$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a66353a3a2f34382d3438203d3e2030.roa File: 323630323a663939323a66353a3a2f34382d3438203d3e2030.roa (raw, json) Hash identifier: dO4GOf8X86hgNTC2If8vBzNuybBxmkNlYTyanbrkRnU= Subject key identifier: 0A:D2:31:D4:1A:95:59:7E:BC:6D:71:2C:0B:EC:9D:FA:4B:16:36:40 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 4EEBF812E4F5AF2A7E765E32376033239B24619A Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a66353a3a2f34382d3438203d3e2030.roa Signing time: Thu 25 Sep 2025 07:49:42 +0000 ROA not before: Thu 25 Sep 2025 07:44:42 +0000 ROA not after: Thu 24 Sep 2026 07:49:42 +0000 asID: 0 IP address blocks: 2602:f992:f5::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:eb:f8:12:e4:f5:af:2a:7e:76:5e:32:37:60:33:23:9b:24:61:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: Sep 25 07:44:42 2025 GMT Not After : Sep 24 07:49:42 2026 GMT Subject: CN=0AD231D41A95597EBC6D712C0BEC9DFA4B163640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2f:36:86:7a:06:c2:99:42:9a:b8:c7:10:c5: d5:1c:37:3b:8e:fb:71:0d:22:ba:10:84:a9:b3:ab: b0:0d:60:d9:45:60:56:ce:2a:3f:ec:cc:5e:85:2c: 4b:1a:71:e3:f8:21:ef:9a:9a:5a:81:83:8f:2d:3c: 9f:cf:51:98:38:d7:a5:29:6a:8d:63:5b:66:3e:fc: 9e:c6:4f:fe:7e:93:50:74:ab:77:10:67:09:3d:ac: b4:e6:9f:e1:90:89:61:d7:09:95:d4:69:06:ff:4d: 59:d3:a9:17:aa:97:b5:3a:db:83:b9:6e:da:56:c4: ac:9a:09:ef:da:29:33:4a:ac:0b:74:2b:e3:e8:70: 73:ba:75:bd:83:2c:4e:6a:87:83:fd:92:ca:a1:2b: c3:02:5c:e3:3d:05:1b:90:8f:19:81:52:a1:37:c0: 98:04:42:60:47:82:86:ab:ff:96:a3:a8:51:2e:e9: 4b:2d:08:34:da:db:0b:2e:07:bd:c4:29:d6:70:4e: 74:9d:14:8c:8c:77:a9:16:ae:c7:aa:f1:0b:2b:6b: 24:8e:45:39:88:c1:29:48:6d:eb:a2:2d:45:ae:16: 27:d7:47:4d:04:57:34:60:19:07:b9:f2:b0:f6:86: e0:a3:bc:9b:53:58:f5:e4:dc:92:34:d9:d8:03:54: 5e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D2:31:D4:1A:95:59:7E:BC:6D:71:2C:0B:EC:9D:FA:4B:16:36:40 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a66353a3a2f34382d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f992:f5::/48 Signature Algorithm: sha256WithRSAEncryption 31:bb:39:b6:ba:72:3f:88:3d:d7:d9:02:67:e1:40:18:ba:32: 3e:b5:f5:68:2c:46:68:27:84:20:15:94:57:a1:b2:51:a8:00: 66:06:63:cf:57:7f:74:74:a2:d2:7a:af:fe:36:97:e7:94:e7: 90:c7:f8:c6:3c:f0:12:98:fb:f5:9c:52:22:48:01:31:27:50: 10:48:dd:6e:92:51:94:82:47:f8:4f:69:e9:15:f5:73:28:aa: 9d:96:d9:44:92:ed:d8:fd:70:1b:48:da:8a:ad:26:b6:17:e0: a5:37:b7:92:bd:d4:b0:d6:6c:f1:d7:b2:d8:7c:b5:a1:7f:79: 64:06:b8:d6:bc:89:ce:d9:1e:6b:fa:86:c3:e8:cf:fc:4e:f9: d0:e7:4d:61:8d:37:7f:9e:8a:00:02:06:7b:bf:c3:91:f5:e1: aa:ff:cc:bf:bd:ef:33:21:9f:2c:1c:26:d1:a6:e9:ca:06:8e: 2f:80:93:78:15:57:5a:fc:6f:16:d6:f8:98:bb:f3:a9:7b:b7: 4c:9e:0b:d1:e2:81:04:20:55:02:58:10:92:b0:15:64:c1:ed: 99:ac:9e:19:01:11:f8:1b:9a:5b:b8:74:26:25:93:b3:d6:a3: 85:92:10:2b:76:48:49:da:5b:54:50:e9:1e:f9:b4:8f:fb:e8: 07:83:7a:ee -----BEGIN CERTIFICATE----- MIIFzDCCBLSgAwIBAgIUTuv4EuT1ryp+dl4yN2AzI5skYZowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjUwOTI1MDc0NDQyWhcNMjYwOTI0MDc0OTQy WjAzMTEwLwYDVQQDEygwQUQyMzFENDFBOTU1OTdFQkM2RDcxMkMwQkVDOURGQTRC MTYzNjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvi82hnoGwplC mrjHEMXVHDc7jvtxDSK6EISps6uwDWDZRWBWzio/7MxehSxLGnHj+CHvmppagYOP LTyfz1GYONelKWqNY1tmPvyexk/+fpNQdKt3EGcJPay05p/hkIlh1wmV1GkG/01Z 06kXqpe1OtuDuW7aVsSsmgnv2ikzSqwLdCvj6HBzunW9gyxOaoeD/ZLKoSvDAlzj PQUbkI8ZgVKhN8CYBEJgR4KGq/+Wo6hRLulLLQg02tsLLge9xCnWcE50nRSMjHep Fq7HqvELK2skjkU5iMEpSG3roi1FrhYn10dNBFc0YBkHufKw9obgo7ybU1j15NyS NNnYA1ReSQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFArSMdQalVl+vG1xLAvsnfpL FjZAMB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGpBggrBgEFBQcBCwSBnDCBmTCBlgYIKwYBBQUH MAuGgYlyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzYzMDMy M2E2NjM5MzkzMjNhNjYzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAJgL5kgD1MA0GCSqGSIb3DQEBCwUAA4IBAQAxuzm2unI/iD3X2QJn4UAY ujI+tfVoLEZoJ4QgFZRXobJRqABmBmPPV390dKLSeq/+NpfnlOeQx/jGPPASmPv1 nFIiSAExJ1AQSN1uklGUgkf4T2npFfVzKKqdltlEku3Y/XAbSNqKrSa2F+ClN7eS vdSw1mzx17LYfLWhf3lkBrjWvInO2R5r+obD6M/8TvnQ501hjTd/nooAAgZ7v8OR 9eGq/8y/ve8zIZ8sHCbRpunKBo4vgJN4FVda/G8W1viYu/Ope7dMngvR4oEEIFUC WBCSsBVkwe2ZrJ4ZARH4G5pbuHQmJZOz1qOFkhArdkhJ2ltUUOke+bSP++gHg3ru -----END CERTIFICATE-----Generated at Wed Oct 8 13:57:47 2025 by rpki-client