$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/0/38392e3138372e36382e302f32342d3332203d3e20323035383438.roa File: 38392e3138372e36382e302f32342d3332203d3e20323035383438.roa (raw, json) Hash identifier: uJaa1a7wAYndGfud+5sGc9dXctx5YTMVaxVuhY33G5Y= Subject key identifier: 04:04:E9:52:BD:8E:C8:27:A2:47:72:D9:99:28:41:21:7A:51:21:62 Certificate issuer: /CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7 Certificate serial: 54FC7C6AD11628CEB8A343A73F41567F639AB6E9 Authority key identifier: 3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/0/38392e3138372e36382e302f32342d3332203d3e20323035383438.roa Signing time: Mon 14 Apr 2025 21:50:00 +0000 ROA not before: Mon 14 Apr 2025 21:45:00 +0000 ROA not after: Mon 13 Apr 2026 21:50:00 +0000 asID: 205848 IP address blocks: 89.187.68.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.crl rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 28 Apr 2025 16:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:fc:7c:6a:d1:16:28:ce:b8:a3:43:a7:3f:41:56:7f:63:9a:b6:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7 Validity Not Before: Apr 14 21:45:00 2025 GMT Not After : Apr 13 21:50:00 2026 GMT Subject: CN=0404E952BD8EC827A24772D9992841217A512162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:14:62:67:01:60:33:54:ff:eb:27:c2:ae:20: c7:6e:dc:c5:80:63:42:63:ae:86:06:3d:43:f0:47: 1f:08:6e:a8:4a:b7:50:c3:85:8e:f4:5a:b6:79:5c: 2c:92:b0:9d:c6:1e:7f:d4:cf:b7:df:4a:9e:8d:7c: e8:b7:31:eb:e5:bd:ea:71:1a:04:6e:fe:73:1b:3a: 8c:dc:b1:90:21:01:ba:17:b8:89:df:96:da:d8:dd: 10:ec:22:21:47:f6:ba:b0:84:cd:27:0b:44:60:b0: 2e:42:e7:ff:1d:11:ab:a3:99:bd:ec:43:b5:c7:c3: 67:9f:08:f8:bf:18:da:d3:ee:b1:2e:e6:d0:46:5b: 95:92:9b:90:29:f1:38:63:1d:b5:74:ce:df:6e:a7: e3:70:c2:fd:63:4b:32:17:35:69:d1:64:22:90:ab: d2:d6:1a:fc:d6:95:bb:80:ad:36:f2:6a:7f:60:98: dd:bd:74:65:c9:0a:22:ed:b1:a7:60:d2:2f:a2:06: 58:54:18:a2:48:33:38:5b:cf:39:5a:ac:33:a0:8e: 38:c6:ed:9a:b1:e4:24:0c:90:f5:12:fc:97:7f:fb: e8:d3:71:ac:ea:98:a9:b7:7f:fb:2f:52:7c:b5:1c: 9d:95:57:53:12:50:9b:5f:4d:78:03:56:60:e0:31: 7a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:04:E9:52:BD:8E:C8:27:A2:47:72:D9:99:28:41:21:7A:51:21:62 X509v3 Authority Key Identifier: keyid:3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/38392e3138372e36382e302f32342d3332203d3e20323035383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.187.68.0/24 Signature Algorithm: sha256WithRSAEncryption 37:63:39:3b:0a:08:87:e7:ec:a3:8e:92:5b:8a:a3:42:e5:d6: 91:4a:f6:61:36:09:de:fc:c5:f8:25:c2:b7:dd:05:42:06:de: 4a:71:98:07:9c:89:00:d2:bd:8c:3b:15:c3:bb:83:da:68:3d: 38:7b:7e:19:be:cd:fa:69:e0:8a:6e:53:f9:e4:e9:dd:f3:c4: bb:d6:d2:e3:41:d2:ea:c3:0e:18:67:ee:cc:84:73:e0:d3:55: e2:4c:92:63:47:5a:92:f6:eb:e1:d3:28:27:5c:e4:19:a4:b6: 0f:aa:aa:f8:a3:cf:80:84:3b:29:a3:ca:c5:00:fe:55:ac:14: 1b:b0:1e:5a:48:c4:a5:ca:81:f5:b2:cf:a8:89:c2:2e:ad:3f: 8c:d4:17:46:4a:f8:fc:b0:8c:c0:51:95:71:04:db:89:4d:5f: da:b2:7a:90:be:01:4a:f4:59:a5:bd:8c:2b:9a:c2:4c:59:e1: 31:04:ac:14:02:83:4d:4a:ad:d2:3f:e8:4a:d7:eb:6a:a1:ba: 98:e3:9b:30:7a:ab:a6:6a:e2:b6:19:4d:16:71:e0:96:e6:0f: 0b:18:f7:88:e4:63:4f:1e:5f:bf:3f:28:c9:c4:f1:ff:6e:34: ee:23:73:54:ca:4f:82:5f:9b:68:25:55:8f:e6:b4:13:65:a5: 7d:7f:37:2e -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUVPx8atEWKM64o0OnP0FWf2OatukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IzRTFCRENFRDhDQjg5NTk3RkU5MkVBRjc1QkUyREY5 OEFGODRBNzAeFw0yNTA0MTQyMTQ1MDBaFw0yNjA0MTMyMTUwMDBaMDMxMTAvBgNV BAMTKDA0MDRFOTUyQkQ4RUM4MjdBMjQ3NzJEOTk5Mjg0MTIxN0E1MTIxNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXFGJnAWAzVP/rJ8KuIMdu3MWA Y0JjroYGPUPwRx8IbqhKt1DDhY70WrZ5XCySsJ3GHn/Uz7ffSp6NfOi3Mevlvepx GgRu/nMbOozcsZAhAboXuInfltrY3RDsIiFH9rqwhM0nC0RgsC5C5/8dEaujmb3s Q7XHw2efCPi/GNrT7rEu5tBGW5WSm5Ap8ThjHbV0zt9up+Nwwv1jSzIXNWnRZCKQ q9LWGvzWlbuArTbyan9gmN29dGXJCiLtsadg0i+iBlhUGKJIMzhbzzlarDOgjjjG 7Zqx5CQMkPUS/Jd/++jTcazqmKm3f/svUny1HJ2VV1MSUJtfTXgDVmDgMXr9AgMB AAGjggIEMIICADAdBgNVHQ4EFgQUBATpUr2OyCeiR3LZmShBIXpRIWIwHwYDVR0j BBgwFoAUOz4b3O2MuJWX/pLq91vi35ivhKcwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraS5zbi1wLmlvL3JlcG8vc24tcC1pby8w LzNCM0UxQkRDRUQ4Q0I4OTU5N0ZFOTJFQUY3NUJFMkRGOThBRjg0QTcuY3JsMIGT BggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1ycHMu YXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJl M2Y5ZC8yLzNCM0UxQkRDRUQ4Q0I4OTU5N0ZFOTJFQUY3NUJFMkRGOThBRjg0QTcu Y2VyMHoGCCsGAQUFBwELBG4wbDBqBggrBgEFBQcwC4ZecnN5bmM6Ly9ycGtpLnNu LXAuaW8vcmVwby9zbi1wLWlvLzAvMzgzOTJlMzEzODM3MmUzNjM4MmUzMDJmMzIz NDJkMzMzMjIwM2QzZTIwMzIzMDM1MzgzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbtEMA0GCSqG SIb3DQEBCwUAA4IBAQA3Yzk7CgiH5+yjjpJbiqNC5daRSvZhNgne/MX4JcK33QVC Bt5KcZgHnIkA0r2MOxXDu4PaaD04e34Zvs36aeCKblP55Ond88S71tLjQdLqww4Y Z+7MhHPg01XiTJJjR1qS9uvh0ygnXOQZpLYPqqr4o8+AhDspo8rFAP5VrBQbsB5a SMSlyoH1ss+oicIurT+M1BdGSvj8sIzAUZVxBNuJTV/asnqQvgFK9FmlvYwrmsJM WeExBKwUAoNNSq3SP+hK1+tqobqY45swequmauK2GU0WceCW5g8LGPeI5GNPHl+/ PyjJxPH/bjTuI3NUyk+CX5toJVWP5rQTZaV9fzcu -----END CERTIFICATE-----Generated at Mon Apr 28 02:13:52 2025 by rpki-client