$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/32332e3133362e32302e302f32342d3234203d3e20323135323438.roa File: 32332e3133362e32302e302f32342d3234203d3e20323135323438.roa (raw, json) Hash identifier: UEvy/Fk/6V0NUZWmLYAvbYkSNSZ7wnUqypnNnCctoPE= Subject key identifier: EC:04:FB:C1:D6:A6:DE:D1:A7:85:E0:C9:0E:D5:E9:AC:3F:CB:8A:6C Certificate issuer: /CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Certificate serial: 5DC5FA68747001FF9714D8E089FCFE0768162C2C Authority key identifier: 1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/32332e3133362e32302e302f32342d3234203d3e20323135323438.roa Signing time: Sat 21 Feb 2026 16:50:30 +0000 ROA not before: Sat 21 Feb 2026 16:45:30 +0000 ROA not after: Sat 20 Feb 2027 16:50:30 +0000 asID: 215248 IP address blocks: 23.136.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 04:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c5:fa:68:74:70:01:ff:97:14:d8:e0:89:fc:fe:07:68:16:2c:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Validity Not Before: Feb 21 16:45:30 2026 GMT Not After : Feb 20 16:50:30 2027 GMT Subject: CN=EC04FBC1D6A6DED1A785E0C90ED5E9AC3FCB8A6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8b:56:59:bf:0f:d7:b2:f0:67:f3:65:ee:cb: 75:93:8f:ad:c8:73:66:9d:67:8a:f3:b5:c9:da:aa: 0d:92:2f:c9:b7:eb:1a:58:6e:7f:62:e0:19:1f:02: 06:ba:8a:4c:a9:48:f4:d9:a6:7a:a8:80:2c:eb:1e: 01:d6:29:9d:a4:94:11:a8:76:97:ae:7d:2b:7e:18: 72:f1:ae:d5:4d:0a:c8:16:8e:11:1d:c4:14:90:79: fb:1f:be:de:8c:89:f9:0f:c9:8c:65:6e:84:41:c1: 68:95:43:39:23:74:de:37:68:53:4c:e1:21:bf:bd: 7d:a0:ba:29:1b:6e:44:fb:05:da:74:24:9e:38:cc: 2f:ea:17:58:6a:15:13:97:7e:24:91:44:a4:66:d5: 75:b1:e5:56:58:ab:ba:31:9a:b9:68:57:a2:9c:06: 0b:53:10:9b:66:34:d1:91:da:89:a5:e3:dd:a0:fd: b9:f5:c7:92:ea:fb:a0:5e:ef:72:b1:0e:db:48:78: 7b:e4:87:46:68:3a:75:33:f4:6d:5e:e9:ee:74:30: c2:35:38:e7:f1:ce:69:6f:eb:0d:83:05:b7:ba:21: 7b:5c:26:f6:db:43:50:85:e9:1c:5f:33:46:1c:b8: 5b:f6:7a:bb:e5:72:c8:2d:93:b5:9a:af:c5:bc:3c: be:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:04:FB:C1:D6:A6:DE:D1:A7:85:E0:C9:0E:D5:E9:AC:3F:CB:8A:6C X509v3 Authority Key Identifier: keyid:1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/32332e3133362e32302e302f32342d3234203d3e20323135323438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.136.20.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:7e:26:dc:56:f9:63:04:3b:66:48:89:f9:9c:19:4f:6b:e3: f8:f3:8c:c6:35:e1:2e:4e:49:2d:7b:87:30:90:40:cb:98:77: 94:bf:2f:e0:40:08:4c:a8:11:bb:9c:83:37:d6:4f:4c:8c:60: da:89:7e:9b:36:69:d8:26:d6:2f:d0:d8:6c:65:38:1b:43:14: fb:37:72:97:07:c6:da:88:29:dd:8f:78:79:bc:2e:27:8f:a9: 5f:85:1e:8f:64:09:8b:29:17:18:d4:1c:09:78:de:ec:7e:2c: 2a:f3:8e:83:34:4f:55:97:d4:9c:3d:9d:7f:be:af:27:4b:cf: 87:2b:0d:da:78:25:9c:f6:4b:a5:5b:2f:3d:bc:5c:30:c9:ef: b8:27:e2:8d:e1:2f:28:7e:61:0a:ae:73:42:26:d4:cb:50:74: 16:15:98:ac:f8:73:62:af:54:a7:4b:03:ee:81:59:e8:7b:8f: 17:b4:8f:8a:34:15:86:40:34:4f:3b:46:8d:24:2e:e7:ce:d7: 9c:cb:34:fa:84:c5:e1:f1:4c:11:3c:14:20:18:0d:f6:e3:c1: 9b:85:69:d7:70:b9:89:21:53:d6:bf:d6:75:5b:c3:9c:4e:75: d9:43:85:6d:5b:96:df:96:3d:82:16:8c:8c:f5:5d:af:e4:29: 84:2b:c4:60 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUXcX6aHRwAf+XFNjgifz+B2gWLCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0 NDI5ZjE2NmI2NTMwMWE5ZGQwHhcNMjYwMjIxMTY0NTMwWhcNMjcwMjIwMTY1MDMw WjAzMTEwLwYDVQQDEyhFQzA0RkJDMUQ2QTZERUQxQTc4NUUwQzkwRUQ1RTlBQzNG Q0I4QTZDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YtWWb8P17Lw Z/Nl7st1k4+tyHNmnWeK87XJ2qoNki/Jt+saWG5/YuAZHwIGuopMqUj02aZ6qIAs 6x4B1imdpJQRqHaXrn0rfhhy8a7VTQrIFo4RHcQUkHn7H77ejIn5D8mMZW6EQcFo lUM5I3TeN2hTTOEhv719oLopG25E+wXadCSeOMwv6hdYahUTl34kkUSkZtV1seVW WKu6MZq5aFeinAYLUxCbZjTRkdqJpePdoP259ceS6vugXu9ysQ7bSHh75IdGaDp1 M/RtXunudDDCNTjn8c5pb+sNgwW3uiF7XCb220NQhekcXzNGHLhb9nq75XLILZO1 mq/FvDy+2QIDAQABo4ICzTCCAskwHQYDVR0OBBYEFOwE+8HWpt7Rp4XgyQ7V6aw/ y4psMB8GA1UdIwQYMBaAFB9/ckmmgfjNQScLUNjX54FYgdo2MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0 LTU4MGQxMzY5YjdjNC8xLzFGN0Y3MjQ5QTY4MUY4Q0Q0MTI3MEI1MEQ4RDdFNzgx NTg4MURBMzYuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q2YjVhZDI4LTFjYmMt NDdhYi05MDRlLTQ1MzYxYTU0ODdjMy8zODNiZDUwYi1iMTkyLTQ0YmQtOTM0OS0z NTEyMjVhMTNhMzMvMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0NDI5 ZjE2NmI2NTMwMWE5ZGQuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0LTU4MGQxMzY5YjdjNC8xLzMyMzMyZTMx MzMzNjJlMzIzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzNTMyMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABeIFDANBgkqhkiG9w0BAQsFAAOCAQEAKn4m3Fb5YwQ7ZkiJ+ZwZ T2vj+POMxjXhLk5JLXuHMJBAy5h3lL8v4EAITKgRu5yDN9ZPTIxg2ol+mzZp2CbW L9DYbGU4G0MU+zdylwfG2ogp3Y94ebwuJ4+pX4Uej2QJiykXGNQcCXje7H4sKvOO gzRPVZfUnD2df76vJ0vPhysN2nglnPZLpVsvPbxcMMnvuCfijeEvKH5hCq5zQibU y1B0FhWYrPhzYq9Up0sD7oFZ6HuPF7SPijQVhkA0TztGjSQu587XnMs0+oTF4fFM ETwUIBgN9uPBm4Vp13C5iSFT1r/WdVvDnE512UOFbVuW35Y9ghaMjPVdr+QphCvE YA== -----END CERTIFICATE-----Generated at Sun Mar 1 16:30:45 2026 by rpki-client