$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136382e302f32342d3234203d3e20313338393935.roa File: 3136302e32322e3136382e302f32342d3234203d3e20313338393935.roa (raw, json) Hash identifier: XJzDTFEVoqmsrlpLY8Df04eiWxYNdF1B5aizqEngHzQ= Subject key identifier: 47:0F:58:EE:85:67:02:4E:3F:EE:9D:AA:5C:CD:58:45:0C:E5:C7:11 Certificate issuer: /CN=A91650860000/serialNumber=D6F81145ED8982DB07845B74C04ED0CA8CFAF26A Certificate serial: 53329785622BCF8BCB6AD4B3D67043FCFAE0CFB5 Authority key identifier: D6:F8:11:45:ED:89:82:DB:07:84:5B:74:C0:4E:D0:CA:8C:FA:F2:6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136382e302f32342d3234203d3e20313338393935.roa Signing time: Thu 03 Jul 2025 03:53:27 +0000 ROA not before: Thu 03 Jul 2025 03:48:27 +0000 ROA not after: Thu 02 Jul 2026 03:53:27 +0000 asID: 138995 IP address blocks: 160.22.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.crl rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 06:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:32:97:85:62:2b:cf:8b:cb:6a:d4:b3:d6:70:43:fc:fa:e0:cf:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650860000, serialNumber=D6F81145ED8982DB07845B74C04ED0CA8CFAF26A Validity Not Before: Jul 3 03:48:27 2025 GMT Not After : Jul 2 03:53:27 2026 GMT Subject: CN=470F58EE8567024E3FEE9DAA5CCD58450CE5C711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:97:ec:f8:79:12:82:d1:d0:50:65:dd:a1: d5:e1:6a:72:ff:9c:8b:cf:74:bb:d1:29:0f:0a:f4: e0:60:82:53:f6:f3:9c:c1:f3:9d:4a:14:46:c2:62: d5:2b:d8:0d:4c:34:52:98:eb:99:6b:2a:c5:b1:f5: 71:11:b8:f3:a8:b8:31:41:6f:3e:d9:3d:ae:23:2f: 6c:a4:58:d9:b0:08:35:cc:0b:4e:93:b8:bf:ff:65: 17:7f:50:41:72:50:7d:58:df:5b:4e:d1:91:de:e4: 7b:22:cd:be:e0:90:ea:e6:88:36:da:0a:70:bb:38: 43:4d:44:bd:b2:03:a6:b7:46:36:62:97:53:69:a9: 56:80:a4:33:01:70:8a:2a:f6:37:22:58:86:1a:bd: 0f:45:f0:16:40:2e:5e:2a:36:bd:c7:b7:c9:3c:2e: 19:98:1b:35:e0:f4:33:38:06:f6:40:0e:d0:a0:22: e2:c1:51:d7:76:30:38:79:94:08:24:a0:66:b3:d6: e9:92:c5:de:da:cd:2a:5f:a8:8b:69:e8:12:c7:e2: 38:02:77:b9:34:6b:3e:49:06:a0:07:88:de:3d:40: 7f:96:69:80:e8:50:2e:0a:7e:8a:4e:57:06:70:97: 16:5c:34:93:b0:83:34:c3:5b:7e:08:56:da:34:0c: 0e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0F:58:EE:85:67:02:4E:3F:EE:9D:AA:5C:CD:58:45:0C:E5:C7:11 X509v3 Authority Key Identifier: keyid:D6:F8:11:45:ED:89:82:DB:07:84:5B:74:C0:4E:D0:CA:8C:FA:F2:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136382e302f32342d3234203d3e20313338393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.168.0/24 Signature Algorithm: sha256WithRSAEncryption 17:85:4f:92:b9:01:04:96:49:d9:ce:af:90:0d:ea:76:0a:13: 5e:62:35:ca:65:64:ac:f7:1a:e0:33:7d:55:00:1e:42:a9:46: d7:11:89:5a:35:29:ae:0d:3d:41:72:62:db:1d:81:06:b4:cf: 10:57:dc:f2:24:88:c3:d5:3b:40:9c:2d:c0:17:6f:fb:f7:83: 87:9a:98:6f:31:11:6c:bf:8e:73:de:42:9f:1e:db:20:a6:5e: ab:48:c2:3d:3b:60:a8:a1:76:75:86:4c:c5:84:00:95:58:3f: 45:c8:f4:d3:e6:3e:2e:c5:f5:46:c1:5e:b8:d8:88:23:95:24: 8a:be:d6:38:13:4c:a8:28:b2:c0:8d:e2:dc:9b:d2:24:74:69: ce:81:ae:63:f1:f2:61:68:69:aa:13:51:7e:e7:a7:4b:6a:01: 1d:6e:8b:5d:fc:10:49:ba:d9:aa:6f:4f:65:7e:e7:1c:45:f2: 53:ed:69:03:19:a2:02:fb:38:f0:bc:6b:d8:ab:f0:45:b7:56: a0:22:a7:bb:cf:02:5b:70:27:fe:44:ac:57:ad:93:16:21:31: 68:7f:ea:99:22:5a:6b:a6:6e:92:10:d9:ea:a7:15:5f:3b:28: 21:c5:70:4b:39:4f:a0:dd:63:88:23:ea:cd:a6:da:2a:86:99: 6e:64:95:35 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUUzKXhWIrz4vLatSz1nBD/Prgz7UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjUwODYwMDAwMTEwLwYDVQQFEyhENkY4MTE0NUVE ODk4MkRCMDc4NDVCNzRDMDRFRDBDQThDRkFGMjZBMB4XDTI1MDcwMzAzNDgyN1oX DTI2MDcwMjAzNTMyN1owMzExMC8GA1UEAxMoNDcwRjU4RUU4NTY3MDI0RTNGRUU5 REFBNUNDRDU4NDUwQ0U1QzcxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9bl+z4eRKC0dBQZd2h1eFqcv+ci890u9EpDwr04GCCU/bznMHznUoURsJi 1SvYDUw0UpjrmWsqxbH1cRG486i4MUFvPtk9riMvbKRY2bAINcwLTpO4v/9lF39Q QXJQfVjfW07Rkd7keyLNvuCQ6uaINtoKcLs4Q01EvbIDprdGNmKXU2mpVoCkMwFw iir2NyJYhhq9D0XwFkAuXio2vce3yTwuGZgbNeD0MzgG9kAO0KAi4sFR13YwOHmU CCSgZrPW6ZLF3trNKl+oi2noEsfiOAJ3uTRrPkkGoAeI3j1Af5ZpgOhQLgp+ik5X BnCXFlw0k7CDNMNbfghW2jQMDp8CAwEAAaOCAlkwggJVMB0GA1UdDgQWBBRHD1ju hWcCTj/unapczVhFDOXHETAfBgNVHSMEGDAWgBTW+BFF7YmC2weEW3TATtDKjPry ajAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzY1NjM1ZC0z MWI5LTQ0MjEtOTdmYS1mMDU2ZWIxNDFhMTYvNS9ENkY4MTE0NUVEODk4MkRCMDc4 NDVCNzRDMDRFRDBDQThDRkFGMjZBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi8xdmdSUmUySmd0c0hoRnQwd0U3UXlv ejY4bW8uY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUHMAuGgY9yc3lu YzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Y3NjU2MzVk LTMxYjktNDQyMS05N2ZhLWYwNTZlYjE0MWExNi81LzMxMzYzMDJlMzIzMjJlMzEz NjM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM4MzkzOTM1LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoBaoMA0GCSqGSIb3DQEBCwUAA4IBAQAXhU+SuQEElknZzq+QDep2ChNeYjXK ZWSs9xrgM31VAB5CqUbXEYlaNSmuDT1BcmLbHYEGtM8QV9zyJIjD1TtAnC3AF2/7 94OHmphvMRFsv45z3kKfHtsgpl6rSMI9O2CooXZ1hkzFhACVWD9FyPTT5j4uxfVG wV642IgjlSSKvtY4E0yoKLLAjeLcm9IkdGnOga5j8fJhaGmqE1F+56dLagEdbotd /BBJutmqb09lfuccRfJT7WkDGaIC+zjwvGvYq/BFt1agIqe7zwJbcCf+RKxXrZMW ITFof+qZIlprpm6SENnqpxVfOyghxXBLOU+g3WOII+rNptoqhpluZJU1 -----END CERTIFICATE-----Generated at Fri Jul 4 06:04:59 2025 by rpki-client