This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/ea65bcc4-9fce-4b6f-a493-4a17ef1306cf.roa File: ea65bcc4-9fce-4b6f-a493-4a17ef1306cf.roa (raw, json) Hash identifier: uANFVJG941JhHG98qd5lvZz33PhKA2mKoCJA7iAupEA= Subject key identifier: 0D:00:29:62:0C:5F:D7:97:FB:FA:FC:98:1D:33:20:2D:1F:53:01:D0 Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 2B215D63696CA13A5D345100422479FC92FF59A0 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/ea65bcc4-9fce-4b6f-a493-4a17ef1306cf.roa Signing time: Fri 24 Oct 2025 00:30:51 +0000 ROA not before: Fri 24 Oct 2025 00:30:51 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc7:1000::/36 maxlen: 36 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 2b:21:5d:63:69:6c:a1:3a:5d:34:51:00:42:24:79:fc:92:ff:59:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:51 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=6750eb40935b3835411db990ba1c2faa87605272b9cfbde7df194b0b5347937b, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:59:c6:ea:01:01:43:bd:05:03:a9:90:2c:d1: 08:f9:d0:fb:6d:61:d7:4e:b7:28:62:12:00:55:da: 48:01:08:d8:ea:7c:33:8b:01:3f:da:84:48:81:88: 67:4c:21:48:68:3e:62:81:f3:3a:6a:9d:65:0f:ac: be:60:52:2f:81:99:eb:bf:02:d3:75:aa:86:59:80: e4:8f:ae:77:62:99:dd:50:97:0c:f3:b7:0f:05:5e: 79:07:07:cd:1d:91:2d:b0:b7:45:10:f6:81:b8:05: 3b:6c:7a:5f:33:60:25:ff:7a:f8:f2:a3:6b:96:b4: 62:bb:e6:a3:70:a4:3f:d4:11:6d:56:46:4a:91:3a: 3f:ba:e7:13:a8:5d:53:67:c5:01:7d:5f:dd:29:b6: f4:69:9a:c1:d6:cb:ce:30:31:b7:fd:47:6a:65:d8: 9d:d4:1d:a6:99:2b:4a:2d:23:ed:7e:22:81:d0:37: c9:29:21:81:c5:77:3b:f1:12:aa:63:d7:a5:3a:8c: 06:ad:d0:43:94:3b:83:4b:76:b6:28:59:8b:e6:df: 78:ca:6d:06:f4:d2:65:87:48:d4:5e:42:f5:3b:fb: 03:25:ec:f0:21:29:19:d7:ce:02:f9:27:e4:f0:7a: 0c:a8:16:47:c7:e0:a2:1c:35:46:42:cf:19:4a:cb: 9b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:00:29:62:0C:5F:D7:97:FB:FA:FC:98:1D:33:20:2D:1F:53:01:D0 X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/ea65bcc4-9fce-4b6f-a493-4a17ef1306cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc7:1000::/36 Signature Algorithm: sha256WithRSAEncryption aa:44:58:3e:c3:f4:33:dc:06:99:24:52:53:28:b2:2a:39:f2: 8c:61:dc:32:78:42:ea:42:99:ef:83:77:2d:8a:6c:88:91:7d: 20:29:44:c7:50:e9:b4:97:b9:a8:83:59:25:36:44:20:0c:2f: 8b:d6:16:97:dc:18:10:44:5c:47:0c:07:ee:39:52:8b:c0:26: 1c:08:19:0b:11:9a:e3:e1:e4:a0:bf:b2:14:f1:37:c2:79:70: ae:4f:0d:37:5b:b2:d6:50:c8:6d:8e:0d:8b:a3:0d:0b:30:56: bd:b0:f8:b5:f6:8e:a9:df:1d:f2:f5:40:d9:7c:39:ef:e5:bb: 14:04:eb:9f:bf:a2:f6:e4:e5:e8:c9:f1:ba:53:8c:4e:45:85: 70:18:31:73:16:c9:5f:86:1b:f5:10:d9:5d:31:f7:9d:54:0e: 00:04:eb:2a:2e:0a:fd:11:48:19:1a:ba:09:36:a0:c1:c0:cc: c7:67:01:4e:5d:76:12:03:d4:c5:ce:1c:ef:5a:9f:b1:35:97: 8e:4f:ef:72:03:21:88:a5:b0:66:db:0e:e0:1f:89:65:2e:c9: 8f:08:a9:f6:f0:0d:82:4e:ce:56:e2:a7:a6:65:54:03:c6:33: d9:33:a0:34:0a:cd:ba:d0:66:5c:cf:db:ab:a8:f0:50:5c:52: c6:a1:6e:36 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUKyFdY2lsoTpdNFEAQiR5/JL/WaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwNTFaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDY3NTBlYjQwOTM1YjM4MzU0MTFkYjk5MGJhMWMyZmFhODc2MDUyNzJiOWNm YmRlN2RmMTk0YjBiNTM0NzkzN2IxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJVZxuoBAUO9BQOpkCzRCPnQ+21h1063KGISAFXaSAEI2Op8M4sBP9qESIGI Z0whSGg+YoHzOmqdZQ+svmBSL4GZ678C03WqhlmA5I+ud2KZ3VCXDPO3DwVeeQcH zR2RLbC3RRD2gbgFO2x6XzNgJf96+PKja5a0Yrvmo3CkP9QRbVZGSpE6P7rnE6hd U2fFAX1f3Sm29GmawdbLzjAxt/1HamXYndQdppkrSi0j7X4igdA3ySkhgcV3O/ES qmPXpTqMBq3QQ5Q7g0t2tihZi+bfeMptBvTSZYdI1F5C9Tv7AyXs8CEpGdfOAvkn 5PB6DKgWR8fgohw1RkLPGUrLm3ECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQNACli DF/Xl/v6/JgdMyAtH1MB0DAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv ZWE2NWJjYzQtOWZjZS00YjZmLWE0OTMtNGExN2VmMTMwNmNmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABP8cQ MA0GCSqGSIb3DQEBCwUAA4IBAQCqRFg+w/Qz3AaZJFJTKLIqOfKMYdwyeELqQpnv g3ctimyIkX0gKUTHUOm0l7mog1klNkQgDC+L1haX3BgQRFxHDAfuOVKLwCYcCBkL EZrj4eSgv7IU8TfCeXCuTw03W7LWUMhtjg2Low0LMFa9sPi19o6p3x3y9UDZfDnv 5bsUBOufv6L25OXoyfG6U4xORYVwGDFzFslfhhv1ENldMfedVA4ABOsqLgr9EUgZ GroJNqDBwMzHZwFOXXYSA9TFzhzvWp+xNZeOT+9yAyGIpbBm2w7gH4llLsmPCKn2 8A2CTs5W4qemZVQDxjPZM6A0Cs260GZcz9urqPBQXFLGoW42 -----END CERTIFICATE-----Generated at Tue Dec 16 00:32:30 2025 by rpki-client