$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/3136302e33302e32352e302f32342d3234203d3e20313533313736.roa File: 3136302e33302e32352e302f32342d3234203d3e20313533313736.roa (raw, json) Hash identifier: sWQMzSPI6Bg4G4IKisjp9DHougwIrJ9n/xHdiIfWjWY= Subject key identifier: 1C:6C:95:A1:3B:1F:EC:7E:CA:3B:CE:FE:3B:52:75:7C:14:30:F4:05 Certificate issuer: /CN=A91443440000/serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Certificate serial: 5AC5FBED95C23C7A219597751AF234A7D7C14ECD Authority key identifier: C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/3136302e33302e32352e302f32342d3234203d3e20313533313736.roa Signing time: Sat 28 Jun 2025 17:41:11 +0000 ROA not before: Sat 28 Jun 2025 17:36:11 +0000 ROA not after: Sat 27 Jun 2026 17:41:11 +0000 asID: 153176 IP address blocks: 160.30.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 18:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:c5:fb:ed:95:c2:3c:7a:21:95:97:75:1a:f2:34:a7:d7:c1:4e:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Validity Not Before: Jun 28 17:36:11 2025 GMT Not After : Jun 27 17:41:11 2026 GMT Subject: CN=1C6C95A13B1FEC7ECA3BCEFE3B52757C1430F405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:32:e4:2a:7f:c0:d3:81:04:10:16:b8:e7:0e: f6:4f:e1:0a:c4:20:0c:f9:34:6d:4a:bc:e0:49:fd: 40:b1:1b:08:93:80:95:a0:fd:ff:f4:53:04:7a:e3: 08:b6:4a:fa:4d:28:6b:b9:22:6a:25:e6:94:66:f2: cb:a5:31:85:32:35:5f:51:09:6c:f2:86:3e:f7:e2: 08:f3:76:c4:b4:94:41:71:d4:fe:ba:93:cd:84:c0: f3:77:c7:37:fa:f2:4b:22:30:77:96:27:c1:fb:5f: ff:a8:45:6b:a1:32:41:08:7a:c6:a1:e5:82:a1:12: 9f:58:a9:bd:43:10:23:e7:7c:cc:01:a2:f6:48:b5: 25:e5:e8:24:c8:25:05:a4:55:c3:51:8c:52:dc:2c: e8:f6:38:0b:02:d4:03:f7:d9:b4:ff:fb:fa:68:65: 1a:aa:e1:06:d5:b5:ce:cb:bc:43:b9:94:68:b6:7f: 61:ec:42:18:8b:45:1c:a9:21:a5:5c:fd:0e:6a:5f: ff:ae:5a:cf:80:b3:6b:4d:97:ea:a0:4c:74:4a:1a: 38:62:8a:cc:af:3c:86:8f:7a:7d:ca:b2:35:c7:ec: 1a:cb:1e:a3:fb:a7:65:6c:fd:af:e4:c0:d3:58:63: f5:07:75:6b:68:93:72:49:ea:c5:20:67:d9:ce:78: 19:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6C:95:A1:3B:1F:EC:7E:CA:3B:CE:FE:3B:52:75:7C:14:30:F4:05 X509v3 Authority Key Identifier: keyid:C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/3136302e33302e32352e302f32342d3234203d3e20313533313736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.30.25.0/24 Signature Algorithm: sha256WithRSAEncryption cc:52:f7:95:d2:f3:1d:75:02:60:07:e7:cd:dc:22:f4:b9:68: 94:d7:9d:2a:28:72:5d:fd:d7:83:ee:9e:cf:88:e6:0b:3c:36: 1c:9b:76:ea:0e:a9:fe:bf:b5:ec:ba:a7:3c:2f:73:ca:b4:cd: d0:f8:bc:db:12:6d:09:f0:f6:66:37:d5:12:92:ac:9d:b4:5b: 48:5d:5e:26:63:8a:87:01:a3:51:6b:0a:3f:b1:5f:94:cf:83: 63:ac:7a:2f:86:93:02:03:71:2b:c2:a6:f5:51:bb:50:cb:6f: 1d:08:9a:be:fb:97:77:81:38:fc:3b:98:03:fc:ea:b5:6a:44: e1:cb:8a:2c:1d:3b:71:24:5e:ee:de:0f:8c:f5:73:32:16:50: 08:2f:a6:b3:f2:c2:e1:e7:78:19:02:dd:79:f2:87:d2:ec:71: 09:7c:a1:08:ef:3a:12:82:03:ca:1a:65:a8:88:0b:a7:bd:87: 38:31:61:9f:b7:6c:6d:e7:84:cc:92:c2:fe:5a:20:b4:0a:dd: 94:7b:53:c3:62:f4:fd:0a:85:53:f2:42:98:32:08:a2:00:88: 19:f6:b2:f5:d9:54:2b:17:a1:96:ad:8b:9e:52:1a:cb:46:54: 4d:8c:e9:68:1b:ec:27:d1:4e:52:bd:be:c1:72:44:20:b7:97: 79:41:03:15 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUWsX77ZXCPHohlZd1GvI0p9fBTs0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyhDNEU2QzNEQUVC NzRCRTQ1MjA3RUI4MERFREYxRkZENTRCQzAwMTlFMB4XDTI1MDYyODE3MzYxMVoX DTI2MDYyNzE3NDExMVowMzExMC8GA1UEAxMoMUM2Qzk1QTEzQjFGRUM3RUNBM0JD RUZFM0I1Mjc1N0MxNDMwRjQwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEy5Cp/wNOBBBAWuOcO9k/hCsQgDPk0bUq84En9QLEbCJOAlaD9//RTBHrj CLZK+k0oa7kiaiXmlGbyy6UxhTI1X1EJbPKGPvfiCPN2xLSUQXHU/rqTzYTA83fH N/rySyIwd5Ynwftf/6hFa6EyQQh6xqHlgqESn1ipvUMQI+d8zAGi9ki1JeXoJMgl BaRVw1GMUtws6PY4CwLUA/fZtP/7+mhlGqrhBtW1zsu8Q7mUaLZ/YexCGItFHKkh pVz9Dmpf/65az4Cza02X6qBMdEoaOGKKzK88ho96fcqyNcfsGsseo/unZWz9r+TA 01hj9Qd1a2iTcknqxSBn2c54GQMCAwEAAaOCAlcwggJTMB0GA1UdDgQWBBQcbJWh Ox/sfso7zv47UnV8FDD0BTAfBgNVHSMEGDAWgBTE5sPa63S+RSB+uA3t8f/VS8AB njAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMi9DNEU2QzNEQUVCNzRCRTQ1MjA3 RUI4MERFREYxRkZENTRCQzAwMTlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi94T2JEMnV0MHZrVWdmcmdON2ZIXzFV dkFBWjQuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUHMAuGgY1yc3lu YzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzhkNWNkMTRl LTVmNjMtNGYxYy05NGUzLTI3MDUwYzI2NjQ4MC8yLzMxMzYzMDJlMzMzMDJlMzIz NTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMzMxMzczNi5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AKAeGTANBgkqhkiG9w0BAQsFAAOCAQEAzFL3ldLzHXUCYAfnzdwi9LlolNedKihy Xf3Xg+6ez4jmCzw2HJt26g6p/r+17LqnPC9zyrTN0Pi82xJtCfD2ZjfVEpKsnbRb SF1eJmOKhwGjUWsKP7FflM+DY6x6L4aTAgNxK8Km9VG7UMtvHQiavvuXd4E4/DuY A/zqtWpE4cuKLB07cSRe7t4PjPVzMhZQCC+ms/LC4ed4GQLdefKH0uxxCXyhCO86 EoIDyhplqIgLp72HODFhn7dsbeeEzJLC/logtArdlHtTw2L0/QqFU/JCmDIIogCI Gfay9dlUKxehlq2LnlIay0ZUTYzpaBvsJ9FOUr2+wXJEILeXeUEDFQ== -----END CERTIFICATE-----Generated at Sun Jun 29 06:29:39 2025 by rpki-client