$ rpki-client -vvf rsync.rp.ki/repo/aci/1/32332e3133382e35362e302f32342d3234203d3e2031303031.roa File: 32332e3133382e35362e302f32342d3234203d3e2031303031.roa (raw, json) Hash identifier: 6oFLyTYuJkvjS03uo6iqb3OI5JWHagpmx8aoJd8JLfo= Subject key identifier: EF:D0:0E:4C:07:C8:A3:5D:0B:E6:A0:0F:BE:ED:90:F4:A6:85:2B:C4 Certificate issuer: /CN=446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144 Certificate serial: 3E151892123D3FF658968C313CDE6DF715C35615 Authority key identifier: 04:C3:A5:EF:44:0A:79:31:A7:BB:6D:C0:A0:82:11:C4:90:E2:09:E3 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144.cer Subject info access: rsync://rsync.rp.ki/repo/aci/1/32332e3133382e35362e302f32342d3234203d3e2031303031.roa Signing time: Sun 05 Oct 2025 22:31:11 +0000 ROA not before: Sun 05 Oct 2025 22:26:11 +0000 ROA not after: Sun 04 Oct 2026 22:31:11 +0000 asID: 1001 IP address blocks: 23.138.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.rp.ki/repo/aci/1/04C3A5EF440A7931A7BB6DC0A08211C490E209E3.crl rsync://rsync.rp.ki/repo/aci/1/04C3A5EF440A7931A7BB6DC0A08211C490E209E3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/8a177cd6-d91e-4c15-992e-7337b8e894a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/8a177cd6-d91e-4c15-992e-7337b8e894a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 15 Oct 2025 01:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:15:18:92:12:3d:3f:f6:58:96:8c:31:3c:de:6d:f7:15:c3:56:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144 Validity Not Before: Oct 5 22:26:11 2025 GMT Not After : Oct 4 22:31:11 2026 GMT Subject: CN=EFD00E4C07C8A35D0BE6A00FBEED90F4A6852BC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:16:15:ad:34:df:27:78:5b:9e:7f:f4:50:30: 07:96:12:db:5f:dd:e8:74:f4:1c:71:8c:6a:2b:64: 3f:bb:57:cb:b1:63:9a:9a:b3:a4:9a:f1:30:f8:2a: 25:6d:71:7d:07:e3:14:5a:d4:5c:30:c3:8b:27:27: 75:ef:5c:bd:28:30:69:0a:55:d9:d8:1b:77:00:c1: 1b:a1:0f:59:81:24:eb:64:6c:1e:35:ec:04:60:55: c2:44:eb:52:fb:30:50:22:c4:df:fb:ba:0d:07:22: 18:ed:e3:6b:5a:41:8b:db:6c:bf:1c:a5:37:df:bd: 22:74:36:14:61:0b:aa:e2:7b:8c:db:fb:6b:40:fd: 89:59:d8:71:61:06:9e:5d:b5:e9:6f:6d:17:04:5b: 6d:c5:8b:95:50:a6:b8:b4:8f:42:ca:d0:34:e6:e9: b2:36:91:cb:e4:e6:66:66:d3:60:5a:6f:8a:72:69: 1c:1c:38:31:60:87:5f:46:6e:80:42:e2:e6:22:58: b0:0e:07:69:5e:e3:c3:27:49:e3:8b:77:e0:0c:db: d0:11:a1:f7:16:ea:a0:29:01:b6:96:61:ec:d6:88: a4:e7:7e:0a:3d:a7:d9:12:ee:24:0e:7a:be:a3:f3: 4c:58:30:9b:61:f9:95:ca:1c:00:58:2b:05:a9:94: c8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D0:0E:4C:07:C8:A3:5D:0B:E6:A0:0F:BE:ED:90:F4:A6:85:2B:C4 X509v3 Authority Key Identifier: keyid:04:C3:A5:EF:44:0A:79:31:A7:BB:6D:C0:A0:82:11:C4:90:E2:09:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.rp.ki/repo/aci/1/04C3A5EF440A7931A7BB6DC0A08211C490E209E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144.cer Subject Information Access: Signed Object - URI:rsync://rsync.rp.ki/repo/aci/1/32332e3133382e35362e302f32342d3234203d3e2031303031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.138.56.0/24 Signature Algorithm: sha256WithRSAEncryption 96:fb:8d:04:53:6c:ce:cb:c5:fa:9c:70:8a:f3:a5:a9:3a:cc: b3:64:58:bc:b7:5a:7f:a9:93:81:be:f5:f9:db:7e:d9:66:ed: b8:a8:c7:cc:8a:b6:4a:81:36:9d:99:e3:ce:d5:f3:53:4e:d4: e2:98:39:ed:9e:4a:23:14:c0:dc:97:ac:37:53:49:fa:72:9a: a7:e8:b8:e6:35:b0:d2:48:41:96:e1:a4:2c:b9:15:88:91:86: 35:5f:d0:05:62:6e:4f:7d:de:d2:91:d3:27:06:78:65:52:86: ab:8b:2b:25:30:72:ac:40:1f:a0:be:38:40:ef:7c:ff:0c:5e: 43:43:1d:fb:38:61:2a:24:da:95:27:b8:14:fc:8e:5c:d3:f9: 23:e4:11:72:17:93:6a:18:3e:17:2e:b6:41:87:d9:8b:8d:24: d1:d7:f4:f6:dc:a1:4e:7c:e4:f0:ad:f9:44:e3:14:10:88:6e: e1:a9:d8:c9:61:0d:a7:e3:f1:c8:27:33:e8:f9:12:d8:ba:ce: 6e:9f:d3:46:8f:cd:03:12:10:67:d5:44:0b:ab:a1:79:4d:fe: 59:7f:f9:a3:56:40:64:cf:b0:6f:6d:9a:a9:7d:15:8e:3c:a4: 35:86:8b:cc:3c:60:8a:33:5f:39:16:ad:f3:c1:ad:f3:36:aa: e0:92:96:13 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUPhUYkhI9P/ZYlowxPN5t9xXDVhUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDQ2Y2ZhMzgxYzcxNmQ2YTc2OWQwMTY0NGIxZmVkN2Qw ZGYzMmQzZjNhNWRlMjYxNDQwHhcNMjUxMDA1MjIyNjExWhcNMjYxMDA0MjIzMTEx WjAzMTEwLwYDVQQDEyhFRkQwMEU0QzA3QzhBMzVEMEJFNkEwMEZCRUVEOTBGNEE2 ODUyQkM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhYVrTTfJ3hb nn/0UDAHlhLbX93odPQccYxqK2Q/u1fLsWOamrOkmvEw+ColbXF9B+MUWtRcMMOL Jyd171y9KDBpClXZ2Bt3AMEboQ9ZgSTrZGweNewEYFXCROtS+zBQIsTf+7oNByIY 7eNrWkGL22y/HKU3370idDYUYQuq4nuM2/trQP2JWdhxYQaeXbXpb20XBFttxYuV UKa4tI9CytA05umyNpHL5OZmZtNgWm+KcmkcHDgxYIdfRm6AQuLmIliwDgdpXuPD J0nji3fgDNvQEaH3FuqgKQG2lmHs1oik534KPafZEu4kDnq+o/NMWDCbYfmVyhwA WCsFqZTIbwIDAQABo4ICVjCCAlIwHQYDVR0OBBYEFO/QDkwHyKNdC+agD77tkPSm hSvEMB8GA1UdIwQYMBaAFATDpe9ECnkxp7ttwKCCEcSQ4gnjMA4GA1UdDwEB/wQE AwIHgDBcBgNVHR8EVTBTMFGgT6BNhktyc3luYzovL3JzeW5jLnJwLmtpL3JlcG8v YWNpLzEvMDRDM0E1RUY0NDBBNzkzMUE3QkI2REMwQTA4MjExQzQ5MEUyMDlFMy5j cmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBr aS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBh LTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1NzI3MmMtYTc5YS00NWJmLTk1ODYt OTJkZDQ5ZWYzMjIzLzhhMTc3Y2Q2LWQ5MWUtNGMxNS05OTJlLTczMzdiOGU4OTRh OC80NDZjZmEzODFjNzE2ZDZhNzY5ZDAxNjQ0YjFmZWQ3ZDBkZjMyZDNmM2E1ZGUy NjE0NC5jZXIwcQYIKwYBBQUHAQsEZTBjMGEGCCsGAQUFBzALhlVyc3luYzovL3Jz eW5jLnJwLmtpL3JlcG8vYWNpLzEvMzIzMzJlMzEzMzM4MmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAXijgwDQYJKoZIhvcN AQELBQADggEBAJb7jQRTbM7LxfqccIrzpak6zLNkWLy3Wn+pk4G+9fnbftlm7bio x8yKtkqBNp2Z487V81NO1OKYOe2eSiMUwNyXrDdTSfpymqfouOY1sNJIQZbhpCy5 FYiRhjVf0AVibk993tKR0ycGeGVShquLKyUwcqxAH6C+OEDvfP8MXkNDHfs4YSok 2pUnuBT8jlzT+SPkEXIXk2oYPhcutkGH2YuNJNHX9PbcoU585PCt+UTjFBCIbuGp 2MlhDafj8cgnM+j5Eti6zm6f00aPzQMSEGfVRAuroXlN/ll/+aNWQGTPsG9tmql9 FY48pDWGi8w8YIozXzkWrfPBrfM2quCSlhM= -----END CERTIFICATE-----Generated at Tue Oct 14 06:11:24 2025 by rpki-client