$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa File: 32332e3139312e34302e302f32342d3234203d3e203236393534.roa (raw, json) Hash identifier: S3jzo3eG6y4PI2K8QRCs4He73uG95vDRz8jaxjn2rIA= Subject key identifier: DB:36:33:BE:40:FA:B8:7B:B8:CF:FC:95:03:71:1E:76:28:5A:12:F1 Certificate issuer: /CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Certificate serial: 5F2AF861578056778A2C36D7C480D1A40A1B57B2 Authority key identifier: 3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa Signing time: Thu 02 Oct 2025 16:21:19 +0000 ROA not before: Thu 02 Oct 2025 16:16:19 +0000 ROA not after: Thu 01 Oct 2026 16:21:19 +0000 asID: 26954 IP address blocks: 23.191.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 09:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:2a:f8:61:57:80:56:77:8a:2c:36:d7:c4:80:d1:a4:0a:1b:57:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Validity Not Before: Oct 2 16:16:19 2025 GMT Not After : Oct 1 16:21:19 2026 GMT Subject: CN=DB3633BE40FAB87BB8CFFC9503711E76285A12F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1b:75:c3:ba:e4:41:c8:0d:45:80:df:32:9c: 17:b5:c8:c7:5b:de:fc:8a:bc:f2:5c:f6:ec:fd:e6: 83:4a:92:c7:9c:00:a3:e3:a2:90:4b:bc:fd:b5:47: 17:33:26:5d:65:89:4b:18:21:07:d2:d1:31:15:16: a8:9b:66:7b:d1:87:5c:fb:5d:63:95:da:39:18:cb: 04:f9:15:b0:e4:1e:ed:f6:ca:bf:0c:aa:4b:df:8f: 02:6a:00:da:5e:7e:64:c5:81:ea:9f:d0:d5:22:71: 6f:ac:3c:75:be:12:24:f7:4a:17:28:c0:c3:b9:f7: 24:1a:7c:35:4c:34:e9:e8:32:8e:40:bc:60:ff:09: 0b:c9:f6:a0:7a:d0:69:d0:b8:84:2d:88:74:a9:c6: a5:50:cb:c2:7b:15:73:ef:88:b4:d0:79:5b:e1:62: fd:49:a2:c0:14:d1:ea:f1:1c:7c:1e:0e:d0:f4:01: c0:7b:23:34:fc:51:71:e6:b9:2c:5c:8d:61:13:10: f7:bc:c9:5d:01:1b:a2:80:63:9a:32:52:4f:a5:1e: 6f:6f:c6:7b:e0:6c:f0:14:71:e5:fb:66:f7:ee:a6: 51:01:06:6b:62:7a:30:81:c7:f6:1f:6d:e4:6e:50: fb:b1:3c:d5:ae:e4:37:49:eb:9f:06:59:33:44:18: 7f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:36:33:BE:40:FA:B8:7B:B8:CF:FC:95:03:71:1E:76:28:5A:12:F1 X509v3 Authority Key Identifier: keyid:3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.191.40.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:e5:69:1a:ff:ce:29:67:e0:94:1f:ce:bb:97:d8:bb:78:18: ce:9e:7e:72:c1:8a:b3:e4:1e:b8:27:18:73:a5:a6:60:34:25: bf:38:97:af:59:48:2c:09:1b:20:22:f9:cf:9c:69:1e:8c:c9: 82:35:95:b1:43:62:3f:44:c3:8a:b2:05:b3:70:b2:cc:9b:64: db:aa:a2:bd:1b:e4:3c:f0:89:90:a1:74:1f:10:3f:ee:28:79: 81:a0:8c:c9:b4:56:d3:2c:5b:fc:44:85:f7:72:46:46:83:ca: 7e:1f:10:74:d6:a7:af:24:78:21:e6:fe:48:24:66:79:01:46: 6d:aa:a4:d4:70:b8:2c:14:78:f1:e9:9c:6f:f6:c6:ec:25:28: 43:b3:25:ae:c0:27:4e:7b:18:53:c9:d3:26:4a:6a:a1:a5:ce: a2:99:d5:0f:67:cd:af:8f:f6:b2:b4:1c:20:0a:03:66:13:6c: 5e:a3:c1:c8:9d:ea:1e:ce:22:6c:f5:0d:28:3c:82:27:7a:8d: c6:86:57:e1:8a:73:77:a3:07:d6:6c:7d:d3:2b:7e:8c:ae:2b: af:79:ab:b7:cb:ad:aa:0f:ee:99:3d:de:52:d8:d0:95:a4:30: 9b:48:ce:37:de:90:42:86:d3:97:b0:9d:97:76:34:09:ac:ed: a6:cf:f6:f2 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUXyr4YVeAVneKLDbXxIDRpAobV7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3 NjdjZjNkMGI5ZmRlNjIzMWIwHhcNMjUxMDAyMTYxNjE5WhcNMjYxMDAxMTYyMTE5 WjAzMTEwLwYDVQQDEyhEQjM2MzNCRTQwRkFCODdCQjhDRkZDOTUwMzcxMUU3NjI4 NUExMkYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Rt1w7rkQcgN RYDfMpwXtcjHW978irzyXPbs/eaDSpLHnACj46KQS7z9tUcXMyZdZYlLGCEH0tEx FRaom2Z70Ydc+11jldo5GMsE+RWw5B7t9sq/DKpL348CagDaXn5kxYHqn9DVInFv rDx1vhIk90oXKMDDufckGnw1TDTp6DKOQLxg/wkLyfagetBp0LiELYh0qcalUMvC exVz74i00Hlb4WL9SaLAFNHq8Rx8Hg7Q9AHAeyM0/FFx5rksXI1hExD3vMldARui gGOaMlJPpR5vb8Z74GzwFHHl+2b37qZRAQZrYnowgcf2H23kblD7sTzVruQ3Seuf BlkzRBh/NQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFNs2M75A+rh7uM/8lQNxHnYo WhLxMB8GA1UdIwQYMBaAFD/NOoOeoUF/2Yjz3f0EVBl/qvR6MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5 LTBhYjcwZTQ4MTViYi8xLzNGQ0QzQTgzOUVBMTQxN0ZEOTg4RjNEREZEMDQ1NDE5 N0ZBQUY0N0EuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYt NDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS81MWNkOTlmNy0yZjQyLTRkZWMtYjJjNi0w OWJhZmFhMzc4MGUvMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3Njdj ZjNkMGI5ZmRlNjIzMWIuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4MTViYi8xLzMyMzMyZTMx MzkzMTJlMzQzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzOTM1MzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXvygwDQYJKoZIhvcNAQELBQADggEBAJ7laRr/ziln4JQfzruX2Lt4 GM6efnLBirPkHrgnGHOlpmA0Jb84l69ZSCwJGyAi+c+caR6MyYI1lbFDYj9Ew4qy BbNwssybZNuqor0b5DzwiZChdB8QP+4oeYGgjMm0VtMsW/xEhfdyRkaDyn4fEHTW p68keCHm/kgkZnkBRm2qpNRwuCwUePHpnG/2xuwlKEOzJa7AJ057GFPJ0yZKaqGl zqKZ1Q9nza+P9rK0HCAKA2YTbF6jwcid6h7OImz1DSg8gid6jcaGV+GKc3ejB9Zs fdMrfoyuK695q7fLraoP7pk93lLY0JWkMJtIzjfekEKG05ewnZd2NAms7abP9vI= -----END CERTIFICATE-----Generated at Mon Oct 20 13:22:59 2025 by rpki-client