4Y2VkOTkzMmJmMjVkYjM3MGU0N2JhNWVmZjkx YTU4MWM1OTUxZmNhZTk3Y2JhYTQxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPFJ6hHT/VwMBdUmYUP6u09zo15p9FazYMZjrKiZNJDmOnHArpW3jIfIDfN XW4T5yMxYnLJsitboG+vmhkH69h0kAjnHXL83xbfHOFktnPFMrOs8NX4EGKIugow C+Zi9TU8V+PBpqidPyL9ydiSdEVCeET/oGw6B1SSgepM7L1iT+kYDu4mgiWrqgSp GW8BkhrCivjD0ozrs6wloEjXD1hGp5CVahHXYHov/401DU9sIlQpMqOyxDjH6TfZ eRRywksPPp9FhlYVC+ALTCR5CM1KQo94iTNeXRsvpNt0ljqpao4eydA12oTNTdU/ Mkl3hvO3ZM6yi5PLepGcIVJiT6cCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSzZkAh QhtKroRB/RHJf1G8tDMFzDAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv YjEyOGJjOGQtYjQ2Mi00NzAwLTk1MDMtNTkyOTM4MzE3NDg3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABP8AI gDANBgkqhkiG9w0BAQsFAAOCAQEAGccIQe1DXl+ArBQjC4jJWNSOP3yqDw/Td4n9 ME1mFnNF9rvpb+9S5zAoDP2MDzBFhAeOaongqFpe8DCF4dtQwRk0EbbJntzeEYJC wWjJ14xYFIJYniRsLxHXR3+qzEkX59BMWLhfG0uhU6Bgjum6kZEByus0q3hCcP2r vdWSRUf/J/ovUpg7QSb7+QWdTSkGFxpVwg5nhm30HBwbuYrB1UgcvvMKGYLTu+5J jOCp/e6uZSE337UWb6Sxy/Q5XBbvPX5p1/c8DzE59wrHUZ2tBDGhNj9YoDF3qWZZ gpy8XH1ThwmaMqg2IsyOaRVVA43sDoEKa/A5pxsfaqIawZw4EA== -----END CERTIFICATE-----Generated at Thu Dec 18 12:53:08 2025 by rpki-client