$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/323630323a663932613a6330303a3a2f33382d3438203d3e203430393239.roa File: 323630323a663932613a6330303a3a2f33382d3438203d3e203430393239.roa (raw, json) Hash identifier: yP+ZpxVQOgYdLzIPHHg98roaKRY7enpf+x05LOgpJ1Y= Subject key identifier: BC:E9:5A:15:57:C4:73:9E:78:FE:A3:A6:D1:66:E6:3B:B9:5F:34:EA Certificate issuer: /CN=a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8 Certificate serial: 35C5C6FFE6A9038E621A6152004ADF2EB6652995 Authority key identifier: 55:E1:C8:0B:28:E8:29:D7:D5:93:BA:EA:0D:4B:2D:08:67:A6:76:E0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/323630323a663932613a6330303a3a2f33382d3438203d3e203430393239.roa Signing time: Tue 02 Jun 2026 12:17:53 +0000 ROA not before: Tue 02 Jun 2026 12:12:53 +0000 ROA not after: Tue 01 Jun 2027 12:17:53 +0000 asID: 40929 IP address blocks: 2602:f92a:c00::/38 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/55E1C80B28E829D7D593BAEA0D4B2D0867A676E0.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/55E1C80B28E829D7D593BAEA0D4B2D0867A676E0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 05 Jun 2026 00:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c5:c6:ff:e6:a9:03:8e:62:1a:61:52:00:4a:df:2e:b6:65:29:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8 Validity Not Before: Jun 2 12:12:53 2026 GMT Not After : Jun 1 12:17:53 2027 GMT Subject: CN=BCE95A1557C4739E78FEA3A6D166E63BB95F34EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1b:36:5d:db:ed:48:9f:79:e3:bb:a7:d9:72: 81:72:c3:13:3c:f6:bd:2d:85:9d:89:56:2c:48:f7: 47:e5:15:65:02:92:c4:aa:84:3f:77:87:a4:cb:5c: 8f:c5:9a:62:df:95:43:f3:3d:a8:52:bf:25:f0:53: b9:70:bb:b9:15:cd:b2:48:1c:fe:b9:3a:c8:8b:ad: 42:38:92:12:5f:13:13:44:32:15:7b:71:60:b2:1f: de:11:5d:ea:f1:20:9f:2c:9f:df:be:38:8e:9d:19: 84:1c:ed:b6:f8:09:6b:8f:cc:f2:c9:95:18:13:eb: d9:36:10:df:52:aa:e1:0b:df:f1:60:ab:c9:77:7f: 2c:cf:33:e2:4c:a8:a8:33:24:b4:10:eb:6b:0b:12: ae:64:62:24:c8:43:c5:12:9b:36:44:c9:17:59:36: 81:13:d1:20:86:45:f0:5e:77:bf:d6:f4:a9:f2:84: 95:cb:d4:6b:b9:50:4d:ac:0c:92:f7:fb:22:ef:18: df:cb:40:9a:95:ce:16:23:88:67:4b:00:b2:60:be: fa:60:da:2b:1d:f8:e2:be:e4:8d:85:a1:7f:9a:6b: dc:ab:d8:b4:02:25:7e:b8:dd:90:bd:e9:b7:1f:da: 89:26:c7:6d:6f:54:f3:1c:ef:42:a8:17:2e:2e:bd: bd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E9:5A:15:57:C4:73:9E:78:FE:A3:A6:D1:66:E6:3B:B9:5F:34:EA X509v3 Authority Key Identifier: keyid:55:E1:C8:0B:28:E8:29:D7:D5:93:BA:EA:0D:4B:2D:08:67:A6:76:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/55E1C80B28E829D7D593BAEA0D4B2D0867A676E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd63ee0463350c4034a088c798eeb5d8a59a26450c8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/1/323630323a663932613a6330303a3a2f33382d3438203d3e203430393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f92a:c00::/38 Signature Algorithm: sha256WithRSAEncryption 10:82:2d:ee:0c:72:d8:24:0c:a4:db:55:55:bb:76:d9:e0:3b: b2:1c:20:12:d6:bb:c1:7a:6e:2c:b7:a0:f4:2e:09:e7:a8:8e: 43:7c:ea:03:9c:23:73:f5:bf:27:e1:cb:42:94:5d:e7:02:ef: 6b:ae:89:48:ba:7f:bb:80:4e:74:7c:30:8e:6b:78:66:4a:b5: fc:1f:fc:e5:e6:29:84:47:ce:9e:f6:92:83:06:e3:88:b3:80: d0:7a:47:5d:12:07:d2:a0:a0:c1:9d:18:ea:a8:1b:7b:6b:12: 4a:cb:be:6f:97:2e:d8:e3:00:11:44:1e:74:88:43:84:1b:eb: 76:ff:a7:65:a6:66:cb:74:ad:c6:0b:fd:09:f1:c2:6f:31:25: b3:82:da:7f:d4:b3:45:69:3f:47:3e:b0:14:e0:fa:66:38:58: 72:1d:db:92:73:0e:22:43:11:0c:10:9f:77:39:5f:56:07:da: 35:a9:6f:15:f0:37:af:3f:38:f3:9e:98:4e:d7:47:c6:55:f5: 51:b2:e9:ff:84:79:12:7a:d4:dc:eb:2f:f9:73:99:73:02:b3: bc:f1:a4:e5:b3:f4:8f:50:95:63:31:12:54:dd:e0:2f:63:2e: 3f:82:e7:45:bd:7a:f3:e4:08:92:57:b8:7f:5a:c5:e0:e2:8a: 20:bb:6a:e4 -----BEGIN CERTIFICATE----- MIIF1TCCBL2gAwIBAgIUNcXG/+apA45iGmFSAErfLrZlKZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTIyYWE4MmJkNjNlZTA0NjMzNTBjNDAzNGEwODhjNzk4 ZWViNWQ4YTU5YTI2NDUwYzgwHhcNMjYwNjAyMTIxMjUzWhcNMjcwNjAxMTIxNzUz WjAzMTEwLwYDVQQDEyhCQ0U5NUExNTU3QzQ3MzlFNzhGRUEzQTZEMTY2RTYzQkI5 NUYzNEVBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xs2XdvtSJ95 47un2XKBcsMTPPa9LYWdiVYsSPdH5RVlApLEqoQ/d4eky1yPxZpi35VD8z2oUr8l 8FO5cLu5Fc2ySBz+uTrIi61COJISXxMTRDIVe3Fgsh/eEV3q8SCfLJ/fvjiOnRmE HO22+Alrj8zyyZUYE+vZNhDfUqrhC9/xYKvJd38szzPiTKioMyS0EOtrCxKuZGIk yEPFEps2RMkXWTaBE9EghkXwXne/1vSp8oSVy9RruVBNrAyS9/si7xjfy0Calc4W I4hnSwCyYL76YNorHfjivuSNhaF/mmvcq9i0AiV+uN2Qvem3H9qJJsdtb1TzHO9C qBcuLr29HwIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFLzpWhVXxHOeeP6jptFm5ju5 XzTqMB8GA1UdIwQYMBaAFFXhyAso6CnX1ZO66g1LLQhnpnbgMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzhhZmI1ZmUyLTNjMmEtNDkzOS05NWU5 LTAwNzdiODBiNGYwZS8xLzU1RTFDODBCMjhFODI5RDdENTkzQkFFQTBENEIyRDA4 NjdBNjc2RTAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmIt NDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83ZjMzY2Y1OS1hZTM1LTQxZDQtODI1Mi1k OWJkYmFiYTQyMTAvYTIyYWE4MmJkNjNlZTA0NjMzNTBjNDAzNGEwODhjNzk4ZWVi NWQ4YTU5YTI2NDUwYzguY2VyMIGzBggrBgEFBQcBCwSBpjCBozCBoAYIKwYBBQUH MAuGgZNyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzhhZmI1ZmUyLTNjMmEtNDkzOS05NWU5LTAwNzdiODBiNGYwZS8xLzMyMzYzMDMy M2E2NjM5MzI2MTNhNjMzMDMwM2EzYTJmMzMzODJkMzQzODIwM2QzZTIwMzQzMDM5 MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB /wQSMBAwDgQCAAIwCAMGAiYC+SoMMA0GCSqGSIb3DQEBCwUAA4IBAQAQgi3uDHLY JAyk21VVu3bZ4DuyHCAS1rvBem4st6D0LgnnqI5DfOoDnCNz9b8n4ctClF3nAu9r rolIun+7gE50fDCOa3hmSrX8H/zl5imER86e9pKDBuOIs4DQekddEgfSoKDBnRjq qBt7axJKy75vly7Y4wARRB50iEOEG+t2/6dlpmbLdK3GC/0J8cJvMSWzgtp/1LNF aT9HPrAU4PpmOFhyHduScw4iQxEMEJ93OV9WB9o1qW8V8DevPzjznphO10fGVfVR sun/hHkSetTc6y/5c5lzArO88aTls/SPUJVjMRJU3eAvYy4/gudFvXrz5AiSV7h/ WsXg4oogu2rk -----END CERTIFICATE-----Generated at Thu Jun 4 01:20:08 2026 by rpki-client