$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136392e302f32342d3234203d3e20313338393935.roa File: 3136302e32322e3136392e302f32342d3234203d3e20313338393935.roa (raw, json) Hash identifier: ySF2TyQJM+zbWvJj0AiC50iGgUYv2IRMFNZ+FS1mqRw= Subject key identifier: 3D:58:D0:7A:E4:1D:CD:37:D9:93:FD:D6:9E:3A:30:F3:61:AF:22:C0 Certificate issuer: /CN=A91650860000/serialNumber=D6F81145ED8982DB07845B74C04ED0CA8CFAF26A Certificate serial: 348EFD93B6414588C763ED4D44A338A523974ADC Authority key identifier: D6:F8:11:45:ED:89:82:DB:07:84:5B:74:C0:4E:D0:CA:8C:FA:F2:6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136392e302f32342d3234203d3e20313338393935.roa Signing time: Thu 03 Jul 2025 03:53:28 +0000 ROA not before: Thu 03 Jul 2025 03:48:28 +0000 ROA not after: Thu 02 Jul 2026 03:53:28 +0000 asID: 138995 IP address blocks: 160.22.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.crl rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 06:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8e:fd:93:b6:41:45:88:c7:63:ed:4d:44:a3:38:a5:23:97:4a:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650860000, serialNumber=D6F81145ED8982DB07845B74C04ED0CA8CFAF26A Validity Not Before: Jul 3 03:48:28 2025 GMT Not After : Jul 2 03:53:28 2026 GMT Subject: CN=3D58D07AE41DCD37D993FDD69E3A30F361AF22C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:02:ec:76:66:bc:0e:59:89:8b:b0:0b:a4:25: d9:f0:46:f7:cc:f4:1b:98:27:5b:ad:f8:16:e0:d9: 50:e7:03:07:15:19:18:68:70:28:bc:cc:29:c4:ec: 31:c2:50:1c:cc:67:6d:5a:a8:c8:45:0e:5d:af:fd: 57:3f:6b:3b:bd:ac:bf:53:e4:7f:15:e1:4e:5e:b6: c0:bb:1c:59:ad:3d:5f:aa:1a:1d:fa:55:93:ee:a2: 52:d2:d6:07:d4:da:52:96:28:d7:cf:d9:f1:68:06: ec:23:1f:6f:ce:5e:bc:a6:13:bc:c6:a5:e6:d9:cb: 67:03:a0:0c:08:38:2b:71:fb:24:1f:c8:82:44:a8: 73:2e:dd:8e:ad:ae:54:76:74:ae:0a:a7:74:7b:4e: 3f:26:95:7d:22:e9:f3:99:dd:8d:01:d5:a4:3f:d5: c4:4e:d5:8f:d7:71:45:cc:df:23:21:18:ea:d5:b2: 77:f7:03:06:3d:f4:53:3a:8d:f6:49:ca:46:fc:02: 9c:07:d8:a0:0d:0d:af:48:23:ad:71:6a:18:83:4d: ca:4c:59:3a:d9:ac:cd:d0:33:df:d4:07:fa:34:22: 47:67:4c:eb:c6:e9:93:ca:81:2e:9d:55:2a:bf:8b: 0a:14:b9:a9:89:f2:6f:31:73:5d:f0:7a:fe:49:6d: c3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:58:D0:7A:E4:1D:CD:37:D9:93:FD:D6:9E:3A:30:F3:61:AF:22:C0 X509v3 Authority Key Identifier: keyid:D6:F8:11:45:ED:89:82:DB:07:84:5B:74:C0:4E:D0:CA:8C:FA:F2:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/D6F81145ED8982DB07845B74C04ED0CA8CFAF26A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1vgRRe2JgtsHhFt0wE7Qyoz68mo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f765635d-31b9-4421-97fa-f056eb141a16/5/3136302e32322e3136392e302f32342d3234203d3e20313338393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.169.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:0d:3c:ed:67:c7:dd:e1:43:96:0f:e1:3d:03:ee:a2:e3:b4: de:c3:65:6b:56:3d:0a:10:cc:00:ee:38:e2:8c:70:57:c3:ef: 19:8a:80:b9:f7:f7:23:f1:3a:3d:88:e2:f8:50:33:27:07:a7: 31:73:f3:8b:ee:62:03:87:6b:e9:86:af:17:dd:1c:9e:ee:03: 39:ca:46:01:c9:c2:c0:20:13:b7:a2:bb:4c:51:05:a9:1f:9e: 22:27:a8:7e:d5:de:01:6f:aa:66:84:e4:ed:9b:95:60:18:3c: 75:4e:62:65:c3:5b:a7:a0:ff:c3:a2:74:81:fa:63:0a:43:ad: 8a:2f:db:36:cb:0b:01:5d:c4:8c:01:83:f2:c6:b7:51:85:28: 48:b4:37:00:04:ba:bf:8f:e1:b6:87:00:c3:73:ed:ef:10:8d: 88:8f:6c:73:43:0d:f5:57:b0:d5:85:ae:d1:c3:ad:de:09:72: 22:03:89:55:89:19:60:8e:d4:7d:00:45:ab:71:62:4a:3a:47: 5b:61:b4:2d:a6:4b:a8:83:08:2f:84:9a:88:b4:6d:0d:28:2a: 55:87:ce:73:18:84:93:65:83:d7:96:ad:66:bf:87:d9:68:5a: 5c:13:91:95:a0:74:b1:78:86:ce:17:06:c8:dc:0a:50:8c:d8: e4:cc:02:d7 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUNI79k7ZBRYjHY+1NRKM4pSOXStwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjUwODYwMDAwMTEwLwYDVQQFEyhENkY4MTE0NUVE ODk4MkRCMDc4NDVCNzRDMDRFRDBDQThDRkFGMjZBMB4XDTI1MDcwMzAzNDgyOFoX DTI2MDcwMjAzNTMyOFowMzExMC8GA1UEAxMoM0Q1OEQwN0FFNDFEQ0QzN0Q5OTNG REQ2OUUzQTMwRjM2MUFGMjJDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIwC7HZmvA5ZiYuwC6Ql2fBG98z0G5gnW634FuDZUOcDBxUZGGhwKLzMKcTs McJQHMxnbVqoyEUOXa/9Vz9rO72sv1PkfxXhTl62wLscWa09X6oaHfpVk+6iUtLW B9TaUpYo18/Z8WgG7CMfb85evKYTvMal5tnLZwOgDAg4K3H7JB/IgkSocy7djq2u VHZ0rgqndHtOPyaVfSLp85ndjQHVpD/VxE7Vj9dxRczfIyEY6tWyd/cDBj30UzqN 9knKRvwCnAfYoA0Nr0gjrXFqGINNykxZOtmszdAz39QH+jQiR2dM68bpk8qBLp1V Kr+LChS5qYnybzFzXfB6/kltw28CAwEAAaOCAlkwggJVMB0GA1UdDgQWBBQ9WNB6 5B3NN9mT/daeOjDzYa8iwDAfBgNVHSMEGDAWgBTW+BFF7YmC2weEW3TATtDKjPry ajAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzY1NjM1ZC0z MWI5LTQ0MjEtOTdmYS1mMDU2ZWIxNDFhMTYvNS9ENkY4MTE0NUVEODk4MkRCMDc4 NDVCNzRDMDRFRDBDQThDRkFGMjZBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi8xdmdSUmUySmd0c0hoRnQwd0U3UXlv ejY4bW8uY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUHMAuGgY9yc3lu YzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Y3NjU2MzVk LTMxYjktNDQyMS05N2ZhLWYwNTZlYjE0MWExNi81LzMxMzYzMDJlMzIzMjJlMzEz NjM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM4MzkzOTM1LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoBapMA0GCSqGSIb3DQEBCwUAA4IBAQCdDTztZ8fd4UOWD+E9A+6i47Tew2Vr Vj0KEMwA7jjijHBXw+8ZioC59/cj8To9iOL4UDMnB6cxc/OL7mIDh2vphq8X3Rye 7gM5ykYBycLAIBO3ortMUQWpH54iJ6h+1d4Bb6pmhOTtm5VgGDx1TmJlw1unoP/D onSB+mMKQ62KL9s2ywsBXcSMAYPyxrdRhShItDcABLq/j+G2hwDDc+3vEI2Ij2xz Qw31V7DVha7Rw63eCXIiA4lViRlgjtR9AEWrcWJKOkdbYbQtpkuogwgvhJqItG0N KCpVh85zGISTZYPXlq1mv4fZaFpcE5GVoHSxeIbOFwbI3ApQjNjkzALX -----END CERTIFICATE-----Generated at Fri Jul 4 06:04:59 2025 by rpki-client