$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/3139322e37352e3139362e302f32332d3234203d3e20323131363635.roa File: 3139322e37352e3139362e302f32332d3234203d3e20323131363635.roa (raw, json) Hash identifier: EY02IPhkI+bUEpVH6oIXpq9tMDByZp2XBlblwJ3ORuk= Subject key identifier: 58:55:B0:14:38:6F:5D:25:85:9D:2F:17:BB:E5:B1:15:07:BB:59:5A Certificate issuer: /CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c Certificate serial: 666C95F0B37B24B0C8C18D111F671264C305EA76 Authority key identifier: D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/3139322e37352e3139362e302f32332d3234203d3e20323131363635.roa Signing time: Tue 13 Jan 2026 21:00:33 +0000 ROA not before: Tue 13 Jan 2026 20:55:33 +0000 ROA not after: Tue 12 Jan 2027 21:00:33 +0000 asID: 211665 IP address blocks: 192.75.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 11:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:6c:95:f0:b3:7b:24:b0:c8:c1:8d:11:1f:67:12:64:c3:05:ea:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c Validity Not Before: Jan 13 20:55:33 2026 GMT Not After : Jan 12 21:00:33 2027 GMT Subject: CN=5855B014386F5D25859D2F17BBE5B11507BB595A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c9:c6:86:d2:9f:8b:a6:86:2d:a8:3f:a0:c3: 61:0e:61:aa:04:0b:e3:25:89:21:9d:33:c5:ec:19: 87:3c:0d:51:b2:c3:98:35:5e:66:0c:3d:38:06:39: 9e:ad:da:3b:7c:18:bc:88:fb:1f:f4:c0:a4:79:ba: b0:c1:8f:4d:9f:ac:e0:71:eb:42:d9:0a:a3:c2:2b: 29:56:07:0b:2a:51:36:32:af:b5:78:aa:f7:3e:42: 8d:5d:c0:b3:39:79:0f:12:93:dc:62:2b:21:28:4a: 00:14:06:c4:c7:61:3e:7e:5f:d5:ef:56:37:9f:a1: 9f:91:cf:f7:d0:f1:70:56:f1:b5:03:cf:0d:a8:59: 21:e1:35:4b:4c:20:79:e4:e0:e3:0c:2d:3d:99:e1: b7:4f:26:b8:76:91:2a:70:39:a5:a4:31:89:73:9a: ce:9d:6a:9e:dd:a0:59:77:64:b5:55:7d:43:15:52: 47:74:b5:b0:22:b5:ba:a7:e8:b8:2c:51:50:aa:a6: cd:6b:d5:44:c2:3b:0c:55:0d:a7:60:0a:1c:48:39: b0:00:81:f1:91:8c:7e:ec:a8:87:84:71:8b:0e:7b: f6:38:bd:f7:d6:ea:26:e0:6c:b6:b9:88:04:53:c9: 85:17:5f:4c:8b:35:89:27:2a:a6:97:c1:66:a7:fa: 96:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:55:B0:14:38:6F:5D:25:85:9D:2F:17:BB:E5:B1:15:07:BB:59:5A X509v3 Authority Key Identifier: keyid:D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/3139322e37352e3139362e302f32332d3234203d3e20323131363635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.75.196.0/23 Signature Algorithm: sha256WithRSAEncryption 83:70:78:2f:aa:c4:c2:90:c8:d8:70:31:3c:4a:c0:55:45:79: bf:1e:85:7f:b4:ef:e2:bc:f2:82:f5:3a:04:92:6c:ff:30:b9: cd:22:12:3f:da:b7:28:35:49:33:b5:40:08:35:ad:b4:ca:10: 09:5f:dc:fd:bb:09:a4:29:ce:ed:a4:45:d3:2b:4e:4d:10:f7: f7:b2:40:a2:15:b7:c3:25:32:e7:09:2d:0b:94:9d:1a:ee:e8: 92:63:de:f8:86:fe:69:b7:db:e1:d2:1a:74:05:e8:c2:ec:38: e4:2c:59:9d:c5:d6:dd:ec:5d:ed:97:0a:6f:c7:30:de:01:d8: 25:69:c3:1d:8d:55:8c:95:62:b6:23:db:67:f0:ca:64:47:23: 48:7d:13:1b:ea:91:7e:8a:03:9f:ea:48:8d:f0:ff:62:ae:8e: 81:85:41:aa:b0:70:a2:cb:64:31:ee:a0:aa:ba:5f:f9:47:93: 57:2c:82:01:17:60:91:3b:78:77:cd:34:72:37:70:f0:28:91: 1c:05:a4:42:36:d6:5e:bc:f4:14:f8:94:95:93:64:b7:7f:1d: 06:ab:56:df:ac:54:97:1a:8a:b3:c6:77:c7:34:9f:de:b3:04: 1c:02:f1:12:a3:39:cb:b1:3a:d4:03:ca:7b:ed:d2:81:4c:c9: 98:4b:5b:a1 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUZmyV8LN7JLDIwY0RH2cSZMMF6nYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZm OTQ1ZTA3MzNmYzQ5YzJlNGMwHhcNMjYwMTEzMjA1NTMzWhcNMjcwMTEyMjEwMDMz WjAzMTEwLwYDVQQDEyg1ODU1QjAxNDM4NkY1RDI1ODU5RDJGMTdCQkU1QjExNTA3 QkI1OTVBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcnGhtKfi6aG Lag/oMNhDmGqBAvjJYkhnTPF7BmHPA1RssOYNV5mDD04Bjmerdo7fBi8iPsf9MCk ebqwwY9Nn6zgcetC2QqjwispVgcLKlE2Mq+1eKr3PkKNXcCzOXkPEpPcYishKEoA FAbEx2E+fl/V71Y3n6Gfkc/30PFwVvG1A88NqFkh4TVLTCB55ODjDC09meG3Tya4 dpEqcDmlpDGJc5rOnWqe3aBZd2S1VX1DFVJHdLWwIrW6p+i4LFFQqqbNa9VEwjsM VQ2nYAocSDmwAIHxkYx+7KiHhHGLDnv2OL331uom4Gy2uYgEU8mFF19MizWJJyqm l8Fmp/qW4QIDAQABo4ICzzCCAsswHQYDVR0OBBYEFFhVsBQ4b10lhZ0vF7vlsRUH u1laMB8GA1UdIwQYMBaAFNdJg8H6ugzBVm8GAa/hFCPhG1FxMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5 LTRmYWVhNGIxYmMxMi83L0Q3NDk4M0MxRkFCQTBDQzE1NjZGMDYwMUFGRTExNDIz RTExQjUxNzEuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2Mt NGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iMTUwZTk4ZC04MGU5LTQ1ZjYtYmM2My02 YjQwYTNkNTllOWMvNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZmOTQ1 ZTA3MzNmYzQ5YzJlNGMuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5LTRmYWVhNGIxYmMxMi83LzMxMzkzMjJl MzczNTJlMzEzOTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMTMxMzYzNjM1 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQBwEvEMA0GCSqGSIb3DQEBCwUAA4IBAQCDcHgvqsTCkMjYcDE8 SsBVRXm/HoV/tO/ivPKC9ToEkmz/MLnNIhI/2rcoNUkztUAINa20yhAJX9z9uwmk Kc7tpEXTK05NEPf3skCiFbfDJTLnCS0LlJ0a7uiSY974hv5pt9vh0hp0BejC7Djk LFmdxdbd7F3tlwpvxzDeAdglacMdjVWMlWK2I9tn8MpkRyNIfRMb6pF+igOf6kiN 8P9iro6BhUGqsHCiy2Qx7qCqul/5R5NXLIIBF2CRO3h3zTRyN3DwKJEcBaRCNtZe vPQU+JSVk2S3fx0Gq1bfrFSXGoqzxnfHNJ/eswQcAvESoznLsTrUA8p77dKBTMmY S1uh -----END CERTIFICATE-----Generated at Mon Mar 2 03:55:28 2026 by rpki-client