$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/2/32372e302e3233352e302f32342d3332203d3e20323035383438.roa File: 32372e302e3233352e302f32342d3332203d3e20323035383438.roa (raw, json) Hash identifier: DCknWSFkXEL9nevlPCXr7YdoenSsMMYUI7/Zj/O4jvs= Subject key identifier: 72:46:D9:1B:2E:E4:DE:0C:11:03:25:58:69:BC:4F:3D:00:FD:58:52 Certificate issuer: /CN=8C0F9F7AA93BA1735F59A004E37710C51DFBB593 Certificate serial: 36D3C27404ADE75FE4ADB40260BCF1927160BE48 Authority key identifier: 8C:0F:9F:7A:A9:3B:A1:73:5F:59:A0:04:E3:77:10:C5:1D:FB:B5:93 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.cer Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/2/32372e302e3233352e302f32342d3332203d3e20323035383438.roa Signing time: Thu 03 Jul 2025 15:52:56 +0000 ROA not before: Thu 03 Jul 2025 15:47:56 +0000 ROA not after: Thu 02 Jul 2026 15:52:56 +0000 asID: 205848 IP address blocks: 27.0.235.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.sn-p.io/repo/sn-p-io/2/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.crl rsync://rpki.sn-p.io/repo/sn-p-io/2/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:d3:c2:74:04:ad:e7:5f:e4:ad:b4:02:60:bc:f1:92:71:60:be:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C0F9F7AA93BA1735F59A004E37710C51DFBB593 Validity Not Before: Jul 3 15:47:56 2025 GMT Not After : Jul 2 15:52:56 2026 GMT Subject: CN=7246D91B2EE4DE0C1103255869BC4F3D00FD5852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:ca:ea:12:fc:77:85:b9:10:51:cb:cd:44: f2:0d:51:21:be:ed:00:58:23:69:13:80:50:82:48: ea:0b:3e:30:65:dc:c3:bf:c8:6f:c5:f0:c6:e6:2e: 02:1a:e7:dd:b9:f4:80:dd:55:f3:c3:dc:ed:2e:96: 9b:60:2d:b5:47:ce:cf:fd:3b:60:bb:58:67:9a:94: 8c:1b:e9:ca:32:e3:46:8b:cf:e0:3d:b6:49:2c:e0: b4:ef:fe:58:a7:9b:46:59:d2:ee:d7:8b:df:d4:6a: 75:54:5c:37:e0:6d:00:61:6c:b6:fe:9c:c7:9a:40: d6:d0:ed:e1:69:33:06:ee:1b:8d:dc:f0:0b:3c:3c: c1:6a:12:8b:9f:ad:2b:5c:f6:7f:fe:cf:54:b3:b8: 87:1e:ca:0d:c3:62:7f:ad:7e:a9:44:58:1e:f4:9c: 6e:f5:3c:8b:39:95:89:bf:98:ee:1b:f6:c5:d5:0c: b9:74:1d:43:a4:dc:20:6a:56:15:00:19:46:d0:f9: 05:c9:4b:87:b2:08:ea:76:fa:9a:45:fd:ca:6c:c1: 77:50:6c:94:ca:32:22:20:11:85:9a:14:a0:14:ae: 23:fa:45:78:09:4d:c4:15:e3:3b:5b:35:c9:9b:e9: 91:56:02:a5:20:97:72:ac:49:1b:20:9e:81:c7:d4: 4a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:46:D9:1B:2E:E4:DE:0C:11:03:25:58:69:BC:4F:3D:00:FD:58:52 X509v3 Authority Key Identifier: keyid:8C:0F:9F:7A:A9:3B:A1:73:5F:59:A0:04:E3:77:10:C5:1D:FB:B5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sn-p.io/repo/sn-p-io/2/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8C0F9F7AA93BA1735F59A004E37710C51DFBB593.cer Subject Information Access: Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/2/32372e302e3233352e302f32342d3332203d3e20323035383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.235.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:46:6c:ba:3a:3e:69:03:63:e7:ca:1a:40:4e:97:02:a3:a4: b8:03:4c:78:0c:50:2d:8b:3a:98:6e:53:eb:66:21:0d:37:d9: 9d:a2:d1:14:5d:4f:27:67:9a:e6:38:a0:23:10:a6:f0:61:a4: 34:82:0d:4e:c9:d0:86:3b:34:81:08:8b:92:cf:d8:4e:53:10: e7:d3:0e:96:07:89:7d:58:f4:6f:d9:1a:54:bd:ab:a5:fb:93: 2e:2c:77:91:31:56:4e:2e:1b:b8:19:c0:8c:eb:0d:ab:7f:47: da:bf:24:fb:11:5e:ea:ba:6c:8b:a2:a5:5f:d4:cd:61:36:73: b8:bf:4f:23:e6:5d:47:ae:49:3b:d6:a7:d7:ad:54:ef:9a:ee: b2:4d:50:a5:b8:97:9a:68:93:f4:1b:85:35:71:12:b0:a3:fe: 74:6d:f3:4d:98:4a:38:7c:40:8a:21:c7:ba:a2:eb:0d:c5:85: 55:9c:20:e1:2a:a9:5c:2a:64:74:21:0e:46:ca:8f:a8:47:11: f6:af:51:1a:a1:c9:50:2c:d5:17:9c:39:8b:dc:b0:c9:b5:9f: 72:e8:86:33:4e:0f:15:68:f6:d0:cd:89:32:be:eb:3a:6e:9c: 7f:54:f7:80:c2:4c:00:ea:47:e3:aa:4a:87:fc:f4:c0:eb:40: d1:33:8f:6d -----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgIUNtPCdASt51/krbQCYLzxknFgvkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMwRjlGN0FBOTNCQTE3MzVGNTlBMDA0RTM3NzEwQzUx REZCQjU5MzAeFw0yNTA3MDMxNTQ3NTZaFw0yNjA3MDIxNTUyNTZaMDMxMTAvBgNV BAMTKDcyNDZEOTFCMkVFNERFMEMxMTAzMjU1ODY5QkM0RjNEMDBGRDU4NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1RsrqEvx3hbkQUcvNRPINUSG+ 7QBYI2kTgFCCSOoLPjBl3MO/yG/F8MbmLgIa59259IDdVfPD3O0ulptgLbVHzs/9 O2C7WGealIwb6coy40aLz+A9tkks4LTv/linm0ZZ0u7Xi9/UanVUXDfgbQBhbLb+ nMeaQNbQ7eFpMwbuG43c8As8PMFqEoufrStc9n/+z1SzuIceyg3DYn+tfqlEWB70 nG71PIs5lYm/mO4b9sXVDLl0HUOk3CBqVhUAGUbQ+QXJS4eyCOp2+ppF/cpswXdQ bJTKMiIgEYWaFKAUriP6RXgJTcQV4ztbNcmb6ZFWAqUgl3KsSRsgnoHH1Eq9AgMB AAGjggICMIIB/jAdBgNVHQ4EFgQUckbZGy7k3gwRAyVYabxPPQD9WFIwHwYDVR0j BBgwFoAUjA+feqk7oXNfWaAE43cQxR37tZMwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraS5zbi1wLmlvL3JlcG8vc24tcC1pby8y LzhDMEY5RjdBQTkzQkExNzM1RjU5QTAwNEUzNzcxMEM1MURGQkI1OTMuY3JsMIGT BggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1ycHMu YXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJl M2Y5ZC83LzhDMEY5RjdBQTkzQkExNzM1RjU5QTAwNEUzNzcxMEM1MURGQkI1OTMu Y2VyMHgGCCsGAQUFBwELBGwwajBoBggrBgEFBQcwC4ZccnN5bmM6Ly9ycGtpLnNu LXAuaW8vcmVwby9zbi1wLWlvLzIvMzIzNzJlMzAyZTMyMzMzNTJlMzAyZjMyMzQy ZDMzMzIyMDNkM2UyMDMyMzAzNTM4MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABsA6zANBgkqhkiG 9w0BAQsFAAOCAQEALUZsujo+aQNj58oaQE6XAqOkuANMeAxQLYs6mG5T62YhDTfZ naLRFF1PJ2ea5jigIxCm8GGkNIINTsnQhjs0gQiLks/YTlMQ59MOlgeJfVj0b9ka VL2rpfuTLix3kTFWTi4buBnAjOsNq39H2r8k+xFe6rpsi6KlX9TNYTZzuL9PI+Zd R65JO9an161U75rusk1QpbiXmmiT9BuFNXESsKP+dG3zTZhKOHxAiiHHuqLrDcWF VZwg4SqpXCpkdCEORsqPqEcR9q9RGqHJUCzVF5w5i9ywybWfcuiGM04PFWj20M2J Mr7rOm6cf1T3gMJMAOpH46pKh/z0wOtA0TOPbQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:44:09 2025 by rpki-client