$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/38352e3135352e3232372e302f32342d3234203d3e203332323030.roa File: 38352e3135352e3232372e302f32342d3234203d3e203332323030.roa (raw, json) Hash identifier: u3B6KKBKIUk9SO5JxQD+EeR9cSC3pRMQPnPBIW/RPYA= Subject key identifier: 45:0B:CA:71:16:83:0B:F0:07:33:00:4E:82:D4:75:DB:C3:40:60:04 Certificate issuer: /CN=6578E79662000496EB1540D8BD8FA65ED8D63A62 Certificate serial: 18D8DA89EEE27F519715588D1C78D1F342125A7C Authority key identifier: 65:78:E7:96:62:00:04:96:EB:15:40:D8:BD:8F:A6:5E:D8:D6:3A:62 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/38352e3135352e3232372e302f32342d3234203d3e203332323030.roa Signing time: Mon 27 Oct 2025 01:03:36 +0000 ROA not before: Mon 27 Oct 2025 00:58:36 +0000 ROA not after: Mon 26 Oct 2026 01:03:36 +0000 asID: 32200 IP address blocks: 85.155.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.crl rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 01:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d8:da:89:ee:e2:7f:51:97:15:58:8d:1c:78:d1:f3:42:12:5a:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6578E79662000496EB1540D8BD8FA65ED8D63A62 Validity Not Before: Oct 27 00:58:36 2025 GMT Not After : Oct 26 01:03:36 2026 GMT Subject: CN=450BCA7116830BF00733004E82D475DBC3406004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:45:7e:b9:24:06:39:19:63:81:11:c7:10:0a: 15:fe:6c:06:55:4c:9c:de:39:c9:1c:ff:3d:8b:9c: 19:10:ac:d3:6e:d3:f6:79:5b:66:47:41:b3:7c:69: 22:ad:04:cb:5b:ef:da:00:cf:9c:bf:1d:29:59:77: 87:97:84:f3:af:ae:97:86:cd:fc:cb:7a:e4:3b:fb: 06:9f:bb:c0:45:75:39:c9:5a:99:38:7a:c8:89:0f: e8:69:21:1b:1d:bd:2c:d6:75:c4:56:cc:cb:6a:e9: 3a:c6:1f:fd:71:f1:32:de:b8:b1:59:53:b7:cc:06: d8:15:d3:3e:8a:f6:b4:68:62:a1:de:ff:90:ca:14: ee:e7:b4:30:39:96:a4:a4:94:71:aa:96:36:60:e3: 88:2e:48:55:a8:cc:9f:1e:b1:b4:2b:8c:41:ed:82: 9f:dd:8c:2d:bc:91:8b:89:3d:28:97:65:dc:91:f2: 38:63:9e:b9:9b:46:d8:fd:33:38:e8:b5:1f:4a:21: a4:02:d6:98:e6:14:bd:be:2a:00:7e:14:8c:3f:05: 01:ef:f5:c7:15:b4:90:75:a0:04:61:f6:50:6e:20: c1:f8:b3:d2:d5:04:d9:db:bd:ce:55:2d:c8:83:af: 6f:6f:0e:13:f9:bf:01:44:aa:34:c6:ab:df:14:58: 5d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0B:CA:71:16:83:0B:F0:07:33:00:4E:82:D4:75:DB:C3:40:60:04 X509v3 Authority Key Identifier: keyid:65:78:E7:96:62:00:04:96:EB:15:40:D8:BD:8F:A6:5E:D8:D6:3A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/38352e3135352e3232372e302f32342d3234203d3e203332323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.155.227.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:90:42:98:93:ec:fb:2d:e5:c1:5c:ef:99:3c:b5:97:fc:92: 9c:fd:51:52:f3:05:1b:dc:a4:a2:62:32:91:41:b4:18:78:f0: 4d:c9:71:cc:0f:42:74:cf:06:ff:1a:0a:b1:68:c9:86:b0:09: 80:d0:ad:b1:86:07:7a:21:85:17:da:f3:e7:4a:f5:11:13:1d: 43:fa:ba:c4:f2:5e:66:09:c8:c7:07:be:5a:4e:b7:36:9f:0d: de:23:27:32:72:c5:ff:41:fc:d1:88:83:ca:b4:c4:d9:14:13: 31:80:44:61:ec:5e:a3:e1:55:f0:40:f0:35:2b:9f:84:11:d5: 4c:68:24:f1:76:89:bf:25:5d:7b:3e:e2:1c:fe:e5:ad:81:18: a1:82:55:08:37:b7:27:2c:df:ac:93:64:d0:7f:31:2c:7e:58: 57:a2:55:c5:fe:2f:a3:91:7d:a7:55:43:c6:c2:06:92:f1:fd: 51:05:b8:ef:e2:a3:83:71:14:3c:bf:12:da:ce:ee:5e:f9:10: 83:2f:3f:17:4b:da:e6:71:51:58:ae:f5:74:7b:a7:33:a0:22: dc:98:90:d0:11:bf:15:90:c5:64:e6:24:aa:1c:27:c6:d8:f2: 8b:25:3e:8e:95:6a:67:42:d1:2b:0d:a4:3d:d8:b7:57:6a:c6: eb:6d:e4:b0 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUGNjaie7if1GXFViNHHjR80ISWnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVE OEQ2M0E2MjAeFw0yNTEwMjcwMDU4MzZaFw0yNjEwMjYwMTAzMzZaMDMxMTAvBgNV BAMTKDQ1MEJDQTcxMTY4MzBCRjAwNzMzMDA0RTgyRDQ3NURCQzM0MDYwMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7RX65JAY5GWOBEccQChX+bAZV TJzeOckc/z2LnBkQrNNu0/Z5W2ZHQbN8aSKtBMtb79oAz5y/HSlZd4eXhPOvrpeG zfzLeuQ7+wafu8BFdTnJWpk4esiJD+hpIRsdvSzWdcRWzMtq6TrGH/1x8TLeuLFZ U7fMBtgV0z6K9rRoYqHe/5DKFO7ntDA5lqSklHGqljZg44guSFWozJ8esbQrjEHt gp/djC28kYuJPSiXZdyR8jhjnrmbRtj9MzjotR9KIaQC1pjmFL2+KgB+FIw/BQHv 9ccVtJB1oARh9lBuIMH4s9LVBNnbvc5VLciDr29vDhP5vwFEqjTGq98UWF2FAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQURQvKcRaDC/AHMwBOgtR128NAYAQwHwYDVR0j BBgwFoAUZXjnlmIABJbrFUDYvY+mXtjWOmIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQtZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVk OGM0LzgvNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVEOEQ2M0E2Mi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVEOEQ2 M0E2Mi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQt ZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVkOGM0LzgvMzgzNTJlMzEzNTM1MmUzMjMy MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzMyMzIzMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA VZvjMA0GCSqGSIb3DQEBCwUAA4IBAQBskEKYk+z7LeXBXO+ZPLWX/JKc/VFS8wUb 3KSiYjKRQbQYePBNyXHMD0J0zwb/GgqxaMmGsAmA0K2xhgd6IYUX2vPnSvUREx1D +rrE8l5mCcjHB75aTrc2nw3eIycycsX/QfzRiIPKtMTZFBMxgERh7F6j4VXwQPA1 K5+EEdVMaCTxdom/JV17PuIc/uWtgRihglUIN7cnLN+sk2TQfzEsflhXolXF/i+j kX2nVUPGwgaS8f1RBbjv4qODcRQ8vxLazu5e+RCDLz8XS9rmcVFYrvV0e6czoCLc mJDQEb8VkMVk5iSqHCfG2PKLJT6OlWpnQtErDaQ92LdXasbrbeSw -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:22 2025 by rpki-client