$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa File: 323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa (raw, json) Hash identifier: zyGXScknY8/UsLkdjIoZ38mJ4xlpccwmRkd/DMqJkYc= Subject key identifier: 46:4F:71:69:45:1B:9D:AF:74:89:16:7D:21:A9:4C:FE:F6:45:99:20 Certificate issuer: /CN=A91443440000/serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Certificate serial: 3EF706305FD52A3F008C9EF713FB167DA34DC26C Authority key identifier: 94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa Signing time: Fri 05 Jun 2026 20:36:35 +0000 ROA not before: Fri 05 Jun 2026 20:31:35 +0000 ROA not after: Fri 04 Jun 2027 20:36:35 +0000 asID: 153176 IP address blocks: 2001:df4:1dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 14:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f7:06:30:5f:d5:2a:3f:00:8c:9e:f7:13:fb:16:7d:a3:4d:c2:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Validity Not Before: Jun 5 20:31:35 2026 GMT Not After : Jun 4 20:36:35 2027 GMT Subject: CN=464F7169451B9DAF7489167D21A94CFEF6459920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:45:87:5c:e2:cd:4f:c8:ea:c5:b1:50:33:29: dc:1b:34:6c:31:78:ea:64:7c:2d:09:28:2f:92:08: 3f:42:62:6a:03:e0:e4:b0:d0:2c:41:1e:d1:00:41: 7b:a8:bf:c7:56:d6:a0:a9:15:1e:d0:59:96:8d:0c: be:50:4e:19:6c:39:a1:46:f8:b9:11:f4:b2:3c:78: 64:06:26:87:12:f8:50:2c:ae:74:22:b6:34:3b:31: 00:a8:6c:00:d0:01:55:cb:17:cd:6b:d3:28:9c:5d: 5e:a0:02:bc:64:8f:11:b8:79:1c:df:78:57:3e:d3: 7a:5e:4d:c3:e3:69:40:0b:32:8c:a7:75:2c:cd:50: c3:2f:d4:3b:fc:c2:d3:f6:28:ee:ba:e7:40:42:cd: 3d:bf:52:dd:57:23:11:4b:8c:0b:4a:52:8e:06:6e: a3:1b:8f:b1:52:8a:04:c1:eb:65:c0:9d:46:b5:a9: a4:44:71:ed:38:44:27:7c:a2:98:38:4e:79:9d:29: 73:3f:69:b5:94:c8:e7:d9:a1:ef:c7:3e:65:1c:a6: 7a:d3:4c:e3:2c:37:03:0e:ed:3d:8e:e9:42:cf:2b: 1f:41:8b:9c:e3:e1:0d:e3:e9:4e:d2:b5:06:65:b1: e5:6e:7d:d9:af:b2:3d:2d:b9:4d:ee:36:ad:c0:0c: 9d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4F:71:69:45:1B:9D:AF:74:89:16:7D:21:A9:4C:FE:F6:45:99:20 X509v3 Authority Key Identifier: keyid:94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:1dc0::/48 Signature Algorithm: sha256WithRSAEncryption 1f:33:1a:c8:c1:df:3b:fc:00:ed:2f:12:0e:69:04:f4:62:eb: 38:0e:a9:1e:15:7d:bc:c6:ad:22:93:94:09:1d:49:77:c0:84: df:88:59:e5:ee:7b:13:fe:43:21:05:d5:8b:46:53:12:c9:1a: 98:7f:a4:97:0c:37:84:f9:42:85:6e:86:3a:a1:e9:5d:4d:58: 5d:0a:a2:65:38:b5:12:29:c1:7b:dc:38:06:2d:d1:a4:f7:77: 77:70:25:d7:d6:ce:24:bd:e7:a6:b3:9e:12:7a:39:6c:0d:7d: c2:4b:db:66:0f:70:8c:32:f3:02:6b:81:c4:2e:b6:1b:ca:74: 8d:02:49:67:0e:6a:79:89:f7:b0:b4:77:b4:7d:c3:cd:86:53: e7:e7:1e:37:ce:d9:e7:7a:84:c8:54:b7:27:ac:c4:1a:6a:00: 07:b2:3b:4f:11:e3:5e:d1:53:cb:f2:73:97:39:27:f3:b0:19: cb:6e:e2:68:18:0e:79:5a:7f:2f:ba:3b:e7:1f:57:3c:62:49: 72:0a:6e:8c:d5:64:a5:18:42:09:fe:a2:53:69:23:91:88:f2: e5:72:08:ea:40:19:91:7c:f8:13:15:3c:af:a6:95:98:01:6d: ee:d6:99:0f:6d:18:2a:64:fe:71:2e:f4:5f:8c:be:91:9d:e1: 02:ed:54:42 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUPvcGMF/VKj8AjJ73E/sWfaNNwmwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyg5NEEyRjE2REY0 MTdDMzJFMDU3QUEyNjhDMEU1MkM3MEQxQTQwNkM1MB4XDTI2MDYwNTIwMzEzNVoX DTI3MDYwNDIwMzYzNVowMzExMC8GA1UEAxMoNDY0RjcxNjk0NTFCOURBRjc0ODkx NjdEMjFBOTRDRkVGNjQ1OTkyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM5Fh1zizU/I6sWxUDMp3Bs0bDF46mR8LQkoL5IIP0JiagPg5LDQLEEe0QBB e6i/x1bWoKkVHtBZlo0MvlBOGWw5oUb4uRH0sjx4ZAYmhxL4UCyudCK2NDsxAKhs ANABVcsXzWvTKJxdXqACvGSPEbh5HN94Vz7Tel5Nw+NpQAsyjKd1LM1Qwy/UO/zC 0/Yo7rrnQELNPb9S3VcjEUuMC0pSjgZuoxuPsVKKBMHrZcCdRrWppERx7ThEJ3yi mDhOeZ0pcz9ptZTI59mh78c+ZRymetNM4yw3Aw7tPY7pQs8rH0GLnOPhDePpTtK1 BmWx5W592a+yPS25Te42rcAMnQ0CAwEAAaOCAmIwggJeMB0GA1UdDgQWBBRGT3Fp RRudr3SJFn0hqUz+9kWZIDAfBgNVHSMEGDAWgBSUovFt9BfDLgV6omjA5Sxw0aQG xTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMy85NEEyRjE2REY0MTdDMzJFMDU3 QUEyNjhDMEU1MkM3MEQxQTQwNkM1LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sS0x4YmZRWHd5NEZlcUpvd09Vc2NO R2tCc1UuY2VyMIG1BggrBgEFBQcBCwSBqDCBpTCBogYIKwYBBQUHMAuGgZVyc3lu YzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzhkNWNkMTRl LTVmNjMtNGYxYy05NGUzLTI3MDUwYzI2NjQ4MC8zLzMyMzAzMDMxM2E2NDY2MzQz YTMxNjQ2MzMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzNzM2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9B3AMA0GCSqGSIb3DQEBCwUAA4IBAQAfMxrIwd87/ADtLxIO aQT0Yus4DqkeFX28xq0ik5QJHUl3wITfiFnl7nsT/kMhBdWLRlMSyRqYf6SXDDeE +UKFboY6oeldTVhdCqJlOLUSKcF73DgGLdGk93d3cCXX1s4kveems54SejlsDX3C S9tmD3CMMvMCa4HELrYbynSNAklnDmp5ifewtHe0fcPNhlPn5x43ztnneoTIVLcn rMQaagAHsjtPEeNe0VPL8nOXOSfzsBnLbuJoGA55Wn8vujvnH1c8YklyCm6M1WSl GEIJ/qJTaSORiPLlcgjqQBmRfPgTFTyvppWYAW3u1pkPbRgqZP5xLvRfjL6RneEC 7VRC -----END CERTIFICATE-----Generated at Sun Jun 14 01:09:34 2026 by rpki-client