$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/323630323a663764653a3a2f34302d3438203d3e203236393534.roa File: 323630323a663764653a3a2f34302d3438203d3e203236393534.roa (raw, json) Hash identifier: huw/azfVtTuGJ+KiuQkTd/zUzlN/Io2KIFdebZxScmw= Subject key identifier: E4:24:76:9F:7A:07:8F:F1:31:CB:63:37:71:1E:E9:B3:EF:8B:5A:06 Certificate issuer: /CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Certificate serial: 5C96981FEF27BEDF0F60E19EE20F8FDF73A15BFA Authority key identifier: 3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/323630323a663764653a3a2f34302d3438203d3e203236393534.roa Signing time: Thu 08 Jan 2026 12:27:47 +0000 ROA not before: Thu 08 Jan 2026 12:22:47 +0000 ROA not after: Thu 07 Jan 2027 12:27:47 +0000 asID: 26954 IP address blocks: 2602:f7de::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 23 Feb 2026 17:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:96:98:1f:ef:27:be:df:0f:60:e1:9e:e2:0f:8f:df:73:a1:5b:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Validity Not Before: Jan 8 12:22:47 2026 GMT Not After : Jan 7 12:27:47 2027 GMT Subject: CN=E424769F7A078FF131CB6337711EE9B3EF8B5A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9b:fe:3d:00:f4:ef:0b:02:b2:0e:c1:c3:d7: 14:b8:7d:5f:1d:c7:7b:1f:9f:89:43:a6:a1:94:68: 02:36:04:5f:d3:bd:83:5e:27:fc:36:54:1b:bd:d3: 70:77:ed:d9:80:e2:87:25:ee:ce:cb:9d:cd:6f:8f: e6:04:2a:48:de:ee:71:08:2c:1c:3b:2c:5c:af:9d: 2d:44:16:be:90:e6:3d:5f:40:b1:aa:ae:a1:f8:6c: 93:36:f2:cc:e4:1a:97:9a:ae:53:0d:46:1f:95:13: 35:50:89:fb:a4:ca:9a:41:64:2f:04:4d:b1:d0:74: ca:32:d2:25:59:20:af:c4:fe:1f:59:e0:c5:49:83: 31:28:98:00:ba:88:d2:b3:86:6f:82:04:ca:65:cf: 6a:75:36:74:6d:ee:d0:c1:f9:c8:74:b6:44:36:da: e7:bd:96:64:27:31:a8:d0:74:d3:07:34:62:cb:71: 3d:4d:ba:fe:6c:eb:ec:d8:9c:7c:4c:22:8c:e0:c7: 48:59:32:f5:e4:12:55:1b:73:c7:11:bd:00:f4:8a: fe:37:b5:31:87:6b:34:b3:29:5a:00:b5:3f:eb:4e: 0d:33:c4:d0:58:08:78:67:3c:62:12:38:48:5b:3c: 74:bf:5d:24:13:7a:fd:c3:62:94:74:dc:7f:34:24: b3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:24:76:9F:7A:07:8F:F1:31:CB:63:37:71:1E:E9:B3:EF:8B:5A:06 X509v3 Authority Key Identifier: keyid:3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/323630323a663764653a3a2f34302d3438203d3e203236393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f7de::/40 Signature Algorithm: sha256WithRSAEncryption 66:d2:eb:78:5e:8a:57:fb:f7:79:4e:92:8b:87:c7:e8:e0:69: e5:08:a1:b7:48:78:21:f9:fe:65:21:7d:8c:77:72:36:21:0c: 32:3a:b5:6e:15:ed:fe:71:60:2b:22:43:72:a8:21:09:2f:77: 9f:f8:bd:a4:43:7e:c4:f3:c9:1a:fd:a5:59:a3:4c:10:57:78: ec:3d:39:1e:fa:65:96:54:37:66:d1:66:70:95:95:ef:a6:4a: c4:eb:1d:4d:44:27:aa:da:a7:a1:3e:d3:86:45:63:ae:f7:d3: b1:33:4d:13:aa:f1:b0:3f:04:27:f0:a1:69:74:0a:2c:d2:45: a0:66:9d:7b:59:03:ab:93:62:52:e1:80:78:db:0e:3c:f7:ba: 23:0a:56:84:f6:5a:23:aa:71:8c:9d:73:e7:f4:ed:04:b1:41: e6:a3:19:ab:7c:45:f0:3c:45:c9:74:af:6a:f7:de:57:74:ab: ff:a2:56:5d:7c:68:a8:0a:62:5b:41:c9:99:dc:a0:6e:9a:70: e1:8c:31:53:46:d3:e5:47:f9:ff:5e:d1:12:c8:0a:cb:90:12: 3e:4c:d9:3e:40:2d:44:96:8e:4f:78:80:7a:09:d3:50:a5:c1: b5:a2:21:71:fb:6e:ce:7f:9e:17:3f:8f:1e:15:82:81:c6:c2: 4a:5f:bb:30 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUXJaYH+8nvt8PYOGe4g+P33OhW/owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3 NjdjZjNkMGI5ZmRlNjIzMWIwHhcNMjYwMTA4MTIyMjQ3WhcNMjcwMTA3MTIyNzQ3 WjAzMTEwLwYDVQQDEyhFNDI0NzY5RjdBMDc4RkYxMzFDQjYzMzc3MTFFRTlCM0VG OEI1QTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZv+PQD07wsC sg7Bw9cUuH1fHcd7H5+JQ6ahlGgCNgRf072DXif8NlQbvdNwd+3ZgOKHJe7Oy53N b4/mBCpI3u5xCCwcOyxcr50tRBa+kOY9X0Cxqq6h+GyTNvLM5BqXmq5TDUYflRM1 UIn7pMqaQWQvBE2x0HTKMtIlWSCvxP4fWeDFSYMxKJgAuojSs4ZvggTKZc9qdTZ0 be7QwfnIdLZENtrnvZZkJzGo0HTTBzRiy3E9Tbr+bOvs2Jx8TCKM4MdIWTL15BJV G3PHEb0A9Ir+N7Uxh2s0sylaALU/604NM8TQWAh4ZzxiEjhIWzx0v10kE3r9w2KU dNx/NCSzJQIDAQABo4ICzTCCAskwHQYDVR0OBBYEFOQkdp96B4/xMctjN3Ee6bPv i1oGMB8GA1UdIwQYMBaAFD/NOoOeoUF/2Yjz3f0EVBl/qvR6MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5 LTBhYjcwZTQ4MTViYi8xLzNGQ0QzQTgzOUVBMTQxN0ZEOTg4RjNEREZEMDQ1NDE5 N0ZBQUY0N0EuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYt NDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS81MWNkOTlmNy0yZjQyLTRkZWMtYjJjNi0w OWJhZmFhMzc4MGUvMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3Njdj ZjNkMGI5ZmRlNjIzMWIuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4MTViYi8xLzMyMzYzMDMy M2E2NjM3NjQ2NTNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzYzOTM1MzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAmAvfeADANBgkqhkiG9w0BAQsFAAOCAQEAZtLreF6KV/v3eU6Si4fH 6OBp5Qiht0h4Ifn+ZSF9jHdyNiEMMjq1bhXt/nFgKyJDcqghCS93n/i9pEN+xPPJ Gv2lWaNMEFd47D05HvplllQ3ZtFmcJWV76ZKxOsdTUQnqtqnoT7ThkVjrvfTsTNN E6rxsD8EJ/ChaXQKLNJFoGade1kDq5NiUuGAeNsOPPe6IwpWhPZaI6pxjJ1z5/Tt BLFB5qMZq3xF8DxFyXSvavfeV3Sr/6JWXXxoqApiW0HJmdygbppw4YwxU0bT5Uf5 /17REsgKy5ASPkzZPkAtRJaOT3iAegnTUKXBtaIhcftuzn+eFz+PHhWCgcbCSl+7 MA== -----END CERTIFICATE-----Generated at Sun Feb 22 22:01:58 2026 by rpki-client