$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/3230362e3234352e3136362e302f32342d3234203d3e20323031333932.roa File: 3230362e3234352e3136362e302f32342d3234203d3e20323031333932.roa (raw, json) Hash identifier: sW4GJC3tSqXMt7INqjU6PqY9hi8nZi/2kkXSaTLZp5o= Subject key identifier: FC:46:CB:78:D9:2C:4A:62:F6:88:42:B5:B9:31:77:E5:C8:5B:3C:AB Certificate issuer: /CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Certificate serial: 2FAFBB57372F6068EE30407D6EFC09F2330D8B02 Authority key identifier: 15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/3230362e3234352e3136362e302f32342d3234203d3e20323031333932.roa Signing time: Thu 02 Apr 2026 00:03:06 +0000 ROA not before: Wed 01 Apr 2026 23:58:06 +0000 ROA not after: Thu 01 Apr 2027 00:03:06 +0000 asID: 201392 IP address blocks: 206.245.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 10 Apr 2026 11:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:af:bb:57:37:2f:60:68:ee:30:40:7d:6e:fc:09:f2:33:0d:8b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Validity Not Before: Apr 1 23:58:06 2026 GMT Not After : Apr 1 00:03:06 2027 GMT Subject: CN=FC46CB78D92C4A62F68842B5B93177E5C85B3CAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c2:ff:4e:61:bc:e1:dd:d6:ca:1c:56:c0:1d: 95:9e:34:28:bf:35:15:c0:43:18:77:65:10:b9:a8: 9a:1d:d7:a7:8f:fa:63:d1:2e:2d:3d:e7:7e:2f:4b: 7f:9e:74:e2:e2:be:e6:d4:84:8b:f6:4a:b8:46:92: 7b:b4:6d:54:b2:8b:7d:f7:12:bd:cf:b6:96:15:9d: df:c4:5a:a8:70:9a:23:86:86:fc:e2:03:99:57:8f: 32:95:21:36:07:42:e4:52:57:4b:4d:94:ce:e0:83: 2e:67:b4:40:e9:5b:74:d9:bc:f5:de:13:60:bd:70: 5a:ba:1e:df:ca:97:b6:fb:d3:6f:62:98:fb:46:a5: e3:ae:bc:32:4b:2a:3d:e9:7d:e6:90:ed:6c:3a:7a: de:f8:21:a4:21:44:cb:48:e9:9d:cb:55:f4:8c:0c: 21:6f:5d:d5:08:6c:fa:85:3a:e0:ae:cc:36:fe:7b: 7e:34:62:61:eb:88:27:fc:b7:a0:1f:24:e9:c0:eb: db:db:de:3a:eb:30:de:b8:86:b9:3d:c8:7e:56:9d: 24:ba:3a:f4:6b:e4:30:b2:f8:76:81:61:28:2d:03: 20:40:77:64:63:2e:26:6d:b0:c3:5a:a0:38:2a:e1: 9c:44:ad:2d:56:c7:66:4e:d5:ec:a2:59:bb:f2:17: c5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:46:CB:78:D9:2C:4A:62:F6:88:42:B5:B9:31:77:E5:C8:5B:3C:AB X509v3 Authority Key Identifier: keyid:15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/3230362e3234352e3136362e302f32342d3234203d3e20323031333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.245.166.0/24 Signature Algorithm: sha256WithRSAEncryption b9:08:d8:97:ec:2d:a2:4d:72:40:ca:4d:54:28:c6:73:9f:12: 9a:bc:96:6a:19:b8:0c:83:53:24:bc:2b:ce:9c:70:8c:eb:d2: a0:26:e1:7f:90:52:ae:30:79:46:94:38:bd:2f:f6:f5:2d:c1: 43:20:8f:ba:33:3c:42:b8:3f:7d:15:82:86:51:d9:30:7b:15: 7d:8c:72:0e:2d:25:9a:bc:6f:f0:49:8b:53:04:a8:67:96:fb: f4:f5:30:79:d4:63:01:c6:5e:5a:b4:d5:e9:32:b6:c2:f1:ac: b3:e8:04:34:17:04:bf:f9:1b:75:80:b2:26:78:70:84:ad:b9: 22:f4:65:21:a9:e8:fc:86:bf:e1:08:78:8d:56:cc:51:9c:0f: 47:99:4b:d8:33:50:69:9c:6a:7c:0e:2e:7f:f8:32:51:c9:f4: 2e:8b:86:03:c0:aa:1e:d9:b5:1d:64:57:0e:8c:4d:27:cf:cc: 1f:9c:29:26:a6:7e:9e:db:99:83:33:e0:2c:d5:b6:7d:ae:d9: da:8e:b1:e9:4d:15:4e:02:51:7a:26:51:fc:4e:4b:8e:db:5f: 80:5d:eb:9e:6f:62:ba:56:fd:7c:b6:51:e6:12:fd:f0:12:54: e8:cc:12:f4:32:9e:f7:d4:d9:c9:43:55:c4:cd:21:b1:bd:99: 33:b8:bf:02 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIUL6+7VzcvYGjuMEB9bvwJ8jMNiwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQz QzNCMjM1ODAeFw0yNjA0MDEyMzU4MDZaFw0yNzA0MDEwMDAzMDZaMDMxMTAvBgNV BAMTKEZDNDZDQjc4RDkyQzRBNjJGNjg4NDJCNUI5MzE3N0U1Qzg1QjNDQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTwv9OYbzh3dbKHFbAHZWeNCi/ NRXAQxh3ZRC5qJod16eP+mPRLi09534vS3+edOLivubUhIv2SrhGknu0bVSyi333 Er3PtpYVnd/EWqhwmiOGhvziA5lXjzKVITYHQuRSV0tNlM7ggy5ntEDpW3TZvPXe E2C9cFq6Ht/Kl7b7029imPtGpeOuvDJLKj3pfeaQ7Ww6et74IaQhRMtI6Z3LVfSM DCFvXdUIbPqFOuCuzDb+e340YmHriCf8t6AfJOnA69vb3jrrMN64hrk9yH5WnSS6 OvRr5DCy+HaBYSgtAyBAd2RjLiZtsMNaoDgq4ZxErS1Wx2ZO1eyiWbvyF8XlAgMB AAGjggJxMIICbTAdBgNVHQ4EFgQU/EbLeNksSmL2iEK1uTF35chbPKswHwYDVR0j BBgwFoAUFcXrbBWnMq3DGxXPep8P5Dw7I1gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMtZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRh ZmQxLzEvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNCMjM1OC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNC MjM1OC5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMt ZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRhZmQxLzEvMzIzMDM2MmUzMjM0MzUyZTMx MzYzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMTMzMzkzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAM71pjANBgkqhkiG9w0BAQsFAAOCAQEAuQjYl+wtok1yQMpNVCjGc58SmryW ahm4DINTJLwrzpxwjOvSoCbhf5BSrjB5RpQ4vS/29S3BQyCPujM8Qrg/fRWChlHZ MHsVfYxyDi0lmrxv8EmLUwSoZ5b79PUwedRjAcZeWrTV6TK2wvGss+gENBcEv/kb dYCyJnhwhK25IvRlIano/Ia/4Qh4jVbMUZwPR5lL2DNQaZxqfA4uf/gyUcn0LouG A8CqHtm1HWRXDoxNJ8/MH5wpJqZ+ntuZgzPgLNW2fa7Z2o6x6U0VTgJReiZR/E5L jttfgF3rnm9iulb9fLZR5hL98BJU6MwS9DKe99TZyUNVxM0hsb2ZM7i/Ag== -----END CERTIFICATE-----Generated at Thu Apr 9 22:16:38 2026 by rpki-client