$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa File: 3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa (raw, json) Hash identifier: sKcngjfp2byzVHvZ68cUPTRH6dJqFuoYMAWQT9Cz4EE= Subject key identifier: FE:54:90:44:2B:08:08:25:35:B9:CE:D8:0E:57:5E:84:22:B8:FA:36 Certificate issuer: /CN=A91650860000/serialNumber=D6F81145ED8982DB07845B74C04ED0CA8CFAF26A Certificate serial: 65B84714BFBCAF1AC5DAC53A93CCF05F2E8ADBF2 Authority key identifier: D6:F8:11:45:ED:89:82:DB:07:84:5B:74:C0:4E:D0:CA:8C:FA:F2:6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa Signing time: Thu 03 Jul 2025 03:53:28 +0000 ROA not before: Thu 03 Jul 2025 03:48:28 +0000 ROA not after: Thu 02 Jul 2026 03:53:28 +0000 asID: 149301 IP address blocks: 160.22.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.crl rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 06:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b8:47:14:bf:bc:af:1a:c5:da:c5:3a:93:cc:f0:5f:2e:8a:db:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650860000, serialNumber=D6F81145ED8982DB07845B74C04ED0CA8CFAF26A Validity Not Before: Jul 3 03:48:28 2025 GMT Not After : Jul 2 03:53:28 2026 GMT Subject: CN=FE5490442B08082535B9CED80E575E8422B8FA36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:51:97:12:ac:bf:bd:7c:2b:8c:bd:d6:b6:4a: e4:84:54:65:8c:e8:5a:1f:9b:c6:81:7b:cc:9b:ce: f8:cc:92:59:c1:47:e6:10:1d:ec:15:be:dd:be:1e: 75:0d:9e:74:a1:e1:ef:ee:b5:dd:45:7b:cd:e1:c5: ea:28:f8:91:dd:06:08:e9:2d:8b:2d:e5:ac:26:ca: eb:bc:4b:3c:6d:90:1d:5c:62:bc:5a:03:e8:18:84: bb:c0:3a:75:2d:d9:61:3a:14:e3:a6:62:4e:20:86: e8:c2:45:42:7d:6b:48:2a:cc:2c:da:74:b6:ad:4b: 77:3a:10:99:d0:9b:28:02:21:b4:8c:3d:20:56:31: 91:6d:af:52:d6:99:c9:59:fb:d7:39:97:e1:04:0d: 16:cc:2a:49:3b:ac:39:9f:eb:be:ea:7b:04:a9:27: 6d:25:ab:b3:5c:52:a6:9a:9d:34:de:9f:c5:97:97: fe:1b:76:1f:2e:91:e5:ea:35:68:3b:a4:15:59:a7: 18:92:33:07:69:6c:29:3e:5c:e2:f3:2f:04:56:14: c4:5d:1c:a4:94:28:02:6b:dd:75:32:e9:d3:27:65: 82:f2:30:b0:eb:fe:34:9a:36:29:e0:83:78:02:84: 46:88:34:d7:fd:24:59:05:c0:80:93:d3:2e:5c:d4: e1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:54:90:44:2B:08:08:25:35:B9:CE:D8:0E:57:5E:84:22:B8:FA:36 X509v3 Authority Key Identifier: keyid:D6:F8:11:45:ED:89:82:DB:07:84:5B:74:C0:4E:D0:CA:8C:FA:F2:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.168.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:2d:ba:d0:d5:67:f0:3d:ce:37:0c:41:e5:02:a7:d2:71:9d: be:0b:8b:ee:51:48:ca:ef:78:ab:ef:b0:65:e7:04:30:05:9b: 14:f3:b5:4f:da:ed:34:54:2d:f1:ae:ea:b8:10:b9:9a:d7:29: d2:71:85:2f:0d:80:2d:0b:56:e8:46:53:18:24:9e:e0:95:52: 08:b1:72:a1:82:72:d9:da:f1:fa:f8:a4:ac:e9:31:78:ff:b7: b8:61:aa:9b:0a:5b:ef:a7:c3:b4:42:7c:e9:55:bf:9b:b5:8b: 94:dd:6b:1c:85:0b:87:f3:93:27:0d:a0:31:7a:1f:cf:08:70: a7:41:7d:6e:be:4b:77:65:49:28:d7:9e:2f:81:d6:0f:16:a3: 3b:cc:ba:a3:51:36:56:a3:db:1f:7a:a8:23:7f:2b:bb:8c:75: f0:ab:f2:72:57:fb:7c:95:00:11:9c:f3:2b:2a:c7:dc:32:be: fc:21:cc:91:84:4f:e5:db:1e:50:97:6e:b2:09:0d:b3:56:fd: d7:a7:6d:db:42:98:cc:98:07:e5:42:fb:5f:1f:8a:65:78:ea: e9:7c:cb:d6:ba:a4:3e:97:d5:b9:9a:d6:a5:ae:dc:bc:c0:d9: 17:f1:f3:32:5d:44:b7:0a:be:5e:86:df:6e:ea:37:6c:c7:c7: 32:d0:7a:12 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUZbhHFL+8rxrF2sU6k8zwXy6K2/IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjUwODYwMDAwMTEwLwYDVQQFEyhENkY4MTE0NUVE ODk4MkRCMDc4NDVCNzRDMDRFRDBDQThDRkFGMjZBMB4XDTI1MDcwMzAzNDgyOFoX DTI2MDcwMjAzNTMyOFowMzExMC8GA1UEAxMoRkU1NDkwNDQyQjA4MDgyNTM1QjlD RUQ4MEU1NzVFODQyMkI4RkEzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxRlxKsv718K4y91rZK5IRUZYzoWh+bxoF7zJvO+MySWcFH5hAd7BW+3b4e dQ2edKHh7+613UV7zeHF6ij4kd0GCOktiy3lrCbK67xLPG2QHVxivFoD6BiEu8A6 dS3ZYToU46ZiTiCG6MJFQn1rSCrMLNp0tq1LdzoQmdCbKAIhtIw9IFYxkW2vUtaZ yVn71zmX4QQNFswqSTusOZ/rvup7BKknbSWrs1xSppqdNN6fxZeX/ht2Hy6R5eo1 aDukFVmnGJIzB2lsKT5c4vMvBFYUxF0cpJQoAmvddTLp0ydlgvIwsOv+NJo2KeCD eAKERog01/0kWQXAgJPTLlzU4eECAwEAAaOCAlkwggJVMB0GA1UdDgQWBBT+VJBE KwgIJTW5ztgOV16EIrj6NjAfBgNVHSMEGDAWgBTW+BFF7YmC2weEW3TATtDKjPry ajAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzY1NjM1ZC0z MWI5LTQ0MjEtOTdmYS1mMDU2ZWIxNDFhMTYvNS9ENkY4MTE0NUVEODk4MkRCMDc4 NDVCNzRDMDRFRDBDQThDRkFGMjZBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi8xdmdSUmUySmd0c0hoRnQwd0U3UXlv ejY4bW8uY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUHMAuGgY9yc3lu YzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Y3NjU2MzVk LTMxYjktNDQyMS05N2ZhLWYwNTZlYjE0MWExNi81LzMxMzYzMDJlMzIzMjJlMzEz NjM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMDMxLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoBaoMA0GCSqGSIb3DQEBCwUAA4IBAQBrLbrQ1WfwPc43DEHlAqfScZ2+C4vu UUjK73ir77Bl5wQwBZsU87VP2u00VC3xruq4ELma1ynScYUvDYAtC1boRlMYJJ7g lVIIsXKhgnLZ2vH6+KSs6TF4/7e4YaqbClvvp8O0QnzpVb+btYuU3WschQuH85Mn DaAxeh/PCHCnQX1uvkt3ZUko154vgdYPFqM7zLqjUTZWo9sfeqgjfyu7jHXwq/Jy V/t8lQARnPMrKsfcMr78IcyRhE/l2x5Ql26yCQ2zVv3Xp23bQpjMmAflQvtfH4pl eOrpfMvWuqQ+l9W5mtalrty8wNkX8fMyXUS3Cr5eht9u6jdsx8cy0HoS -----END CERTIFICATE-----Generated at Fri Jul 4 06:01:02 2025 by rpki-client