$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/36342e3139302e3233372e302f32342d3332203d3e203233353037.roa File: 36342e3139302e3233372e302f32342d3332203d3e203233353037.roa (raw, json) Hash identifier: 9d7We14BMYd8IlFZIeB7FSzTofvQV7VDAxO5OEwDCeA= Subject key identifier: 1B:73:BC:52:6A:8A:68:84:C1:33:E1:6E:6F:D1:A8:19:3B:8A:B8:CF Certificate issuer: /CN=22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca Certificate serial: 7ED864455FBB3E64A8D253B71D67F199A68502FF Authority key identifier: C5:4C:55:4D:4B:0B:04:61:D9:A0:1E:2A:06:E5:5F:C0:EC:4E:D8:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/36342e3139302e3233372e302f32342d3332203d3e203233353037.roa Signing time: Fri 03 Apr 2026 15:00:15 +0000 ROA not before: Fri 03 Apr 2026 14:55:15 +0000 ROA not after: Fri 02 Apr 2027 15:00:15 +0000 asID: 23507 IP address blocks: 64.190.237.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/C54C554D4B0B0461D9A01E2A06E55FC0EC4ED83D.crl rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/C54C554D4B0B0461D9A01E2A06E55FC0EC4ED83D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/74c5eaa7-78bb-4cca-835a-0df812ff7d87.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/74c5eaa7-78bb-4cca-835a-0df812ff7d87.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 14 Apr 2026 14:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d8:64:45:5f:bb:3e:64:a8:d2:53:b7:1d:67:f1:99:a6:85:02:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca Validity Not Before: Apr 3 14:55:15 2026 GMT Not After : Apr 2 15:00:15 2027 GMT Subject: CN=1B73BC526A8A6884C133E16E6FD1A8193B8AB8CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e7:f8:50:f5:2f:ad:9f:78:4f:e1:5a:d7:c4: 27:96:3c:71:7b:17:e9:7d:0a:5a:31:d8:41:05:f2: 12:8b:79:25:70:55:2b:c7:fd:03:c3:b5:de:9b:42: 57:dc:e6:07:5b:6b:f0:f3:e7:c9:05:dd:87:96:e1: 82:72:3a:53:12:b9:3a:a5:9a:d2:65:c0:b7:09:03: f9:41:7c:3a:29:cf:f2:48:7b:5a:0e:18:69:a9:8a: a3:f8:00:ba:55:44:b8:d5:70:75:b5:8b:aa:b7:f9: 1e:ac:7a:50:4a:7a:0d:ae:26:0a:ec:35:e0:a4:a8: 5a:bd:39:9c:2f:c7:d8:5a:58:5c:7e:f2:9f:bf:10: f8:fb:4c:6e:f1:0c:8e:98:bb:85:f5:bb:3a:39:63: d1:3f:11:96:b7:53:cf:90:e9:e9:6e:15:91:e2:92: 58:47:8a:68:97:40:18:6b:dc:9c:54:13:f3:f7:f0: 28:01:5e:db:c8:31:ac:f9:a8:59:6d:02:84:83:b1: 9c:f3:a3:fb:af:74:d2:ad:82:e2:f3:35:31:d4:8e: 82:44:7f:ae:47:62:58:d5:ba:91:c8:2b:ca:c9:5a: 8c:0b:7a:d0:33:9b:46:3b:3a:e6:ad:af:1d:a6:94: 60:5f:e8:33:62:46:bc:3d:c4:99:bf:f1:8d:42:ce: 22:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:73:BC:52:6A:8A:68:84:C1:33:E1:6E:6F:D1:A8:19:3B:8A:B8:CF X509v3 Authority Key Identifier: keyid:C5:4C:55:4D:4B:0B:04:61:D9:A0:1E:2A:06:E5:5F:C0:EC:4E:D8:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/C54C554D4B0B0461D9A01E2A06E55FC0EC4ED83D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/36342e3139302e3233372e302f32342d3332203d3e203233353037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.190.237.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:69:2f:50:47:ea:23:aa:2e:10:70:6f:21:6c:75:3b:72:c3: 99:0f:7c:7a:fe:2d:79:1b:14:34:6a:6a:a4:36:3a:4a:58:3b: 26:71:be:77:3a:c2:7b:28:c5:fe:7b:41:d7:d2:df:7c:a9:df: 3d:07:a9:bf:fa:3b:c5:1f:19:04:ec:3b:04:61:41:88:d5:92: 36:4f:1f:a3:40:7a:65:54:e7:5e:cc:ce:d4:4f:53:30:15:15: f2:28:52:83:15:7a:fb:31:91:d8:fa:26:45:fd:9b:1c:b1:05: d5:bd:d5:ed:fe:c3:73:fa:6a:86:b1:c7:ad:7a:a9:11:88:fb: b8:1d:7a:40:d6:6a:8b:19:1c:2f:6e:25:68:25:e2:97:8d:ff: 44:45:3b:57:98:49:67:55:dd:e2:70:54:69:52:bb:65:0d:c2: c8:31:dc:98:b3:a7:e5:e6:cb:68:e4:27:e4:02:f4:80:c3:3d: 2e:b3:48:e7:4a:c3:00:39:4e:9c:b0:b2:c0:7f:ed:a6:63:d2: 60:cc:b4:9a:40:81:f9:b4:5b:5a:5a:77:11:1f:0a:db:d8:4f: de:b1:64:e0:82:27:ae:01:eb:6a:e3:e4:48:7f:d8:98:59:1e: fd:c4:ba:39:45:0d:ee:ca:38:2d:4e:ae:ac:84:8d:72:f0:e0: 84:81:18:52 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUfthkRV+7PmSo0lO3HWfxmaaFAv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjJiMTM5MWEwMGUyZDhlOTUyZmFhNGRkNzgwZGU5MTc2 ZDY1ZjkzMmNiZDg2YTY5Y2EwHhcNMjYwNDAzMTQ1NTE1WhcNMjcwNDAyMTUwMDE1 WjAzMTEwLwYDVQQDEygxQjczQkM1MjZBOEE2ODg0QzEzM0UxNkU2RkQxQTgxOTNC OEFCOENGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ef4UPUvrZ94 T+Fa18QnljxxexfpfQpaMdhBBfISi3klcFUrx/0Dw7Xem0JX3OYHW2vw8+fJBd2H luGCcjpTErk6pZrSZcC3CQP5QXw6Kc/ySHtaDhhpqYqj+AC6VUS41XB1tYuqt/ke rHpQSnoNriYK7DXgpKhavTmcL8fYWlhcfvKfvxD4+0xu8QyOmLuF9bs6OWPRPxGW t1PPkOnpbhWR4pJYR4pol0AYa9ycVBPz9/AoAV7byDGs+ahZbQKEg7Gc86P7r3TS rYLi8zUx1I6CRH+uR2JY1bqRyCvKyVqMC3rQM5tGOzrmra8dppRgX+gzYka8PcSZ v/GNQs4i8QIDAQABo4ICzTCCAskwHQYDVR0OBBYEFBtzvFJqimiEwTPhbm/RqBk7 irjPMB8GA1UdIwQYMBaAFMVMVU1LCwRh2aAeKgblX8DsTtg9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzZjNDNkM2E2LTdkMTMtNDg5NS05NTlk LTQxOWI5YTZlYjM0Yi8yL0M1NEM1NTRENEIwQjA0NjFEOUEwMUUyQTA2RTU1RkMw RUM0RUQ4M0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg1ZTA2ZWFmLTM3YTct NDU4OC1hYmVhLWU0OTA5ZWYxYjRlMi83NGM1ZWFhNy03OGJiLTRjY2EtODM1YS0w ZGY4MTJmZjdkODcvMjJiMTM5MWEwMGUyZDhlOTUyZmFhNGRkNzgwZGU5MTc2ZDY1 ZjkzMmNiZDg2YTY5Y2EuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzZjNDNkM2E2LTdkMTMtNDg5NS05NTlkLTQxOWI5YTZlYjM0Yi8yLzM2MzQyZTMx MzkzMDJlMzIzMzM3MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzIzMzM1MzAzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAEC+7TANBgkqhkiG9w0BAQsFAAOCAQEATmkvUEfqI6ouEHBvIWx1 O3LDmQ98ev4teRsUNGpqpDY6Slg7JnG+dzrCeyjF/ntB19LffKnfPQepv/o7xR8Z BOw7BGFBiNWSNk8fo0B6ZVTnXszO1E9TMBUV8ihSgxV6+zGR2PomRf2bHLEF1b3V 7f7Dc/pqhrHHrXqpEYj7uB16QNZqixkcL24laCXil43/REU7V5hJZ1Xd4nBUaVK7 ZQ3CyDHcmLOn5ebLaOQn5AL0gMM9LrNI50rDADlOnLCywH/tpmPSYMy0mkCB+bRb Wlp3ER8K29hP3rFk4IInrgHrauPkSH/YmFke/cS6OUUN7so4LU6urISNcvDghIEY Ug== -----END CERTIFICATE-----Generated at Mon Apr 13 14:50:42 2026 by rpki-client