$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa File: 32332e3139312e34302e302f32342d3234203d3e203236393534.roa (raw, json) Hash identifier: uS9rqFKZ07mB8+YZnPlfGTxqPhMI6sgRdMjKP2z7h/I= Subject key identifier: 85:7C:7D:AD:30:E7:53:51:C1:1C:DA:AB:5E:D4:6A:F6:AD:EC:0F:F9 Certificate issuer: /CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Certificate serial: 2E8953A186BC7B806419BC58B8605A7E72526FE4 Authority key identifier: 3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa Signing time: Thu 08 Jan 2026 19:36:42 +0000 ROA not before: Thu 08 Jan 2026 19:31:42 +0000 ROA not after: Thu 07 Jan 2027 19:36:42 +0000 asID: 26954 IP address blocks: 23.191.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 23 Feb 2026 17:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:89:53:a1:86:bc:7b:80:64:19:bc:58:b8:60:5a:7e:72:52:6f:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Validity Not Before: Jan 8 19:31:42 2026 GMT Not After : Jan 7 19:36:42 2027 GMT Subject: CN=857C7DAD30E75351C11CDAAB5ED46AF6ADEC0FF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:db:c2:81:d4:f9:68:df:1c:9a:4d:83:c3:5a: 25:10:30:2e:02:6c:7d:11:c7:02:41:86:d0:cd:16: 5d:96:c7:56:03:c8:d6:c8:93:56:18:01:be:0e:8a: c5:b7:af:ca:8d:55:ad:d9:95:ea:71:ac:9a:c1:7b: 1c:05:1f:06:17:14:e9:77:b0:04:d6:12:f7:35:e0: 47:65:04:69:dd:7d:7e:17:88:05:25:e8:f5:0a:38: 2e:37:17:6d:d6:2b:76:3d:7e:83:8d:87:ac:56:e9: 16:d4:4c:f6:7f:98:4c:9d:75:f4:0b:16:59:fc:b6: d7:42:14:1a:7d:7f:13:7c:ad:13:d4:0c:45:f7:a8: d0:d6:fb:78:4f:bd:70:9c:06:79:42:0b:5d:f7:1e: 53:d5:e5:ba:95:ab:cf:b9:cb:35:c7:cd:6f:6d:11: 3a:5a:dd:6d:52:9e:bd:73:b4:e9:9a:a9:e9:f4:61: 8c:ec:76:c4:e9:15:7c:4a:0d:a9:d2:e5:0f:29:71: 8c:5d:6c:b8:e5:75:85:7f:94:65:e4:96:6b:1c:fe: ec:35:82:06:74:d1:58:de:3f:46:33:9b:43:b2:9a: a4:06:bd:5f:3b:38:a9:f7:9b:8d:b3:ec:99:3c:b7: 9a:cd:ee:66:f8:e3:31:40:b4:d0:66:8a:52:82:18: 15:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7C:7D:AD:30:E7:53:51:C1:1C:DA:AB:5E:D4:6A:F6:AD:EC:0F:F9 X509v3 Authority Key Identifier: keyid:3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.191.40.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:9d:fc:46:b0:f2:37:73:5b:1a:07:ec:70:3b:d9:8c:15:6b: a5:26:eb:2b:b4:6a:57:56:ad:8f:04:42:d6:9d:3e:ff:fa:0e: b8:01:6b:ad:69:1f:e7:71:de:79:89:a3:be:d4:eb:f3:db:8d: 26:de:78:fa:f9:67:ac:e1:7f:7a:20:55:27:db:7a:b0:e1:4d: 1e:06:5a:4a:f7:43:78:ab:18:84:9e:10:11:ac:2c:80:58:23: 94:5d:45:c7:f6:fa:87:8a:ef:cc:01:98:a5:e0:d9:b8:9f:5f: 2e:b0:2a:65:c8:f9:8c:a3:1a:47:cc:68:66:87:1a:1e:e2:8f: 52:04:01:e6:7d:71:12:94:10:36:8d:6a:21:3a:cd:44:af:63: 92:5e:e5:3a:31:eb:38:0a:c5:7c:7a:70:c5:07:39:25:0a:15: 0e:0e:c2:c0:75:3d:f6:ba:b5:bf:4c:bb:3b:3d:2c:d8:db:91: 42:06:f3:67:b0:67:d7:f0:03:fb:1d:8b:3f:46:a5:f3:bd:d7: 92:45:a6:5f:21:8a:e9:fd:95:75:3f:ce:47:4a:be:04:04:d9: c3:23:ea:5c:58:1b:6d:ee:28:7b:df:c3:65:01:52:8f:9e:27: d3:1f:e2:bb:4c:13:5a:b1:08:15:98:94:8b:84:57:11:89:6b: 31:f1:71:5e -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIULolToYa8e4BkGbxYuGBafnJSb+QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3 NjdjZjNkMGI5ZmRlNjIzMWIwHhcNMjYwMTA4MTkzMTQyWhcNMjcwMTA3MTkzNjQy WjAzMTEwLwYDVQQDEyg4NTdDN0RBRDMwRTc1MzUxQzExQ0RBQUI1RUQ0NkFGNkFE RUMwRkY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9vCgdT5aN8c mk2Dw1olEDAuAmx9EccCQYbQzRZdlsdWA8jWyJNWGAG+DorFt6/KjVWt2ZXqcaya wXscBR8GFxTpd7AE1hL3NeBHZQRp3X1+F4gFJej1CjguNxdt1it2PX6DjYesVukW 1Ez2f5hMnXX0CxZZ/LbXQhQafX8TfK0T1AxF96jQ1vt4T71wnAZ5Qgtd9x5T1eW6 lavPucs1x81vbRE6Wt1tUp69c7Tpmqnp9GGM7HbE6RV8Sg2p0uUPKXGMXWy45XWF f5Rl5JZrHP7sNYIGdNFY3j9GM5tDspqkBr1fOzip95uNs+yZPLeaze5m+OMxQLTQ ZopSghgVmQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFIV8fa0w51NRwRzaq17Uavat 7A/5MB8GA1UdIwQYMBaAFD/NOoOeoUF/2Yjz3f0EVBl/qvR6MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5 LTBhYjcwZTQ4MTViYi8xLzNGQ0QzQTgzOUVBMTQxN0ZEOTg4RjNEREZEMDQ1NDE5 N0ZBQUY0N0EuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYt NDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS81MWNkOTlmNy0yZjQyLTRkZWMtYjJjNi0w OWJhZmFhMzc4MGUvMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3Njdj ZjNkMGI5ZmRlNjIzMWIuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4MTViYi8xLzMyMzMyZTMx MzkzMTJlMzQzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzOTM1MzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXvygwDQYJKoZIhvcNAQELBQADggEBABud/Eaw8jdzWxoH7HA72YwV a6Um6yu0aldWrY8EQtadPv/6DrgBa61pH+dx3nmJo77U6/PbjSbeePr5Z6zhf3og VSfberDhTR4GWkr3Q3irGISeEBGsLIBYI5RdRcf2+oeK78wBmKXg2bifXy6wKmXI +YyjGkfMaGaHGh7ij1IEAeZ9cRKUEDaNaiE6zUSvY5Je5Tox6zgKxXx6cMUHOSUK FQ4OwsB1Pfa6tb9Muzs9LNjbkUIG82ewZ9fwA/sdiz9GpfO915JFpl8hiun9lXU/ zkdKvgQE2cMj6lxYG23uKHvfw2UBUo+eJ9Mf4rtME1qxCBWYlIuEVxGJazHxcV4= -----END CERTIFICATE-----Generated at Sun Feb 22 22:02:00 2026 by rpki-client