$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa File: 38332e3134322e33312e302f32342d3234203d3e20323135303835.roa (raw, json) Hash identifier: c23f5zfF11QepD/hCX1+ZX8Ztc0XcCBU7/BkVhVVOkA= Subject key identifier: 62:0E:75:DE:9B:2F:86:4B:3A:DD:EC:02:58:A3:36:C8:6A:38:70:B4 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 3561442F1FA1CB45B15BE93AA00FB11368B5EE61 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa Signing time: Thu 04 Jun 2026 19:25:48 +0000 ROA not before: Thu 04 Jun 2026 19:20:48 +0000 ROA not after: Thu 03 Jun 2027 19:25:48 +0000 asID: 215085 IP address blocks: 83.142.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:61:44:2f:1f:a1:cb:45:b1:5b:e9:3a:a0:0f:b1:13:68:b5:ee:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Jun 4 19:20:48 2026 GMT Not After : Jun 3 19:25:48 2027 GMT Subject: CN=620E75DE9B2F864B3ADDEC0258A336C86A3870B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:05:8d:b9:57:5d:1f:3e:33:d2:08:30:1e:64: 7d:6d:f5:6f:3a:7a:01:7e:b1:0e:30:52:0c:78:46: a7:29:38:c7:04:5d:44:82:91:39:7c:4b:d3:7a:97: 7e:d7:cd:81:0b:c0:25:83:88:21:d5:7a:10:cc:e1: 95:93:db:77:5c:d3:19:3e:61:5d:7c:56:c7:7e:76: ec:3a:5a:d5:a5:54:02:a3:d8:b9:aa:1e:e6:5d:ba: 9d:40:eb:b3:d0:bd:b1:61:33:81:63:7e:f2:30:03: 19:20:21:09:9d:1e:7c:11:bc:7b:8b:97:ad:b0:01: eb:5f:64:56:76:15:09:42:2f:e2:8a:7d:3f:40:8f: 3b:07:03:8f:f1:86:16:93:20:b8:6d:d1:44:e7:a6: 02:13:0c:06:0d:28:08:35:e8:0b:38:c5:db:78:63: 19:dd:88:d6:b0:ff:28:c1:09:f4:8c:78:5b:34:23: 63:7d:45:0c:d3:72:b9:6c:8b:32:ff:f7:2b:14:fc: 70:44:9f:6f:1e:c0:98:f1:d7:34:27:a3:07:e2:ed: b5:5d:18:ee:cb:ef:42:db:f5:c1:22:39:f5:89:87: 06:eb:37:56:c8:b7:12:0a:23:da:93:e1:64:47:e2: 3b:67:11:c7:d5:b2:e1:f3:e1:f9:68:47:56:1d:33: b9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0E:75:DE:9B:2F:86:4B:3A:DD:EC:02:58:A3:36:C8:6A:38:70:B4 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.142.31.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:b1:30:39:d7:78:99:27:48:9f:b2:88:de:ca:19:49:6d:b8: 95:e9:81:94:09:5a:c1:b7:5d:82:ad:4d:e8:5a:ea:3f:10:a0: ed:3c:de:77:64:6c:ea:e4:e4:1a:26:4a:0a:e4:64:b6:14:7f: 6f:6f:77:4b:54:4a:bc:a5:1e:32:5a:99:78:d7:46:d4:62:90: f7:63:bb:2e:1f:51:44:52:5a:f7:a3:b0:aa:1f:a8:eb:4e:b7: b2:97:e9:6d:42:3f:59:44:98:ba:02:26:5e:a0:ce:a3:02:ff: 06:9c:6b:1a:1c:4a:0f:a2:f4:72:a8:6f:2f:3e:38:6f:8c:78: 1f:9b:a1:dc:49:e4:f6:1b:7c:78:97:19:ab:9c:f7:20:f1:41: 29:91:9a:40:a2:f6:03:ca:b3:7c:f3:1a:31:91:a3:97:f8:36: 25:5e:b5:58:9c:61:fb:90:f9:ef:48:51:37:d9:5d:8b:0c:d2: 38:4e:53:ca:16:dc:61:51:e0:b4:37:1c:cd:e8:ca:10:1c:8f: 78:45:cc:41:1f:39:c8:12:b1:39:0d:fe:92:7a:21:28:a8:d9: 4d:3f:7d:f3:96:a4:7d:de:43:8e:96:86:0c:34:50:d0:ae:9f: a0:df:ac:4a:d3:7f:b6:15:d9:c1:7d:f6:1e:ef:1e:bc:c6:a1: 69:9f:53:c1 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUNWFELx+hy0WxW+k6oA+xE2i17mEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNjA2MDQxOTIwNDhaFw0yNzA2MDMxOTI1NDhaMDMxMTAvBgNV BAMTKDYyMEU3NURFOUIyRjg2NEIzQURERUMwMjU4QTMzNkM4NkEzODcwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeBY25V10fPjPSCDAeZH1t9W86 egF+sQ4wUgx4RqcpOMcEXUSCkTl8S9N6l37XzYELwCWDiCHVehDM4ZWT23dc0xk+ YV18Vsd+duw6WtWlVAKj2LmqHuZdup1A67PQvbFhM4FjfvIwAxkgIQmdHnwRvHuL l62wAetfZFZ2FQlCL+KKfT9AjzsHA4/xhhaTILht0UTnpgITDAYNKAg16As4xdt4 YxndiNaw/yjBCfSMeFs0I2N9RQzTcrlsizL/9ysU/HBEn28ewJjx1zQnowfi7bVd GO7L70Lb9cEiOfWJhwbrN1bItxIKI9qT4WRH4jtnEcfVsuHz4floR1YdM7kTAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQUYg513psvhks63ewCWKM2yGo4cLQwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzgzMzJlMzEzNDMyMmUzMzMx MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM1MzAzODM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA U44fMA0GCSqGSIb3DQEBCwUAA4IBAQAesTA513iZJ0ifsojeyhlJbbiV6YGUCVrB t12CrU3oWuo/EKDtPN53ZGzq5OQaJkoK5GS2FH9vb3dLVEq8pR4yWpl410bUYpD3 Y7suH1FEUlr3o7CqH6jrTreyl+ltQj9ZRJi6AiZeoM6jAv8GnGsaHEoPovRyqG8v PjhvjHgfm6HcSeT2G3x4lxmrnPcg8UEpkZpAovYDyrN88xoxkaOX+DYlXrVYnGH7 kPnvSFE32V2LDNI4TlPKFtxhUeC0NxzN6MoQHI94RcxBHznIErE5Df6SeiEoqNlN P33zlqR93kOOloYMNFDQrp+g36xK03+2FdnBffYe7x68xqFpn1PB -----END CERTIFICATE-----Generated at Sat Jun 13 08:34:53 2026 by rpki-client