$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa File: 38332e3134322e33312e302f32342d3234203d3e20323135303835.roa (raw, json) Hash identifier: K8xHXu8PBNylpSXaMswB01W3KM9JQNKdf8F+yOiMZUQ= Subject key identifier: 24:D4:57:3A:9F:9E:41:70:25:98:FE:A6:A4:1E:D0:F6:F1:AE:71:8C Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 2EA7DA5981F49A52343BE0BF4B3987AB8D3728C7 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa Signing time: Thu 03 Jul 2025 18:46:32 +0000 ROA not before: Thu 03 Jul 2025 18:41:32 +0000 ROA not after: Thu 02 Jul 2026 18:46:32 +0000 asID: 215085 IP address blocks: 83.142.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a7:da:59:81:f4:9a:52:34:3b:e0:bf:4b:39:87:ab:8d:37:28:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Jul 3 18:41:32 2025 GMT Not After : Jul 2 18:46:32 2026 GMT Subject: CN=24D4573A9F9E41702598FEA6A41ED0F6F1AE718C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:18:e5:16:1d:83:a0:58:1e:cc:f8:4d:c4:40: d5:f8:17:78:3f:1c:6a:1a:10:e0:7d:f8:c1:4e:cc: fe:70:02:a6:f0:47:54:4f:33:b2:49:09:c6:42:0d: cd:ec:5f:b1:e6:84:11:e2:22:66:c6:e0:6c:37:ee: e7:63:5e:3f:99:c7:70:32:7d:75:82:6c:b1:1a:b6: 0e:67:d3:cc:85:b8:10:de:72:2a:cb:05:d6:03:6c: a2:51:98:e6:72:b7:3e:6b:45:21:34:82:da:71:9b: ce:04:21:b8:e2:e4:6f:e5:78:e5:f3:66:83:69:83: 82:14:33:92:fd:2b:35:92:f6:52:03:aa:fe:11:9f: 69:97:5d:31:22:a5:1f:1c:22:82:da:52:62:cb:26: f8:f9:26:01:8b:0c:05:a6:ee:9c:9d:54:18:2c:df: 10:57:8f:16:b3:45:9b:26:5d:5c:20:74:2b:fd:41: 0e:2b:47:d2:fe:3b:da:47:05:88:73:d3:eb:c8:47: 79:f2:dc:1d:9f:d2:b1:88:ec:24:5d:ad:bc:89:39: da:6a:ae:fd:23:04:4e:b9:1d:cb:63:78:92:28:fc: 9b:91:54:e2:0b:73:e9:87:c6:ea:a2:9a:7a:91:82: 5e:b4:d0:ff:a5:0d:18:f5:7e:81:16:04:56:86:bf: a0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D4:57:3A:9F:9E:41:70:25:98:FE:A6:A4:1E:D0:F6:F1:AE:71:8C X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.142.31.0/24 Signature Algorithm: sha256WithRSAEncryption 48:88:31:4d:05:21:b2:cf:a9:70:b9:4d:18:ba:fc:64:84:2a: bf:ec:27:7e:63:7f:3b:37:32:5a:ee:2a:fd:f5:07:ce:6d:58: d2:99:ee:cb:6a:5a:18:28:ac:13:b1:10:87:1c:20:a8:fa:f4: 96:7e:20:86:48:8a:b3:64:9c:b1:19:f7:35:93:df:dd:4e:41: f8:70:13:2b:09:31:c6:05:37:4f:2b:11:90:cf:14:8c:b1:3a: c6:68:8c:09:95:b1:c2:4e:1a:16:89:67:03:b8:d7:aa:9a:64: a3:c4:42:8a:5c:e5:9e:bd:c4:fa:d0:47:97:60:ed:19:94:52: 84:62:3b:9b:cc:80:3a:ad:d4:13:d0:d6:ef:78:eb:9e:a6:3d: 5e:d2:c4:ed:77:ea:10:c2:12:37:79:3a:14:0e:c7:53:40:89: 4d:f2:ab:93:49:7f:12:c7:ba:60:f2:e9:dc:95:a2:0a:d6:c0: 9a:ca:01:ce:5e:bd:09:71:84:fc:ab:76:ea:16:2f:7f:a9:a2: 52:52:53:c1:6b:8a:7f:6c:a1:4e:fa:dd:82:34:4b:5e:b2:a2: 55:cc:53:94:87:d3:d2:95:4f:a6:a5:9e:6a:db:0d:48:32:ee: ff:82:29:13:4f:eb:33:c3:24:f2:cd:1d:48:19:0b:5f:db:c7: 2e:6a:d5:f1 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIULqfaWYH0mlI0O+C/SzmHq403KMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNTA3MDMxODQxMzJaFw0yNjA3MDIxODQ2MzJaMDMxMTAvBgNV BAMTKDI0RDQ1NzNBOUY5RTQxNzAyNTk4RkVBNkE0MUVEMEY2RjFBRTcxOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXGOUWHYOgWB7M+E3EQNX4F3g/ HGoaEOB9+MFOzP5wAqbwR1RPM7JJCcZCDc3sX7HmhBHiImbG4Gw37udjXj+Zx3Ay fXWCbLEatg5n08yFuBDecirLBdYDbKJRmOZytz5rRSE0gtpxm84EIbji5G/leOXz ZoNpg4IUM5L9KzWS9lIDqv4Rn2mXXTEipR8cIoLaUmLLJvj5JgGLDAWm7pydVBgs 3xBXjxazRZsmXVwgdCv9QQ4rR9L+O9pHBYhz0+vIR3ny3B2f0rGI7CRdrbyJOdpq rv0jBE65HctjeJIo/JuRVOILc+mHxuqimnqRgl600P+lDRj1foEWBFaGv6CLAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQUJNRXOp+eQXAlmP6mpB7Q9vGucYwwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzgzMzJlMzEzNDMyMmUzMzMx MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM1MzAzODM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA U44fMA0GCSqGSIb3DQEBCwUAA4IBAQBIiDFNBSGyz6lwuU0YuvxkhCq/7Cd+Y387 NzJa7ir99QfObVjSme7LaloYKKwTsRCHHCCo+vSWfiCGSIqzZJyxGfc1k9/dTkH4 cBMrCTHGBTdPKxGQzxSMsTrGaIwJlbHCThoWiWcDuNeqmmSjxEKKXOWevcT60EeX YO0ZlFKEYjubzIA6rdQT0NbveOuepj1e0sTtd+oQwhI3eToUDsdTQIlN8quTSX8S x7pg8unclaIK1sCaygHOXr0JcYT8q3bqFi9/qaJSUlPBa4p/bKFO+t2CNEtesqJV zFOUh9PSlU+mpZ5q2w1IMu7/gikTT+szwyTyzR1IGQtf28cuatXx -----END CERTIFICATE-----Generated at Sat Jul 5 08:58:42 2025 by rpki-client