$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/323630323a663730343a6230303a3a2f34302d313238203d3e203233353037.roa File: 323630323a663730343a6230303a3a2f34302d313238203d3e203233353037.roa (raw, json) Hash identifier: 1aszfU9sc6+ysSXfOS11t5dTYzlRP8zZ6I1n+bWj6ak= Subject key identifier: 73:EF:AF:06:95:C3:87:27:1F:DA:03:AC:CF:32:12:16:30:39:B8:AD Certificate issuer: /CN=22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca Certificate serial: 68832CBB41CB551C5489C992E1695FE76B36AE5D Authority key identifier: C5:4C:55:4D:4B:0B:04:61:D9:A0:1E:2A:06:E5:5F:C0:EC:4E:D8:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/323630323a663730343a6230303a3a2f34302d313238203d3e203233353037.roa Signing time: Wed 15 Apr 2026 18:12:48 +0000 ROA not before: Wed 15 Apr 2026 18:07:48 +0000 ROA not after: Wed 14 Apr 2027 18:12:48 +0000 asID: 23507 IP address blocks: 2602:f704:b00::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/C54C554D4B0B0461D9A01E2A06E55FC0EC4ED83D.crl rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/C54C554D4B0B0461D9A01E2A06E55FC0EC4ED83D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/74c5eaa7-78bb-4cca-835a-0df812ff7d87.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/74c5eaa7-78bb-4cca-835a-0df812ff7d87.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 10:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:83:2c:bb:41:cb:55:1c:54:89:c9:92:e1:69:5f:e7:6b:36:ae:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca Validity Not Before: Apr 15 18:07:48 2026 GMT Not After : Apr 14 18:12:48 2027 GMT Subject: CN=73EFAF0695C387271FDA03ACCF3212163039B8AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:aa:10:bd:80:f2:e1:17:d7:4d:0a:a9:88:8f: f0:c8:b0:b3:e0:30:00:81:c8:f4:69:13:52:3e:db: a1:8d:8e:61:2d:66:ef:a6:eb:e5:c0:26:2b:50:91: 03:4f:c7:f6:6c:89:60:6a:e3:79:8a:24:8f:2c:49: 21:43:fb:b2:55:f2:2e:e3:d2:94:25:df:97:0b:7c: 97:9e:0e:81:6a:3b:38:46:13:d8:2b:08:c0:d9:8d: dd:92:d8:cd:8b:0c:67:13:cb:ab:ad:48:c5:e6:d3: c9:03:b1:72:25:45:19:d4:1c:7b:ac:22:77:05:c7: fa:3a:2b:1f:8b:0c:2d:86:a6:39:ec:94:6c:ff:08: 46:21:6a:38:b2:28:27:6a:5f:10:e1:43:17:dc:98: 40:73:fe:73:6d:6d:cb:3b:41:a1:01:fe:2e:56:ff: f6:ab:40:08:1f:fa:1d:48:ea:d6:72:39:65:50:c4: 15:72:50:75:e1:79:ff:75:20:36:47:1e:0c:8d:94: f8:54:ef:0e:94:2e:88:93:75:64:d4:ae:7f:fa:57: 3a:72:ba:4d:b0:e9:50:39:c8:9d:f8:ab:d0:2d:2b: d2:91:c8:b1:26:7a:8e:1e:bc:a8:a0:c9:72:21:c2: 63:17:f6:81:61:38:a3:d8:3b:b7:f5:29:5b:a5:c2: b0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EF:AF:06:95:C3:87:27:1F:DA:03:AC:CF:32:12:16:30:39:B8:AD X509v3 Authority Key Identifier: keyid:C5:4C:55:4D:4B:0B:04:61:D9:A0:1E:2A:06:E5:5F:C0:EC:4E:D8:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/C54C554D4B0B0461D9A01E2A06E55FC0EC4ED83D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/74c5eaa7-78bb-4cca-835a-0df812ff7d87/22b1391a00e2d8e952faa4dd780de9176d65f932cbd86a69ca.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/2/323630323a663730343a6230303a3a2f34302d313238203d3e203233353037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f704:b00::/40 Signature Algorithm: sha256WithRSAEncryption b2:97:3d:6b:62:8c:b2:15:9e:2e:c9:9c:94:44:cc:fc:99:df: 1a:e8:a8:5a:0e:66:34:67:b6:70:0c:98:87:47:17:9b:80:e2: 91:4d:b1:d1:45:70:59:dd:23:92:84:84:b2:39:34:63:93:b3: a3:9e:04:62:8c:d2:e0:05:c3:a3:35:8c:b0:6e:3c:7d:96:72: f1:4d:e1:a4:2d:6e:7c:e8:53:51:4a:c2:46:b1:24:6a:1f:3c: e5:88:9f:0c:2e:b5:70:53:0e:09:61:fc:9c:9c:7a:88:64:17: 7b:45:fc:75:68:b6:e5:98:9d:3b:06:89:2d:74:30:55:60:db: 40:59:a7:22:ad:2a:78:3f:4a:79:ec:8c:98:37:c3:99:23:28: 74:9a:46:fc:33:bf:98:7d:d5:4e:88:c8:d4:93:0e:8a:9b:13: ec:1f:51:c1:47:f1:9d:db:0f:66:67:b8:45:87:f0:8f:eb:b3: a2:cd:dd:54:e8:db:0a:30:52:7a:62:fb:cd:2d:d5:cd:01:09: 2f:8e:0a:8d:9a:c6:3c:78:b9:a0:a4:46:57:76:00:07:0b:7b: 96:61:1f:55:eb:ee:f0:f3:80:fc:f8:2c:41:f8:4a:47:9a:a0: e9:26:0d:7f:3f:eb:5d:aa:af:36:0f:7c:9c:25:24:b8:e3:33: f9:a7:9c:e5 -----BEGIN CERTIFICATE----- MIIF1zCCBL+gAwIBAgIUaIMsu0HLVRxUicmS4Wlf52s2rl0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjJiMTM5MWEwMGUyZDhlOTUyZmFhNGRkNzgwZGU5MTc2 ZDY1ZjkzMmNiZDg2YTY5Y2EwHhcNMjYwNDE1MTgwNzQ4WhcNMjcwNDE0MTgxMjQ4 WjAzMTEwLwYDVQQDEyg3M0VGQUYwNjk1QzM4NzI3MUZEQTAzQUNDRjMyMTIxNjMw MzlCOEFEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKoQvYDy4RfX TQqpiI/wyLCz4DAAgcj0aRNSPtuhjY5hLWbvpuvlwCYrUJEDT8f2bIlgauN5iiSP LEkhQ/uyVfIu49KUJd+XC3yXng6Bajs4RhPYKwjA2Y3dktjNiwxnE8urrUjF5tPJ A7FyJUUZ1Bx7rCJ3Bcf6OisfiwwthqY57JRs/whGIWo4signal8Q4UMX3JhAc/5z bW3LO0GhAf4uVv/2q0AIH/odSOrWcjllUMQVclB14Xn/dSA2Rx4MjZT4VO8OlC6I k3Vk1K5/+lc6crpNsOlQOcid+KvQLSvSkcixJnqOHryooMlyIcJjF/aBYTij2Du3 9SlbpcKwxwIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFHPvrwaVw4cnH9oDrM8yEhYw ObitMB8GA1UdIwQYMBaAFMVMVU1LCwRh2aAeKgblX8DsTtg9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzZjNDNkM2E2LTdkMTMtNDg5NS05NTlk LTQxOWI5YTZlYjM0Yi8yL0M1NEM1NTRENEIwQjA0NjFEOUEwMUUyQTA2RTU1RkMw RUM0RUQ4M0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg1ZTA2ZWFmLTM3YTct NDU4OC1hYmVhLWU0OTA5ZWYxYjRlMi83NGM1ZWFhNy03OGJiLTRjY2EtODM1YS0w ZGY4MTJmZjdkODcvMjJiMTM5MWEwMGUyZDhlOTUyZmFhNGRkNzgwZGU5MTc2ZDY1 ZjkzMmNiZDg2YTY5Y2EuY2VyMIG1BggrBgEFBQcBCwSBqDCBpTCBogYIKwYBBQUH MAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzZjNDNkM2E2LTdkMTMtNDg5NS05NTlkLTQxOWI5YTZlYjM0Yi8yLzMyMzYzMDMy M2E2NjM3MzAzNDNhNjIzMDMwM2EzYTJmMzQzMDJkMzEzMjM4MjAzZDNlMjAzMjMz MzUzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEH AQH/BBIwEDAOBAIAAjAIAwYAJgL3BAswDQYJKoZIhvcNAQELBQADggEBALKXPWti jLIVni7JnJREzPyZ3xroqFoOZjRntnAMmIdHF5uA4pFNsdFFcFndI5KEhLI5NGOT s6OeBGKM0uAFw6M1jLBuPH2WcvFN4aQtbnzoU1FKwkaxJGofPOWInwwutXBTDglh /JyceohkF3tF/HVotuWYnTsGiS10MFVg20BZpyKtKng/SnnsjJg3w5kjKHSaRvwz v5h91U6IyNSTDoqbE+wfUcFH8Z3bD2ZnuEWH8I/rs6LN3VTo2wowUnpi+80t1c0B CS+OCo2axjx4uaCkRld2AAcLe5ZhH1Xr7vDzgPz4LEH4SkeaoOkmDX8/612qrzYP fJwlJLjjM/mnnOU= -----END CERTIFICATE-----Generated at Fri Apr 17 17:37:21 2026 by rpki-client