$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/32332e3137352e32342e302f32342d3234203d3e203533383038.roa File: 32332e3137352e32342e302f32342d3234203d3e203533383038.roa (raw, json) Hash identifier: z2nQwOn2ntTFJH4QrEiRpm7QJtMpuNoSn2pa5RHTdfg= Subject key identifier: 2F:07:BF:68:4D:44:F0:31:48:74:52:02:5E:B8:C8:9D:D1:F9:49:BE Certificate issuer: /CN=a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8 Certificate serial: 373935F871C0D62A7B37BC223793C25C4DE582C1 Authority key identifier: 55:E1:C8:0B:28:E8:29:D7:D5:93:BA:EA:0D:4B:2D:08:67:A6:76:E0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/32332e3137352e32342e302f32342d3234203d3e203533383038.roa Signing time: Tue 02 Jun 2026 12:17:43 +0000 ROA not before: Tue 02 Jun 2026 12:12:43 +0000 ROA not after: Tue 01 Jun 2027 12:17:43 +0000 asID: 53808 IP address blocks: 23.175.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/55E1C80B28E829D7D593BAEA0D4B2D0867A676E0.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/55E1C80B28E829D7D593BAEA0D4B2D0867A676E0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 04 Jun 2026 20:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:39:35:f8:71:c0:d6:2a:7b:37:bc:22:37:93:c2:5c:4d:e5:82:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8 Validity Not Before: Jun 2 12:12:43 2026 GMT Not After : Jun 1 12:17:43 2027 GMT Subject: CN=2F07BF684D44F031487452025EB8C89DD1F949BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:90:fd:51:70:b2:cb:7c:5c:fc:6d:90:0e:43: 2c:ea:3e:40:30:39:47:02:45:a1:44:59:1c:56:0b: 2a:b7:a3:56:11:88:ec:93:40:e1:40:b1:91:ad:d9: 56:89:6d:2f:94:42:33:9a:3c:96:0c:ee:cd:86:b8: e7:c9:a5:d0:ee:f8:be:f6:a6:6d:b9:72:d5:b1:c7: c2:0b:3f:34:5b:9d:d1:4c:fe:0a:04:2e:0d:c6:66: fb:90:78:3d:5c:ab:69:a8:bf:3a:9b:ba:4c:b2:dd: 5f:30:f8:42:04:19:0f:57:ee:4e:13:5a:1b:ce:d7: b0:92:5b:fc:72:c5:49:db:68:88:f4:3c:90:a2:04: f9:42:ee:e2:f1:2b:01:ef:51:0f:91:60:b5:47:29: 41:43:f6:31:fb:88:01:dd:bf:20:79:b2:45:b7:e5: a0:9f:2e:ce:b9:e3:5a:12:08:29:18:5f:6c:29:c5: e4:cf:95:d2:ea:31:ce:d0:e6:94:24:cd:09:5e:aa: 00:72:69:c2:c9:7a:13:63:a8:c4:d3:4f:f9:e3:2b: 9b:9f:8b:d9:9f:b7:28:de:0d:dd:f6:90:b9:ee:65: 12:36:61:b6:44:94:ea:f1:5c:c6:65:9e:4e:9c:c3: 0f:f6:3c:7d:b1:99:8d:8b:e8:09:70:ef:c7:41:9e: 16:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:07:BF:68:4D:44:F0:31:48:74:52:02:5E:B8:C8:9D:D1:F9:49:BE X509v3 Authority Key Identifier: keyid:55:E1:C8:0B:28:E8:29:D7:D5:93:BA:EA:0D:4B:2D:08:67:A6:76:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/55E1C80B28E829D7D593BAEA0D4B2D0867A676E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/32332e3137352e32342e302f32342d3234203d3e203533383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.175.24.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:6e:61:c5:b5:92:30:8b:08:a7:31:94:1e:ca:73:05:e5:08: 44:e9:d8:d7:b4:36:fd:d4:1a:4a:1e:3d:e5:e5:f0:e5:3e:b9: 8a:32:c3:52:4a:03:0f:55:eb:95:89:a3:6d:51:54:e7:8f:3d: fb:8e:7c:12:56:96:f7:23:eb:8b:6b:43:78:9b:e2:8b:77:b4: 7e:1a:92:2f:87:31:a2:f5:73:8d:15:c4:bd:13:70:69:6a:f1: b0:6a:95:70:93:bb:3b:38:02:9f:9a:eb:40:66:05:0d:a3:d6: 10:50:28:a2:19:f1:1c:aa:b2:05:e1:07:35:f0:42:c3:7a:bc: 4a:3a:37:bc:51:61:66:1d:9c:2e:41:8d:a8:01:49:27:3d:e6: bd:ef:f2:61:3a:18:be:77:4f:c5:d7:2a:b7:9c:bd:9c:a4:33: 02:5c:1b:1d:0d:c8:a9:12:0c:3f:e5:d5:08:ad:e1:1e:7f:f3: b2:54:49:73:78:42:96:66:90:1e:a5:00:ec:20:64:56:5b:55: 1f:d1:60:0d:7a:1d:b9:76:47:01:62:97:77:98:43:18:7f:56: 18:4c:b6:d1:d0:38:05:69:80:9e:ea:73:a1:90:f3:84:fb:d0: 73:76:08:5a:bd:90:44:87:79:0b:f4:8a:f7:23:bf:86:0f:1a: a9:b4:ba:24 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUNzk1+HHA1ip7N7wiN5PCXE3lgsEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTIyYWE4MmJkNjNlZTA0NjMzNTBjNDAzNGEwODhjNzk4 ZWViNWQ4YTU5YTI2NDUwYzgwHhcNMjYwNjAyMTIxMjQzWhcNMjcwNjAxMTIxNzQz WjAzMTEwLwYDVQQDEygyRjA3QkY2ODRENDRGMDMxNDg3NDUyMDI1RUI4Qzg5REQx Rjk0OUJFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJD9UXCyy3xc /G2QDkMs6j5AMDlHAkWhRFkcVgsqt6NWEYjsk0DhQLGRrdlWiW0vlEIzmjyWDO7N hrjnyaXQ7vi+9qZtuXLVscfCCz80W53RTP4KBC4Nxmb7kHg9XKtpqL86m7pMst1f MPhCBBkPV+5OE1obztewklv8csVJ22iI9DyQogT5Qu7i8SsB71EPkWC1RylBQ/Yx +4gB3b8gebJFt+Wgny7OueNaEggpGF9sKcXkz5XS6jHO0OaUJM0JXqoAcmnCyXoT Y6jE00/54yubn4vZn7co3g3d9pC57mUSNmG2RJTq8VzGZZ5OnMMP9jx9sZmNi+gJ cO/HQZ4WUQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFC8Hv2hNRPAxSHRSAl64yJ3R +Um+MB8GA1UdIwQYMBaAFFXhyAso6CnX1ZO66g1LLQhnpnbgMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzhhZmI1ZmUyLTNjMmEtNDkzOS05NWU5 LTAwNzdiODBiNGYwZS8xLzU1RTFDODBCMjhFODI5RDdENTkzQkFFQTBENEIyRDA4 NjdBNjc2RTAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmIt NDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83ZjMzY2Y1OS1hZTM1LTQxZDQtODI1Mi1k OWJkYmFiYTQyMTAvYTIyYWE4MmJkNjNlZTA0NjMzNTBjNDAzNGEwODhjNzk4ZWVi NWQ4YTU5YTI2NDUwYzguY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzhhZmI1ZmUyLTNjMmEtNDkzOS05NWU5LTAwNzdiODBiNGYwZS8xLzMyMzMyZTMx MzczNTJlMzIzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzMzODMwMzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXrxgwDQYJKoZIhvcNAQELBQADggEBAD5uYcW1kjCLCKcxlB7KcwXl CETp2Ne0Nv3UGkoePeXl8OU+uYoyw1JKAw9V65WJo21RVOePPfuOfBJWlvcj64tr Q3ib4ot3tH4aki+HMaL1c40VxL0TcGlq8bBqlXCTuzs4Ap+a60BmBQ2j1hBQKKIZ 8RyqsgXhBzXwQsN6vEo6N7xRYWYdnC5BjagBSSc95r3v8mE6GL53T8XXKrecvZyk MwJcGx0NyKkSDD/l1Qit4R5/87JUSXN4QpZmkB6lAOwgZFZbVR/RYA16Hbl2RwFi l3eYQxh/VhhMttHQOAVpgJ7qc6GQ84T70HN2CFq9kESHeQv0ivcjv4YPGqm0uiQ= -----END CERTIFICATE-----Generated at Wed Jun 3 23:28:18 2026 by rpki-client