$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa File: 323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa (raw, json) Hash identifier: dfiSzAj0dxIHRnbrV3sYNv7QdmVgZOpy7/5qQbU3b3U= Subject key identifier: BE:9B:71:6B:96:2A:CE:1E:9D:D4:1E:09:3C:BD:1C:52:3F:06:5C:72 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 2F3F35F919C726507F064E79E5BDC7919F84768E Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa Signing time: Fri 15 May 2026 02:16:04 +0000 ROA not before: Fri 15 May 2026 02:11:04 +0000 ROA not after: Fri 14 May 2027 02:16:04 +0000 asID: 40676 IP address blocks: 2602:f992:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 12 Jun 2026 14:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3f:35:f9:19:c7:26:50:7f:06:4e:79:e5:bd:c7:91:9f:84:76:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: May 15 02:11:04 2026 GMT Not After : May 14 02:16:04 2027 GMT Subject: CN=BE9B716B962ACE1E9DD41E093CBD1C523F065C72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:34:2e:40:08:29:34:0d:0f:ba:97:c8:14:2b: 7f:0d:66:da:04:29:36:75:9b:60:d1:82:0a:4c:b7: 88:b6:b5:70:cb:7b:41:05:f4:f2:ca:89:81:a8:9f: ed:83:3d:03:37:05:99:99:6d:5c:18:45:9d:5e:c8: 51:b0:1c:a6:4c:83:c1:af:0a:40:b0:73:d9:9f:51: 52:69:c6:f4:58:33:33:ce:f6:0b:91:7c:f8:f9:e8: 7f:b8:f9:4c:90:1b:99:02:8d:a9:4e:09:38:95:16: 3c:20:7c:05:78:27:e8:0a:63:fc:39:cf:82:17:73: d7:8f:32:9e:5c:a1:49:a3:7f:2b:d8:4f:6e:92:b3: db:1d:ba:88:77:3d:73:16:40:61:67:8d:8d:18:74: 18:37:3d:bd:99:50:8e:db:75:f8:0f:af:cd:01:e4: 80:b7:35:af:6d:6d:51:45:c0:14:ba:c2:c0:bc:53: ff:df:69:06:8c:e9:f7:f0:2d:61:dc:92:d3:1d:97: a2:e9:00:63:05:61:af:fc:7e:80:ad:11:03:51:d7: 9a:00:52:6a:b3:7c:5f:a4:04:48:f1:24:ed:ed:aa: db:a1:d8:70:8e:c8:79:ec:dc:90:fc:43:03:8b:de: 78:92:c9:a0:a9:8b:8a:6d:23:49:e4:53:1a:d9:54: ee:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9B:71:6B:96:2A:CE:1E:9D:D4:1E:09:3C:BD:1C:52:3F:06:5C:72 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f992:50::/44 Signature Algorithm: sha256WithRSAEncryption 92:8b:b1:46:5c:c6:78:81:e4:a7:87:36:33:e6:f0:55:12:5a: 4f:f5:28:19:e5:b6:44:23:20:49:86:e2:3c:ef:eb:0a:c3:1b: b4:3a:68:d5:3b:66:0d:35:32:30:bd:c2:97:7f:fb:bb:8c:cd: 6d:64:1e:4e:a6:56:d1:86:25:47:d9:f3:06:fb:18:de:5d:7d: 2e:57:89:d6:05:9e:4b:c3:e8:b9:2b:9c:d4:bc:e7:f4:92:18: 0f:ba:82:97:3c:4b:b1:bf:80:28:ac:40:64:af:b5:14:6c:98: cb:fe:92:77:c4:6c:61:91:00:3a:bd:3e:96:f5:75:a6:5e:35: 5a:b1:d9:2d:f2:57:f6:96:9a:44:5a:8e:95:0f:fa:96:ad:35: 6f:db:e8:ea:d8:23:69:e6:ff:1d:b2:30:b2:9f:55:80:8a:1a: 47:d3:26:41:9d:12:d9:f5:b6:e6:c1:af:3e:f1:4d:ca:fd:da: f6:86:58:20:a4:5d:4c:65:a6:36:5e:45:4a:4e:3c:92:9a:b2: 81:97:4a:d9:0a:15:a9:5f:65:d6:3e:2a:74:81:28:11:13:3b: cf:b8:5f:38:2b:bf:e6:b1:38:9f:fc:25:4b:f6:38:92:bf:4a: 6e:e7:96:bf:97:d7:34:4a:c2:6d:7b:09:71:0f:df:17:28:13: 11:b6:a7:7b -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIULz81+RnHJlB/Bk555b3HkZ+Edo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjYwNTE1MDIxMTA0WhcNMjcwNTE0MDIxNjA0 WjAzMTEwLwYDVQQDEyhCRTlCNzE2Qjk2MkFDRTFFOURENDFFMDkzQ0JEMUM1MjNG MDY1QzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljQuQAgpNA0P upfIFCt/DWbaBCk2dZtg0YIKTLeItrVwy3tBBfTyyomBqJ/tgz0DNwWZmW1cGEWd XshRsBymTIPBrwpAsHPZn1FSacb0WDMzzvYLkXz4+eh/uPlMkBuZAo2pTgk4lRY8 IHwFeCfoCmP8Oc+CF3PXjzKeXKFJo38r2E9ukrPbHbqIdz1zFkBhZ42NGHQYNz29 mVCO23X4D6/NAeSAtzWvbW1RRcAUusLAvFP/32kGjOn38C1h3JLTHZei6QBjBWGv /H6ArREDUdeaAFJqs3xfpARI8STt7arbodhwjsh57NyQ/EMDi954ksmgqYuKbSNJ 5FMa2VTuqQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFL6bcWuWKs4endQeCTy9HFI/ BlxyMB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGxBggrBgEFBQcBCwSBpDCBoTCBngYIKwYBBQUH MAuGgZFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzYzMDMy M2E2NjM5MzkzMjNhMzUzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDM0MzAzNjM3 MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQmAvmSAFAwDQYJKoZIhvcNAQELBQADggEBAJKLsUZcxniB 5KeHNjPm8FUSWk/1KBnltkQjIEmG4jzv6wrDG7Q6aNU7Zg01MjC9wpd/+7uMzW1k Hk6mVtGGJUfZ8wb7GN5dfS5XidYFnkvD6LkrnNS85/SSGA+6gpc8S7G/gCisQGSv tRRsmMv+knfEbGGRADq9Ppb1daZeNVqx2S3yV/aWmkRajpUP+patNW/b6OrYI2nm /x2yMLKfVYCKGkfTJkGdEtn1tubBrz7xTcr92vaGWCCkXUxlpjZeRUpOPJKasoGX StkKFalfZdY+KnSBKBETO8+4Xzgrv+axOJ/8JUv2OJK/Sm7nlr+X1zRKwm17CXEP 3xcoExG2p3s= -----END CERTIFICATE-----Generated at Fri Jun 12 00:30:54 2026 by rpki-client