$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/3131312e3233352e3135312e302f32342d3332203d3e20323135313437.roa File: 3131312e3233352e3135312e302f32342d3332203d3e20323135313437.roa (raw, json) Hash identifier: vew4LNWCVofm5qe2BK5sopfMvrn3w6T63/5S4aLPNx0= Subject key identifier: F8:B0:9C:0E:F4:8B:11:5F:FC:74:09:60:D8:CA:D6:A5:8C:BD:69:8C Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 1F6F9CFB42912EBAC25E492B6C03FAC5AB622175 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/3131312e3233352e3135312e302f32342d3332203d3e20323135313437.roa Signing time: Wed 06 Aug 2025 01:23:43 +0000 ROA not before: Wed 06 Aug 2025 01:18:43 +0000 ROA not after: Wed 05 Aug 2026 01:23:43 +0000 asID: 215147 IP address blocks: 111.235.151.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 07 Aug 2025 21:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6f:9c:fb:42:91:2e:ba:c2:5e:49:2b:6c:03:fa:c5:ab:62:21:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Aug 6 01:18:43 2025 GMT Not After : Aug 5 01:23:43 2026 GMT Subject: CN=F8B09C0EF48B115FFC740960D8CAD6A58CBD698C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:17:6e:b7:c9:5b:0e:42:53:5b:79:cf:b4:fc: f8:44:75:88:05:aa:fc:ea:c3:49:a9:ee:b8:50:d5: 65:8f:0c:9f:2d:27:7a:e2:eb:fd:6a:d1:84:15:b9: 26:d0:30:e6:0a:e9:9b:82:af:a1:69:35:76:62:15: ce:7c:58:6b:a2:6c:f9:92:5e:28:08:cd:ce:17:44: 76:a9:14:3c:73:81:79:b9:aa:82:79:a4:1f:23:10: bf:aa:4c:ea:64:2e:38:6c:18:3a:9d:68:5d:b7:6c: 80:81:cd:8f:28:b8:96:fc:37:13:2b:3a:9a:b9:8d: 70:6b:87:6c:bb:be:25:30:46:34:d4:fd:50:4b:3b: d3:51:a7:4c:65:08:1c:9d:53:e9:3a:4c:18:56:13: 1b:25:4d:77:c7:53:25:a0:aa:77:31:c8:28:6d:04: dd:ae:c1:8e:9b:1f:53:92:7b:0a:f6:96:89:7a:18: 9e:43:a0:dc:17:f7:12:d0:55:0e:3e:21:bc:9d:3c: 6b:bc:4b:d6:bd:37:04:cd:97:45:b5:04:79:ab:8c: e9:a4:88:0c:ab:08:46:dd:29:ef:d2:aa:a4:ee:01: fd:3a:53:25:f4:ea:8a:be:b4:4f:8e:be:ad:44:36: 70:44:ef:6a:d6:98:18:a6:73:45:68:20:3c:ba:8f: 73:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B0:9C:0E:F4:8B:11:5F:FC:74:09:60:D8:CA:D6:A5:8C:BD:69:8C X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/3131312e3233352e3135312e302f32342d3332203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.235.151.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:a3:a7:6c:9e:68:68:35:20:b5:80:b4:2e:95:57:07:39:c9: 55:58:00:6f:d0:f4:d8:e0:cb:76:a2:cd:93:17:8a:54:3d:a8: 92:b8:1a:17:78:c7:96:17:41:2c:3a:80:bb:ef:7f:fb:3a:71: a0:fb:53:50:f6:e8:4c:6e:ce:36:4b:c9:c2:45:a7:de:16:67: bd:86:67:5c:e3:a1:e0:e4:a1:34:e0:8a:a0:5a:63:89:57:56: d5:c7:b8:f6:f9:ea:41:be:39:f4:1e:12:8d:48:dd:17:fc:f0: 3c:bb:97:1f:16:2b:43:d1:b4:6d:fd:c6:f1:12:ac:78:b5:f7: 58:12:c2:49:fd:46:d6:e6:12:37:78:f7:a6:fa:11:0d:70:f4: 74:3d:78:f2:2d:4f:a0:8f:a8:07:09:06:7d:5f:e2:4b:08:03: dd:ce:6e:ff:09:74:88:4b:72:b3:0e:5e:8f:19:d5:48:df:b2: ca:47:ac:1d:a1:52:63:08:02:49:a9:e3:d0:1b:42:4e:da:b0: a9:9a:f1:81:39:61:5e:06:92:9b:15:39:f9:d9:f5:e0:35:21: bb:4e:3d:7d:5e:09:9a:18:8c:61:95:b5:8c:c5:79:5d:a9:fc: c6:2a:dd:d4:25:7d:ce:21:48:51:c3:3f:b5:ff:da:97:97:c3: 81:ad:a1:8b -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIUH2+c+0KRLrrCXkkrbAP6xatiIXUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA4MDYwMTE4NDNaFw0yNjA4MDUwMTIzNDNaMDMxMTAvBgNV BAMTKEY4QjA5QzBFRjQ4QjExNUZGQzc0MDk2MEQ4Q0FENkE1OENCRDY5OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnF263yVsOQlNbec+0/PhEdYgF qvzqw0mp7rhQ1WWPDJ8tJ3ri6/1q0YQVuSbQMOYK6ZuCr6FpNXZiFc58WGuibPmS XigIzc4XRHapFDxzgXm5qoJ5pB8jEL+qTOpkLjhsGDqdaF23bICBzY8ouJb8NxMr Opq5jXBrh2y7viUwRjTU/VBLO9NRp0xlCBydU+k6TBhWExslTXfHUyWgqncxyCht BN2uwY6bH1OSewr2lol6GJ5DoNwX9xLQVQ4+IbydPGu8S9a9NwTNl0W1BHmrjOmk iAyrCEbdKe/SqqTuAf06UyX06oq+tE+Ovq1ENnBE72rWmBimc0VoIDy6j3N5AgMB AAGjggJxMIICbTAdBgNVHQ4EFgQU+LCcDvSLEV/8dAlg2MrWpYy9aYwwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzEzMTMxMmUzMjMzMzUyZTMx MzUzMTJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDMyMzEzNTMxMzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAG/rlzANBgkqhkiG9w0BAQsFAAOCAQEAPqOnbJ5oaDUgtYC0LpVXBznJVVgA b9D02ODLdqLNkxeKVD2okrgaF3jHlhdBLDqAu+9/+zpxoPtTUPboTG7ONkvJwkWn 3hZnvYZnXOOh4OShNOCKoFpjiVdW1ce49vnqQb459B4SjUjdF/zwPLuXHxYrQ9G0 bf3G8RKseLX3WBLCSf1G1uYSN3j3pvoRDXD0dD148i1PoI+oBwkGfV/iSwgD3c5u /wl0iEtysw5ejxnVSN+yykesHaFSYwgCSanj0BtCTtqwqZrxgTlhXgaSmxU5+dn1 4DUhu049fV4JmhiMYZW1jMV5Xan8xird1CV9ziFIUcM/tf/al5fDga2hiw== -----END CERTIFICATE-----Generated at Thu Aug 7 14:37:22 2025 by rpki-client