$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/2/323630323a663530633a6330303a3a2f34382d3438203d3e20323035393431.roa File: 323630323a663530633a6330303a3a2f34382d3438203d3e20323035393431.roa (raw, json) Hash identifier: cSyT/kciF2Zl7w9vCUjIl+nGIP8YdhjrqQH5HZwdaRM= Subject key identifier: 61:BD:D5:3D:E0:FD:A3:B2:1B:1E:D4:99:AD:0B:82:B4:1C:F8:6C:FB Certificate issuer: /CN=D6D172D72D23BAC1F197C131AD720E6E8230B003 Certificate serial: 2F49B8506E62DCE9D8075426DD59FED8B65E2558 Authority key identifier: D6:D1:72:D7:2D:23:BA:C1:F1:97:C1:31:AD:72:0E:6E:82:30:B0:03 Authority info access: rsync://rpki-rps.arin.net/repository/ca2b12afc42843dbae4b05cf360d952d/0/D6D172D72D23BAC1F197C131AD720E6E8230B003.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/2/323630323a663530633a6330303a3a2f34382d3438203d3e20323035393431.roa Signing time: Sat 25 Apr 2026 15:50:49 +0000 ROA not before: Sat 25 Apr 2026 15:45:49 +0000 ROA not after: Sat 24 Apr 2027 15:50:49 +0000 asID: 205941 IP address blocks: 2602:f50c:c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/2/D6D172D72D23BAC1F197C131AD720E6E8230B003.crl rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/2/D6D172D72D23BAC1F197C131AD720E6E8230B003.mft rsync://rpki-rps.arin.net/repository/ca2b12afc42843dbae4b05cf360d952d/0/D6D172D72D23BAC1F197C131AD720E6E8230B003.cer rsync://rpki-rps.arin.net/repository/ca2b12afc42843dbae4b05cf360d952d/0/75BF1767564D7C44C5BD395F6A6A2190D2DDD708.crl rsync://rpki-rps.arin.net/repository/ca2b12afc42843dbae4b05cf360d952d/0/75BF1767564D7C44C5BD395F6A6A2190D2DDD708.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/c415644a-a5a4-4849-aba9-198086fd154d/fecfdfdbdb56d3fbfa261bb287bf0c4185572d0c21b64e1f74.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/c415644a-a5a4-4849-aba9-198086fd154d/c415644a-a5a4-4849-aba9-198086fd154d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/c415644a-a5a4-4849-aba9-198086fd154d/c415644a-a5a4-4849-aba9-198086fd154d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/c415644a-a5a4-4849-aba9-198086fd154d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 04:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:49:b8:50:6e:62:dc:e9:d8:07:54:26:dd:59:fe:d8:b6:5e:25:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6D172D72D23BAC1F197C131AD720E6E8230B003 Validity Not Before: Apr 25 15:45:49 2026 GMT Not After : Apr 24 15:50:49 2027 GMT Subject: CN=61BDD53DE0FDA3B21B1ED499AD0B82B41CF86CFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3a:44:18:7f:0a:81:7c:a5:07:eb:6b:2f:94: e5:d3:59:ef:9d:40:94:04:23:b9:ed:11:f9:b7:76: de:cc:a0:c2:b1:7d:03:35:d6:26:01:14:f1:bf:be: d6:8f:b0:96:ea:b7:5b:45:67:05:be:88:d2:ec:a7: 5f:b1:e1:84:0d:61:e8:1d:4a:2f:25:37:c1:42:24: e1:be:ae:18:45:11:c4:37:7d:ff:54:7e:2d:89:ba: 0a:ec:65:99:1b:90:d7:a1:12:0f:ef:e4:cc:1c:5f: 6d:92:12:a2:7c:dc:df:6b:45:45:1c:b3:85:2c:f2: 12:53:f5:19:4c:da:3c:83:ae:b9:09:7f:f7:80:f8: ed:bb:96:09:5a:0a:e3:66:0d:42:e8:7d:f1:6b:a5: 5b:59:31:02:d7:17:00:a3:77:e5:2d:5c:4e:6d:44: 50:1f:ed:d3:f0:31:e4:41:eb:97:3d:f1:5b:1c:32: 11:cd:ce:bd:6e:f4:f7:b8:24:df:6d:17:50:66:eb: 9e:84:3a:ad:18:c0:f3:fc:29:a6:84:6a:37:f0:67: 86:b5:1d:c2:90:bb:89:e4:06:73:4a:fb:fa:2d:23: df:50:6e:03:91:fa:aa:dc:55:74:55:f1:ce:9e:f9: 67:09:45:d8:7d:a0:de:06:9d:6a:02:94:b6:5b:79: eb:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BD:D5:3D:E0:FD:A3:B2:1B:1E:D4:99:AD:0B:82:B4:1C:F8:6C:FB X509v3 Authority Key Identifier: keyid:D6:D1:72:D7:2D:23:BA:C1:F1:97:C1:31:AD:72:0E:6E:82:30:B0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/2/D6D172D72D23BAC1F197C131AD720E6E8230B003.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/ca2b12afc42843dbae4b05cf360d952d/0/D6D172D72D23BAC1F197C131AD720E6E8230B003.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/2/323630323a663530633a6330303a3a2f34382d3438203d3e20323035393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f50c:c00::/48 Signature Algorithm: sha256WithRSAEncryption 0c:0b:b6:13:b3:c4:16:ee:e4:db:7e:0b:bc:d6:98:21:a8:31: 6f:47:45:c6:2d:37:18:73:e2:90:a7:37:bf:7b:4a:cc:fe:85: 38:20:67:9c:4e:43:6f:f2:e5:86:d5:13:11:0c:43:75:55:b9: c7:af:93:ac:69:6d:8b:3d:cb:6d:b2:9f:17:ce:31:cc:6e:af: 8a:2c:7c:58:de:d1:45:b0:20:32:28:ce:a2:ef:22:94:22:4f: 9c:12:29:8f:9d:a9:1f:5c:ba:df:23:b4:59:ba:ef:c7:60:30: 02:cb:29:a2:00:7e:cf:0f:be:ca:f9:3f:c8:3e:e5:00:54:f6: 83:44:99:69:52:a9:c6:d8:27:33:44:50:3b:a9:a2:93:76:12: 30:ce:0c:0b:aa:2d:d0:78:c1:08:ce:e4:ab:fb:63:11:97:bc: 1c:5a:87:01:3a:01:92:1e:14:f4:1f:6e:00:42:07:90:6d:fc: d1:95:a8:31:9e:51:a8:32:a5:a4:5d:c8:6c:d7:68:13:2c:5e: 61:ce:f7:af:81:9f:bc:5d:ca:fd:bd:83:93:f8:dd:46:aa:4a: 05:6a:4e:5f:5a:a4:e4:16:00:53:26:b4:46:cd:12:63:97:59: 0d:01:05:3c:a1:31:a2:db:ed:e1:6c:19:03:ef:cf:f2:e8:80: 32:0f:19:fe -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUL0m4UG5i3OnYB1Qm3Vn+2LZeJVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZEMTcyRDcyRDIzQkFDMUYxOTdDMTMxQUQ3MjBFNkU4 MjMwQjAwMzAeFw0yNjA0MjUxNTQ1NDlaFw0yNzA0MjQxNTUwNDlaMDMxMTAvBgNV BAMTKDYxQkRENTNERTBGREEzQjIxQjFFRDQ5OUFEMEI4MkI0MUNGODZDRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6OkQYfwqBfKUH62svlOXTWe+d QJQEI7ntEfm3dt7MoMKxfQM11iYBFPG/vtaPsJbqt1tFZwW+iNLsp1+x4YQNYegd Si8lN8FCJOG+rhhFEcQ3ff9Ufi2JugrsZZkbkNehEg/v5MwcX22SEqJ83N9rRUUc s4Us8hJT9RlM2jyDrrkJf/eA+O27lglaCuNmDULoffFrpVtZMQLXFwCjd+UtXE5t RFAf7dPwMeRB65c98VscMhHNzr1u9Pe4JN9tF1Bm656EOq0YwPP8KaaEajfwZ4a1 HcKQu4nkBnNK+/otI99QbgOR+qrcVXRV8c6e+WcJRdh9oN4GnWoClLZbeetLAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUYb3VPeD9o7IbHtSZrQuCtBz4bPswHwYDVR0j BBgwFoAU1tFy1y0jusHxl8ExrXIOboIwsAMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZjhlZTYtYWJlNy00YWU4LTk2NGMtNzg4YmI5OGM5 NzVjLzIvRDZEMTcyRDcyRDIzQkFDMUYxOTdDMTMxQUQ3MjBFNkU4MjMwQjAwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5L2NhMmIxMmFmYzQyODQzZGJhZTRiMDVj ZjM2MGQ5NTJkLzAvRDZEMTcyRDcyRDIzQkFDMUYxOTdDMTMxQUQ3MjBFNkU4MjMw QjAwMy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDAyZjhlZTYt YWJlNy00YWU4LTk2NGMtNzg4YmI5OGM5NzVjLzIvMzIzNjMwMzIzYTY2MzUzMDYz M2E2MzMwMzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMwMzUzOTM0MzEucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAmAvUMDAAwDQYJKoZIhvcNAQELBQADggEBAAwLthOzxBbu5Nt+C7zW mCGoMW9HRcYtNxhz4pCnN797Ssz+hTggZ5xOQ2/y5YbVExEMQ3VVucevk6xpbYs9 y22ynxfOMcxur4osfFje0UWwIDIozqLvIpQiT5wSKY+dqR9cut8jtFm678dgMALL KaIAfs8Pvsr5P8g+5QBU9oNEmWlSqcbYJzNEUDupopN2EjDODAuqLdB4wQjO5Kv7 YxGXvBxahwE6AZIeFPQfbgBCB5Bt/NGVqDGeUagypaRdyGzXaBMsXmHO96+Bn7xd yv29g5P43UaqSgVqTl9apOQWAFMmtEbNEmOXWQ0BBTyhMaLb7eFsGQPvz/LogDIP Gf4= -----END CERTIFICATE-----Generated at Wed May 13 08:24:10 2026 by rpki-client