$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/2/32372e302e3233342e302f32342d3332203d3e20323035383438.roa File: 32372e302e3233342e302f32342d3332203d3e20323035383438.roa (raw, json) Hash identifier: Hbng6Qs3gtMCfgNOvlhVaZG81qH5D1zb+3kXz9K52lY= Subject key identifier: C4:96:6E:C0:BA:76:D6:06:F4:D8:CF:98:9A:48:0D:26:FA:6A:24:FE Certificate issuer: /CN=8C0F9F7AA93BA1735F59A004E37710C51DFBB593 Certificate serial: 16619921E9F8122D2E79B59055013148370A4FE5 Authority key identifier: 8C:0F:9F:7A:A9:3B:A1:73:5F:59:A0:04:E3:77:10:C5:1D:FB:B5:93 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.cer Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/2/32372e302e3233342e302f32342d3332203d3e20323035383438.roa Signing time: Wed 24 Sep 2025 16:38:55 +0000 ROA not before: Wed 24 Sep 2025 16:33:55 +0000 ROA not after: Wed 23 Sep 2026 16:38:55 +0000 asID: 205848 IP address blocks: 27.0.234.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.sn-p.io/repo/sn-p-io/2/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.crl rsync://rpki.sn-p.io/repo/sn-p-io/2/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 07:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:61:99:21:e9:f8:12:2d:2e:79:b5:90:55:01:31:48:37:0a:4f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C0F9F7AA93BA1735F59A004E37710C51DFBB593 Validity Not Before: Sep 24 16:33:55 2025 GMT Not After : Sep 23 16:38:55 2026 GMT Subject: CN=C4966EC0BA76D606F4D8CF989A480D26FA6A24FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d8:6c:09:52:9d:b5:01:15:0b:a9:3a:6c:2c: 98:8b:cb:e3:b4:77:53:be:49:dc:ef:60:34:31:e5: 8c:b7:88:f8:f0:15:e4:b1:3c:87:06:63:4b:c6:dc: 51:bc:62:c9:4c:76:9d:9e:2c:69:db:48:4e:06:36: 19:8e:d1:79:24:3e:c2:4e:81:b0:5a:92:d5:b5:64: 74:9d:b2:3d:df:55:24:5f:36:e8:0d:fb:70:50:cf: 6e:bd:44:f0:12:36:5d:20:81:73:e5:dc:42:fc:49: 15:60:99:54:71:ff:03:22:e4:61:17:09:0d:84:0b: ca:b5:e2:f2:be:b4:5b:ff:cb:6c:eb:d6:44:2c:c1: 66:25:76:93:6e:f9:e0:3f:6c:e6:a2:56:98:af:ef: 51:39:72:de:ea:f6:89:01:13:c3:e6:d0:18:0e:97: 85:79:30:91:5b:a9:60:91:9a:28:a5:a4:80:c3:77: fd:4c:d0:c3:41:3f:bf:90:f3:4a:01:63:a7:4f:dc: 93:e6:c7:41:59:17:b5:34:4e:87:5b:90:24:44:ba: 12:87:ae:c0:57:58:ab:68:c6:dd:49:d7:5e:92:c6: 31:8a:64:6e:65:63:7e:8f:ea:e1:82:60:68:4c:cc: b8:84:c3:b4:38:74:12:72:18:db:8d:97:38:4d:9a: 4f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:96:6E:C0:BA:76:D6:06:F4:D8:CF:98:9A:48:0D:26:FA:6A:24:FE X509v3 Authority Key Identifier: keyid:8C:0F:9F:7A:A9:3B:A1:73:5F:59:A0:04:E3:77:10:C5:1D:FB:B5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sn-p.io/repo/sn-p-io/2/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.cer Subject Information Access: Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/2/32372e302e3233342e302f32342d3332203d3e20323035383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.234.0/24 Signature Algorithm: sha256WithRSAEncryption 15:41:b8:06:c9:d9:c7:c6:e1:29:15:27:fe:2f:49:0a:64:d2: e7:89:85:01:2d:69:19:a0:ec:7b:93:94:27:55:93:6c:ee:fc: e5:ef:72:f3:d3:e0:a1:87:4e:89:10:d6:0d:e8:73:52:65:48: 60:3e:9d:00:09:fe:be:9f:d6:bc:eb:dd:c6:40:3b:a6:91:89: 2f:f8:06:32:67:07:a9:ce:48:a3:ce:2e:4a:24:82:5d:c2:c0: 79:41:e2:61:80:96:db:3a:19:df:ce:9c:28:d3:6d:3d:bf:9f: bf:42:c1:b4:1b:d4:dd:9c:b0:f2:f7:38:01:79:79:ae:09:0d: 78:5a:a1:3c:f8:de:6b:8e:0b:be:1d:0b:53:d0:e0:8e:95:5a: 02:6b:65:4f:dd:a0:c4:c4:f4:41:5e:b6:f6:a9:93:bc:0f:a0: 3c:94:95:16:89:55:4b:65:fa:89:45:97:c9:e5:da:12:f7:81: ab:44:f7:65:1d:ae:73:f0:b2:34:82:25:00:62:f0:fb:08:89: ed:e2:1d:4b:de:c6:15:85:09:fe:99:74:33:35:b1:af:09:37: 52:6c:1a:ad:a7:03:08:5b:43:3b:d1:8f:59:c6:31:d2:61:58: 56:63:f8:8d:66:e9:13:cc:34:b5:e6:fa:c9:e0:c7:fb:68:d5: bc:68:07:60 -----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgIUFmGZIen4Ei0uebWQVQExSDcKT+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMwRjlGN0FBOTNCQTE3MzVGNTlBMDA0RTM3NzEwQzUx REZCQjU5MzAeFw0yNTA5MjQxNjMzNTVaFw0yNjA5MjMxNjM4NTVaMDMxMTAvBgNV BAMTKEM0OTY2RUMwQkE3NkQ2MDZGNEQ4Q0Y5ODlBNDgwRDI2RkE2QTI0RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb2GwJUp21ARULqTpsLJiLy+O0 d1O+SdzvYDQx5Yy3iPjwFeSxPIcGY0vG3FG8YslMdp2eLGnbSE4GNhmO0XkkPsJO gbBaktW1ZHSdsj3fVSRfNugN+3BQz269RPASNl0ggXPl3EL8SRVgmVRx/wMi5GEX CQ2EC8q14vK+tFv/y2zr1kQswWYldpNu+eA/bOaiVpiv71E5ct7q9okBE8Pm0BgO l4V5MJFbqWCRmiilpIDDd/1M0MNBP7+Q80oBY6dP3JPmx0FZF7U0TodbkCREuhKH rsBXWKtoxt1J116SxjGKZG5lY36P6uGCYGhMzLiEw7Q4dBJyGNuNlzhNmk/nAgMB AAGjggICMIIB/jAdBgNVHQ4EFgQUxJZuwLp21gb02M+YmkgNJvpqJP4wHwYDVR0j BBgwFoAUjA+feqk7oXNfWaAE43cQxR37tZMwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraS5zbi1wLmlvL3JlcG8vc24tcC1pby8y LzhDMEY5RjdBQTkzQkExNzM1RjU5QTAwNEUzNzcxMEM1MURGQkI1OTMuY3JsMIGT BggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1ycHMu YXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJl M2Y5ZC83LzhDMEY5RjdBQTkzQkExNzM1RjU5QTAwNEUzNzcxMEM1MURGQkI1OTMu Y2VyMHgGCCsGAQUFBwELBGwwajBoBggrBgEFBQcwC4ZccnN5bmM6Ly9ycGtpLnNu LXAuaW8vcmVwby9zbi1wLWlvLzIvMzIzNzJlMzAyZTMyMzMzNDJlMzAyZjMyMzQy ZDMzMzIyMDNkM2UyMDMyMzAzNTM4MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABsA6jANBgkqhkiG 9w0BAQsFAAOCAQEAFUG4BsnZx8bhKRUn/i9JCmTS54mFAS1pGaDse5OUJ1WTbO78 5e9y89PgoYdOiRDWDehzUmVIYD6dAAn+vp/WvOvdxkA7ppGJL/gGMmcHqc5Io84u SiSCXcLAeUHiYYCW2zoZ386cKNNtPb+fv0LBtBvU3Zyw8vc4AXl5rgkNeFqhPPje a44Lvh0LU9DgjpVaAmtlT92gxMT0QV629qmTvA+gPJSVFolVS2X6iUWXyeXaEveB q0T3ZR2uc/CyNIIlAGLw+wiJ7eIdS97GFYUJ/pl0MzWxrwk3UmwaracDCFtDO9GP WcYx0mFYVmP4jWbpE8w0teb6yeDH+2jVvGgHYA== -----END CERTIFICATE-----Generated at Wed Oct 8 22:58:46 2025 by rpki-client