$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/3/3134322e3234392e3137342e302f32342d3234203d3e20323035393431.roa File: 3134322e3234392e3137342e302f32342d3234203d3e20323035393431.roa (raw, json) Hash identifier: IwvpHv6Ku/aXDvCqAmmNh5ZwkVwGY5RhBFgo+r4AdIs= Subject key identifier: 27:87:5F:6F:D6:16:0F:96:61:C8:E3:5E:64:A2:67:B7:69:F1:12:82 Certificate issuer: /CN=1681BE1696F469A56F60C82B2BCC25661BC29C58 Certificate serial: 503DA79245273CA1CFC3D0ECE1AEC12F2660550A Authority key identifier: 16:81:BE:16:96:F4:69:A5:6F:60:C8:2B:2B:CC:25:66:1B:C2:9C:58 Authority info access: rsync://rpki-rps.arin.net/repository/545b6c8b26d24c9b840cd045aadadc1a/0/1681BE1696F469A56F60C82B2BCC25661BC29C58.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/3/3134322e3234392e3137342e302f32342d3234203d3e20323035393431.roa Signing time: Tue 28 Apr 2026 04:02:50 +0000 ROA not before: Tue 28 Apr 2026 03:57:50 +0000 ROA not after: Tue 27 Apr 2027 04:02:50 +0000 asID: 205941 IP address blocks: 142.249.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/3/1681BE1696F469A56F60C82B2BCC25661BC29C58.crl rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/3/1681BE1696F469A56F60C82B2BCC25661BC29C58.mft rsync://rpki-rps.arin.net/repository/545b6c8b26d24c9b840cd045aadadc1a/0/1681BE1696F469A56F60C82B2BCC25661BC29C58.cer rsync://rpki-rps.arin.net/repository/545b6c8b26d24c9b840cd045aadadc1a/0/3256295BAEB72174BD12230A9B59251E78ACEE2C.crl rsync://rpki-rps.arin.net/repository/545b6c8b26d24c9b840cd045aadadc1a/0/3256295BAEB72174BD12230A9B59251E78ACEE2C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/6d4f8857-fb8e-408f-a909-48a6df4a5a51/8d36ad9b3dcd1179951b64c2023b9f593c3a5770e1e5c42464.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/6d4f8857-fb8e-408f-a909-48a6df4a5a51/6d4f8857-fb8e-408f-a909-48a6df4a5a51.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/6d4f8857-fb8e-408f-a909-48a6df4a5a51/6d4f8857-fb8e-408f-a909-48a6df4a5a51.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/6d4f8857-fb8e-408f-a909-48a6df4a5a51.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 May 2026 02:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3d:a7:92:45:27:3c:a1:cf:c3:d0:ec:e1:ae:c1:2f:26:60:55:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1681BE1696F469A56F60C82B2BCC25661BC29C58 Validity Not Before: Apr 28 03:57:50 2026 GMT Not After : Apr 27 04:02:50 2027 GMT Subject: CN=27875F6FD6160F9661C8E35E64A267B769F11282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2d:d8:d6:22:9e:1d:2d:60:f9:7f:98:fd:c2: 48:0b:88:5e:e3:3c:da:65:bf:d2:2d:ef:bb:1a:c1: 69:02:64:68:9e:4f:68:f4:cc:c9:ff:c7:01:f2:77: dc:35:ae:d9:48:ef:b2:32:1c:93:99:e9:ff:c9:cb: c9:5a:ee:2f:fc:9b:d2:27:a3:ba:6b:45:ec:51:88: 38:79:a5:48:90:79:c1:b5:d3:05:fd:ba:e2:ec:da: 4c:ff:1d:8b:c7:44:a2:dd:20:07:5a:5a:c4:dc:69: a6:b3:85:ba:9c:cf:26:a8:f1:df:38:be:bd:f9:8d: 25:1c:4e:08:51:49:65:a3:f2:26:71:fe:c2:47:b4: aa:43:e3:fa:db:c7:ed:29:42:f6:12:34:6f:c7:6c: 25:78:d0:7f:0b:89:20:be:39:cc:c8:c7:91:2d:3d: 37:66:df:79:80:20:bb:46:99:61:8e:30:a8:6f:90: f7:f3:38:3f:94:ca:56:2c:a5:21:ae:d1:5f:7a:19: 4f:60:76:5c:75:96:e0:02:eb:4d:67:c5:71:67:e3: 98:9f:65:c2:e0:ee:31:74:e2:90:1c:ae:82:25:27: 35:d7:dd:e8:cf:14:9d:db:59:b6:09:6a:e3:d9:72: 2d:e4:0d:87:09:22:39:6f:fe:39:52:c1:92:cc:da: 62:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:87:5F:6F:D6:16:0F:96:61:C8:E3:5E:64:A2:67:B7:69:F1:12:82 X509v3 Authority Key Identifier: keyid:16:81:BE:16:96:F4:69:A5:6F:60:C8:2B:2B:CC:25:66:1B:C2:9C:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/3/1681BE1696F469A56F60C82B2BCC25661BC29C58.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/545b6c8b26d24c9b840cd045aadadc1a/0/1681BE1696F469A56F60C82B2BCC25661BC29C58.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/3/3134322e3234392e3137342e302f32342d3234203d3e20323035393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.249.174.0/24 Signature Algorithm: sha256WithRSAEncryption 12:63:b4:93:b7:36:90:93:2d:90:df:03:1a:97:c2:37:c1:af: 72:6f:de:8d:9b:b2:90:e7:d8:74:e8:c5:69:58:64:94:01:26: 1a:8a:f4:3b:3d:3b:fc:7c:ce:7f:5e:17:b6:69:55:51:32:42: 8a:9c:94:6c:41:e7:08:7f:08:81:d6:76:85:d2:dc:10:37:4c: ce:a3:4e:af:b5:bd:40:19:23:d6:ac:e0:e9:f0:b9:8c:51:e1: 49:9c:3a:72:69:dc:bf:01:f8:b2:e9:db:64:b2:7d:f3:3f:3f: 98:9a:e1:ca:f6:6d:fc:a0:40:75:0a:c6:28:69:e0:7b:de:2a: fa:f3:60:e3:3f:1a:fa:b6:9c:5f:79:9a:1b:78:15:a3:11:18: cb:fc:32:bd:6b:ff:d8:96:02:19:ea:48:8f:49:5b:19:b6:8c: a7:14:67:fc:ea:7b:83:9c:31:29:b9:5a:18:e6:13:11:82:d2: a2:de:83:35:36:d5:1d:cd:ca:dd:d0:82:0b:a5:c0:ca:c6:58: 53:2c:5c:d9:95:39:b1:7e:b2:ae:a8:cf:f0:74:fd:1d:03:0a: 12:28:ff:45:11:09:c9:43:c6:54:5a:6c:12:76:c3:bc:6d:f8: 20:d5:70:cf:7d:b6:d7:fc:c4:c0:28:00:87:c6:bb:4d:ef:66: 17:a4:8b:30 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIUUD2nkkUnPKHPw9Ds4a7BLyZgVQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY4MUJFMTY5NkY0NjlBNTZGNjBDODJCMkJDQzI1NjYx QkMyOUM1ODAeFw0yNjA0MjgwMzU3NTBaFw0yNzA0MjcwNDAyNTBaMDMxMTAvBgNV BAMTKDI3ODc1RjZGRDYxNjBGOTY2MUM4RTM1RTY0QTI2N0I3NjlGMTEyODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnLdjWIp4dLWD5f5j9wkgLiF7j PNplv9It77sawWkCZGieT2j0zMn/xwHyd9w1rtlI77IyHJOZ6f/Jy8la7i/8m9In o7prRexRiDh5pUiQecG10wX9uuLs2kz/HYvHRKLdIAdaWsTcaaazhbqczyao8d84 vr35jSUcTghRSWWj8iZx/sJHtKpD4/rbx+0pQvYSNG/HbCV40H8LiSC+OczIx5Et PTdm33mAILtGmWGOMKhvkPfzOD+UylYspSGu0V96GU9gdlx1luAC601nxXFn45if ZcLg7jF04pAcroIlJzXX3ejPFJ3bWbYJauPZci3kDYcJIjlv/jlSwZLM2mLfAgMB AAGjggJxMIICbTAdBgNVHQ4EFgQUJ4dfb9YWD5ZhyONeZKJnt2nxEoIwHwYDVR0j BBgwFoAUFoG+Fpb0aaVvYMgrK8wlZhvCnFgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZjhlZTYtYWJlNy00YWU4LTk2NGMtNzg4YmI5OGM5 NzVjLzMvMTY4MUJFMTY5NkY0NjlBNTZGNjBDODJCMkJDQzI1NjYxQkMyOUM1OC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzU0NWI2YzhiMjZkMjRjOWI4NDBjZDA0 NWFhZGFkYzFhLzAvMTY4MUJFMTY5NkY0NjlBNTZGNjBDODJCMkJDQzI1NjYxQkMy OUM1OC5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDAyZjhlZTYt YWJlNy00YWU4LTk2NGMtNzg4YmI5OGM5NzVjLzMvMzEzNDMyMmUzMjM0MzkyZTMx MzczNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzNTM5MzQzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAI75rjANBgkqhkiG9w0BAQsFAAOCAQEAEmO0k7c2kJMtkN8DGpfCN8Gvcm/e jZuykOfYdOjFaVhklAEmGor0Oz07/HzOf14XtmlVUTJCipyUbEHnCH8IgdZ2hdLc EDdMzqNOr7W9QBkj1qzg6fC5jFHhSZw6cmncvwH4sunbZLJ98z8/mJrhyvZt/KBA dQrGKGnge94q+vNg4z8a+racX3maG3gVoxEYy/wyvWv/2JYCGepIj0lbGbaMpxRn /Op7g5wxKblaGOYTEYLSot6DNTbVHc3K3dCCC6XAysZYUyxc2ZU5sX6yrqjP8HT9 HQMKEij/RREJyUPGVFpsEnbDvG34INVwz3221/zEwCgAh8a7Te9mF6SLMA== -----END CERTIFICATE-----Generated at Thu Apr 30 15:35:34 2026 by rpki-client