This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/78ea1ce2-8d09-441d-ad92-848a5871e58b.roa File: 78ea1ce2-8d09-441d-ad92-848a5871e58b.roa (raw, json) Hash identifier: JyxiBdsdj75mEzfaZ6KYKMSdlKPLMnif4BJvtXVYrYw= Subject key identifier: 5A:19:8C:BF:C4:21:0A:2D:2B:DA:1A:53:C2:11:E1:15:05:C4:5F:1D Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Certificate serial: 663087B2E178DF6AC8E2F80F2B34C3E25CF83A93 Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/78ea1ce2-8d09-441d-ad92-848a5871e58b.roa Signing time: Fri 24 Oct 2025 00:30:34 +0000 ROA not before: Fri 24 Oct 2025 00:30:34 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2001:3fc3::/36 maxlen: 48 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 66:30:87:b2:e1:78:df:6a:c8:e2:f8:0f:2b:34:c3:e2:5c:f8:3a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc Validity Not Before: Oct 24 00:30:34 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=764244c0647f9f11379207612bf862a7347636ebe162745811984df4db158ffd, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:97:ac:f5:2a:e5:d7:80:77:3d:92:88:17:af: 59:98:be:21:f6:39:a5:7c:67:1e:48:b9:91:44:e2: fd:c8:c7:03:1e:0b:ce:0c:b2:20:45:f4:ad:8f:b7: 66:c9:d6:cb:70:04:e0:ae:81:2b:c9:88:74:57:87: 2c:7b:70:86:f4:2c:4e:95:e4:b3:ce:34:ae:c6:64: 3a:32:63:3d:7f:04:97:55:7e:f1:ca:68:9d:41:7f: a9:05:24:39:e7:6a:29:6a:58:20:a0:28:16:2f:3a: 7b:ee:b3:f1:fc:61:d4:56:14:47:1c:32:56:c7:e2: 41:ca:e5:a8:d3:8c:e6:b5:93:8d:15:a3:f1:cf:17: f6:7f:a3:2f:c3:59:ad:dd:5b:c5:25:b4:e8:0d:27: 1c:f4:67:df:ed:08:64:dc:91:f7:3b:f0:b0:9f:38: 45:de:51:53:f5:4f:80:da:1a:6a:8e:b1:96:2a:a7: 2a:04:be:87:4d:03:b3:7d:fe:52:37:00:f8:5d:b8: a1:5d:e4:8d:3e:02:64:e5:55:e6:86:9a:6c:b6:66: 0c:48:24:e5:5f:1c:60:1d:a7:83:36:b6:a8:f7:04: 77:e7:f5:a2:85:9e:b6:f5:b1:94:0a:c6:6d:b4:bf: 35:57:12:59:b3:6d:c4:69:0b:5b:52:26:1c:6f:1d: 49:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:19:8C:BF:C4:21:0A:2D:2B:DA:1A:53:C2:11:E1:15:05:C4:5F:1D X509v3 Authority Key Identifier: keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/78ea1ce2-8d09-441d-ad92-848a5871e58b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3fc3::/36 Signature Algorithm: sha256WithRSAEncryption 50:34:f3:82:78:40:ac:b2:06:39:a3:f8:5e:02:63:ea:85:78: b4:77:39:99:c2:37:8f:a6:8f:99:45:81:8e:d6:5f:d9:91:69: a7:ed:b9:ef:5b:8f:21:b9:a3:9c:56:b7:a9:0c:d6:c3:cd:41: 5b:30:e7:d3:87:89:b7:fa:c3:8a:f9:ed:45:3e:84:77:fb:1b: 3d:d7:a2:dc:75:48:22:61:2d:7a:5c:b6:91:4a:db:26:56:92: 4d:2c:0a:5b:eb:1c:c9:fe:5b:87:52:22:54:50:67:49:76:17: 23:ac:b2:9a:8f:ce:aa:7f:c0:83:ce:25:1c:51:83:eb:bb:91: 1e:84:c2:f1:e3:ab:31:a5:c3:80:96:10:10:8c:fd:f6:b1:bc: 35:14:84:44:0b:fa:f1:a0:bd:5b:04:06:1e:16:ff:4e:d3:4b: 09:8c:c6:4b:8b:2c:97:a8:31:2b:67:bd:ce:d3:a5:c0:12:e1: 68:12:0e:98:cd:42:0d:eb:de:1a:40:a2:82:5f:e8:95:6b:be: 85:9a:48:80:6b:d0:ca:63:fb:1d:47:a1:cc:74:e1:a7:24:84: 84:08:7d:67:45:52:43:48:39:a8:cf:f1:ba:b2:e2:48:7a:50: 4d:f8:9d:b8:ea:2c:d1:56:d7:8f:67:d0:74:38:01:03:0b:6a: 7a:b9:57:f3 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUZjCHsuF432rI4vgPKzTD4lz4OpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1 NTU0ZGZiYzAeFw0yNTEwMjQwMDMwMzRaFw0yNTExMjgyMzU5NTlaMHoxSTBHBgNV BAUTQDc2NDI0NGMwNjQ3ZjlmMTEzNzkyMDc2MTJiZjg2MmE3MzQ3NjM2ZWJlMTYy NzQ1ODExOTg0ZGY0ZGIxNThmZmQxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4 NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKXrPUq5deAdz2SiBevWZi+IfY5pXxnHki5kUTi/cjHAx4LzgyyIEX0rY+3 ZsnWy3AE4K6BK8mIdFeHLHtwhvQsTpXks840rsZkOjJjPX8El1V+8cponUF/qQUk OedqKWpYIKAoFi86e+6z8fxh1FYURxwyVsfiQcrlqNOM5rWTjRWj8c8X9n+jL8NZ rd1bxSW06A0nHPRn3+0IZNyR9zvwsJ84Rd5RU/VPgNoaao6xliqnKgS+h00Ds33+ UjcA+F24oV3kjT4CZOVV5oaabLZmDEgk5V8cYB2ngza2qPcEd+f1ooWetvWxlArG bbS/NVcSWbNtxGkLW1ImHG8dSWcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRaGYy/ xCEKLSvaGlPCEeEVBcRfHTAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv NzhlYTFjZTItOGQwOS00NDFkLWFkOTItODQ4YTU4NzFlNThiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABP8MA MA0GCSqGSIb3DQEBCwUAA4IBAQBQNPOCeECssgY5o/heAmPqhXi0dzmZwjePpo+Z RYGO1l/ZkWmn7bnvW48huaOcVrepDNbDzUFbMOfTh4m3+sOK+e1FPoR3+xs916Lc dUgiYS16XLaRStsmVpJNLApb6xzJ/luHUiJUUGdJdhcjrLKaj86qf8CDziUcUYPr u5EehMLx46sxpcOAlhAQjP32sbw1FIREC/rxoL1bBAYeFv9O00sJjMZLiyyXqDEr Z73O06XAEuFoEg6YzUIN694aQKKCX+iVa76FmkiAa9DKY/sdR6HMdOGnJISECH1n RVJDSDmoz/G6suJIelBN+J246izRVtePZ9B0OAEDC2p6uVfz -----END CERTIFICATE-----Generated at Wed Dec 17 16:46:02 2025 by rpki-client