$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/32332e3137302e3231362e302f32342d3234203d3e203538323032.roa File: 32332e3137302e3231362e302f32342d3234203d3e203538323032.roa (raw, json) Hash identifier: xsTimzkeTJXF4Nr71zJnv2bONR0iZSrLPJdDzaLfkdY= Subject key identifier: 28:27:0A:A4:41:E1:BA:27:ED:31:F7:62:6F:6D:D2:FF:6B:E8:8A:07 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 5D57810EEB7013FB22794C6804A6BEC224F5686B Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/32332e3137302e3231362e302f32342d3234203d3e203538323032.roa Signing time: Sun 17 Aug 2025 11:56:43 +0000 ROA not before: Sun 17 Aug 2025 11:51:43 +0000 ROA not after: Sun 16 Aug 2026 11:56:43 +0000 asID: 58202 IP address blocks: 23.170.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 12:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:57:81:0e:eb:70:13:fb:22:79:4c:68:04:a6:be:c2:24:f5:68:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: Aug 17 11:51:43 2025 GMT Not After : Aug 16 11:56:43 2026 GMT Subject: CN=28270AA441E1BA27ED31F7626F6DD2FF6BE88A07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c2:67:ef:e7:ce:f1:c7:e2:79:8f:8e:84:33: f2:f2:52:07:7d:db:90:25:d1:3d:8f:19:ae:3c:c8: 17:6d:ca:d6:53:4f:ea:c6:a7:f5:7b:25:a0:b5:7f: 32:11:35:a0:f7:b6:3d:e7:27:36:5d:9b:ac:0e:ef: f3:16:94:e3:b5:e6:ad:88:d0:d6:b2:5a:3d:84:d3: 69:78:62:3d:d3:3b:9f:c9:f5:44:a1:d3:c6:b7:4e: 72:13:9f:17:8d:56:09:c1:d7:8e:04:99:4d:ab:26: 5e:da:aa:5c:11:e9:cb:a5:f0:10:9d:c4:41:51:9e: 66:b5:a5:1f:c8:e1:ab:b9:a7:17:7a:ea:f1:b0:ed: d4:b6:34:88:f2:05:5b:a3:27:c9:dc:bf:e4:d6:26: 1b:e2:11:ef:66:2e:77:c0:63:dd:a2:c2:6c:c6:a4: 1d:6b:52:e3:95:b7:f4:47:78:48:1c:2c:61:d1:a8: 0f:92:af:6b:cb:7e:0b:41:2e:ff:5c:f1:e6:65:fd: 79:4b:26:e6:db:10:27:17:3f:d0:79:29:62:d5:4a: 06:96:11:c6:f6:4b:84:8c:89:cd:ea:9b:98:3b:84: 7b:85:3a:e7:4d:b2:26:19:c2:b3:36:5c:25:17:37: ca:f2:f2:8f:b5:e0:9c:97:da:bf:27:c4:70:32:5c: 3d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:27:0A:A4:41:E1:BA:27:ED:31:F7:62:6F:6D:D2:FF:6B:E8:8A:07 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/32332e3137302e3231362e302f32342d3234203d3e203538323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.170.216.0/24 Signature Algorithm: sha256WithRSAEncryption 15:ec:ef:ef:4b:63:94:81:d4:47:8c:ca:9c:b4:09:f3:ea:7a: 7c:56:28:77:14:bd:4c:bb:7a:b9:0f:1e:b5:a2:ec:33:56:4f: 16:0c:56:83:da:e9:c8:47:9f:12:1e:62:46:ba:0d:36:4d:9b: fc:c3:a9:13:c4:0d:36:d4:9a:a5:d4:91:24:91:89:41:9a:de: b5:40:36:8a:ce:0a:a3:ec:c1:c2:d3:42:a6:0c:c4:29:3d:b9: 0b:50:2f:96:c2:dd:4f:50:6e:8f:34:13:59:08:9c:46:36:95: 3d:f8:04:61:89:eb:31:55:31:cb:9a:1b:d7:3a:08:e5:15:d8: d3:db:7f:06:94:98:7d:b7:70:8a:f7:7b:ab:1a:8c:86:b5:81: e7:c8:4d:d6:60:bc:75:1b:39:89:9d:a7:98:d7:86:2e:df:79: 90:17:b8:e6:96:50:02:e3:77:7c:6f:67:39:51:9c:00:14:5d: ba:dd:d7:d9:d8:69:25:f0:50:91:12:48:cd:9b:17:ed:31:c7: 00:c2:6e:89:4b:96:e3:cb:af:75:b2:aa:0e:a9:b8:9d:dc:1d: e2:e7:37:ae:75:fd:ef:00:47:d6:c0:40:5a:5c:7f:45:34:16: 62:f0:03:22:3f:12:2d:1c:a9:1e:bf:14:93:0c:33:11:14:b8: 73:a0:b4:ed -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUXVeBDutwE/sieUxoBKa+wiT1aGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjUwODE3MTE1MTQzWhcNMjYwODE2MTE1NjQz WjAzMTEwLwYDVQQDEygyODI3MEFBNDQxRTFCQTI3RUQzMUY3NjI2RjZERDJGRjZC RTg4QTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMJn7+fO8cfi eY+OhDPy8lIHfduQJdE9jxmuPMgXbcrWU0/qxqf1eyWgtX8yETWg97Y95yc2XZus Du/zFpTjteatiNDWslo9hNNpeGI90zufyfVEodPGt05yE58XjVYJwdeOBJlNqyZe 2qpcEenLpfAQncRBUZ5mtaUfyOGruacXeurxsO3UtjSI8gVboyfJ3L/k1iYb4hHv Zi53wGPdosJsxqQda1Ljlbf0R3hIHCxh0agPkq9ry34LQS7/XPHmZf15Sybm2xAn Fz/QeSli1UoGlhHG9kuEjInN6puYO4R7hTrnTbImGcKzNlwlFzfK8vKPteCcl9q/ J8RwMlw9nwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFCgnCqRB4bon7TH3Ym9t0v9r 6IoHMB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzMyZTMx MzczMDJlMzIzMTM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODMyMzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABeq2DANBgkqhkiG9w0BAQsFAAOCAQEAFezv70tjlIHUR4zKnLQJ 8+p6fFYodxS9TLt6uQ8etaLsM1ZPFgxWg9rpyEefEh5iRroNNk2b/MOpE8QNNtSa pdSRJJGJQZretUA2is4Ko+zBwtNCpgzEKT25C1AvlsLdT1BujzQTWQicRjaVPfgE YYnrMVUxy5ob1zoI5RXY09t/BpSYfbdwivd7qxqMhrWB58hN1mC8dRs5iZ2nmNeG Lt95kBe45pZQAuN3fG9nOVGcABRdut3X2dhpJfBQkRJIzZsX7THHAMJuiUuW48uv dbKqDqm4ndwd4uc3rnX97wBH1sBAWlx/RTQWYvADIj8SLRypHr8UkwwzERS4c6C0 7Q== -----END CERTIFICATE-----Generated at Sat Aug 23 13:14:38 2025 by rpki-client