$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/1/3130332e3133392e38382e302f32342d3234203d3e20323134383039.roa File: 3130332e3133392e38382e302f32342d3234203d3e20323134383039.roa (raw, json) Hash identifier: aBp6U2aVMH3hSM5eeFVi+p63pJd0WYDoQYC72uEJ/w8= Subject key identifier: 20:B0:43:A5:73:A0:98:8D:37:3A:06:65:1E:04:F0:D4:29:27:F8:C5 Certificate issuer: /CN=307456E03A11DBB48443E93538958B15B4E9E0F0 Certificate serial: 2F57A7B8FA7C3E496A75244A40A640F21D458233 Authority key identifier: 30:74:56:E0:3A:11:DB:B4:84:43:E9:35:38:95:8B:15:B4:E9:E0:F0 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/307456E03A11DBB48443E93538958B15B4E9E0F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/1/3130332e3133392e38382e302f32342d3234203d3e20323134383039.roa Signing time: Wed 23 Jul 2025 22:06:09 +0000 ROA not before: Wed 23 Jul 2025 22:01:09 +0000 ROA not after: Wed 22 Jul 2026 22:06:09 +0000 asID: 214809 IP address blocks: 103.139.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/1/307456E03A11DBB48443E93538958B15B4E9E0F0.crl rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/1/307456E03A11DBB48443E93538958B15B4E9E0F0.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/307456E03A11DBB48443E93538958B15B4E9E0F0.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 28 Jul 2025 06:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:57:a7:b8:fa:7c:3e:49:6a:75:24:4a:40:a6:40:f2:1d:45:82:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307456E03A11DBB48443E93538958B15B4E9E0F0 Validity Not Before: Jul 23 22:01:09 2025 GMT Not After : Jul 22 22:06:09 2026 GMT Subject: CN=20B043A573A0988D373A06651E04F0D42927F8C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:77:73:44:fd:77:06:57:5e:68:b3:a5:79:58: 14:89:f9:4a:fe:d8:20:01:b3:74:ca:f5:7d:8c:70: 6c:22:85:6c:4e:54:11:12:b4:1f:55:f5:fa:bd:15: 64:e8:6a:c3:62:8e:95:2f:f9:74:24:7f:1c:08:66: 58:5b:f8:33:ef:5a:f5:b6:75:62:03:b4:fd:d9:e2: 6a:a8:f8:a3:b8:b7:d9:be:d6:d9:9d:f4:e8:3a:be: aa:ed:6b:d9:2a:33:96:c7:f6:fc:95:9b:b0:7a:94: b6:75:4b:d0:2c:f3:4c:78:39:ba:84:e8:41:2e:73: 9d:c2:eb:15:ee:d5:c0:a9:12:ef:3c:e8:e9:eb:8b: 89:f5:ae:59:1a:c0:4e:58:25:d1:2b:a3:58:f0:87: 39:1b:77:9b:21:48:89:f6:d2:3b:90:cd:86:12:4c: 10:9f:b2:51:0a:51:9a:09:4e:f2:d5:3c:a8:8c:35: 13:2c:fd:8b:ab:34:53:64:46:e7:7a:91:fc:5d:04: 06:91:5e:33:e8:b5:ed:d9:83:7e:d2:5c:88:96:48: c8:6d:20:f4:65:80:d1:6d:f2:c9:48:0e:33:d4:53: 50:3f:68:c7:cc:e8:17:b1:0e:50:25:67:15:4a:ff: 0d:a1:24:22:21:6e:52:9f:c2:0a:71:f4:e7:6a:f0: 15:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B0:43:A5:73:A0:98:8D:37:3A:06:65:1E:04:F0:D4:29:27:F8:C5 X509v3 Authority Key Identifier: keyid:30:74:56:E0:3A:11:DB:B4:84:43:E9:35:38:95:8B:15:B4:E9:E0:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/1/307456E03A11DBB48443E93538958B15B4E9E0F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/307456E03A11DBB48443E93538958B15B4E9E0F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/1/3130332e3133392e38382e302f32342d3234203d3e20323134383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.88.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:10:88:aa:13:e9:35:0c:26:7a:0f:1e:f9:55:45:3a:7a:a1: f0:82:2e:5a:c7:4a:bc:7f:6a:ed:c3:21:50:eb:65:4e:0f:a2: 1b:b7:5e:4f:77:9d:cf:85:e5:77:94:da:fe:58:86:37:60:1b: 43:96:a6:2f:d5:17:df:e2:1b:9f:22:85:e9:a4:a8:92:7d:df: fb:6c:4b:e1:37:a5:63:82:7f:67:3d:12:64:5c:3f:5c:ae:39: c5:0f:0d:8e:47:e8:3f:82:62:ed:14:bd:e2:d2:5d:60:41:94: 70:91:db:28:40:73:7d:8d:59:c0:ba:20:46:ef:66:0e:0e:00: 99:3b:f9:50:61:b0:1a:a8:86:84:51:19:b4:b8:8f:61:3b:e7: d8:ae:2d:bd:32:f4:c8:c1:e0:3d:42:5c:61:dd:06:ea:ec:e4: 98:9c:fb:79:24:27:7c:9e:c4:d0:ee:ff:ac:91:d4:28:b9:ac: 11:b1:43:91:a4:20:eb:8d:17:3c:fe:d6:aa:bb:c9:63:58:27: 5c:33:4b:ef:48:2c:9a:04:23:ec:63:bc:5f:01:89:78:a9:46: 5a:08:1f:d6:14:6b:6a:a1:84:25:77:02:25:8d:22:9e:9b:a7: 27:90:25:cc:1a:40:6e:7f:5c:c2:f1:09:3e:5d:89:68:ec:d9: b8:c4:28:cd -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUL1enuPp8PklqdSRKQKZA8h1FgjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA3NDU2RTAzQTExREJCNDg0NDNFOTM1Mzg5NThCMTVC NEU5RTBGMDAeFw0yNTA3MjMyMjAxMDlaFw0yNjA3MjIyMjA2MDlaMDMxMTAvBgNV BAMTKDIwQjA0M0E1NzNBMDk4OEQzNzNBMDY2NTFFMDRGMEQ0MjkyN0Y4QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZd3NE/XcGV15os6V5WBSJ+Ur+ 2CABs3TK9X2McGwihWxOVBEStB9V9fq9FWToasNijpUv+XQkfxwIZlhb+DPvWvW2 dWIDtP3Z4mqo+KO4t9m+1tmd9Og6vqrta9kqM5bH9vyVm7B6lLZ1S9As80x4ObqE 6EEuc53C6xXu1cCpEu886Onri4n1rlkawE5YJdEro1jwhzkbd5shSIn20juQzYYS TBCfslEKUZoJTvLVPKiMNRMs/YurNFNkRud6kfxdBAaRXjPote3Zg37SXIiWSMht IPRlgNFt8slIDjPUU1A/aMfM6BexDlAlZxVK/w2hJCIhblKfwgpx9Odq8BVVAgMB AAGjggJvMIICazAdBgNVHQ4EFgQUILBDpXOgmI03OgZlHgTw1Ckn+MUwHwYDVR0j BBgwFoAUMHRW4DoR27SEQ+k1OJWLFbTp4PAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzEwOThjMjMtYTk3Ny00ZjlhLTk3YzktY2Q0ZTc1OWRl YTA5LzEvMzA3NDU2RTAzQTExREJCNDg0NDNFOTM1Mzg5NThCMTVCNEU5RTBGMC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMzA3NDU2RTAzQTExREJCNDg0NDNFOTM1Mzg5NThCMTVCNEU5 RTBGMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNzEwOThjMjMt YTk3Ny00ZjlhLTk3YzktY2Q0ZTc1OWRlYTA5LzEvMzEzMDMzMmUzMTMzMzkyZTM4 MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzQzODMwMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABni1gwDQYJKoZIhvcNAQELBQADggEBAE4QiKoT6TUMJnoPHvlVRTp6ofCCLlrH Srx/au3DIVDrZU4Pohu3Xk93nc+F5XeU2v5YhjdgG0OWpi/VF9/iG58ihemkqJJ9 3/tsS+E3pWOCf2c9EmRcP1yuOcUPDY5H6D+CYu0UveLSXWBBlHCR2yhAc32NWcC6 IEbvZg4OAJk7+VBhsBqohoRRGbS4j2E759iuLb0y9MjB4D1CXGHdBurs5Jic+3kk J3yexNDu/6yR1Ci5rBGxQ5GkIOuNFzz+1qq7yWNYJ1wzS+9ILJoEI+xjvF8BiXip RloIH9YUa2qhhCV3AiWNIp6bpyeQJcwaQG5/XMLxCT5diWjs2bjEKM0= -----END CERTIFICATE-----Generated at Sun Jul 27 14:49:55 2025 by rpki-client