$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20323135323438.roa File: 323630323a663662613a3a2f34302d3430203d3e20323135323438.roa (raw, json) Hash identifier: Kk9CSrNwPsOKUe+v4ZVIi4qEv+Arhq2bOgPkVNwdmaU= Subject key identifier: 1B:32:D7:53:F9:44:CC:40:77:C8:E2:A0:B1:AE:E1:CD:AE:77:70:9C Certificate issuer: /CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Certificate serial: 1BEDCE84933736ED0BC930E475F56A0F98C35574 Authority key identifier: 1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20323135323438.roa Signing time: Sat 21 Feb 2026 16:50:30 +0000 ROA not before: Sat 21 Feb 2026 16:45:30 +0000 ROA not after: Sat 20 Feb 2027 16:50:30 +0000 asID: 215248 IP address blocks: 2602:f6ba::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 04:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ed:ce:84:93:37:36:ed:0b:c9:30:e4:75:f5:6a:0f:98:c3:55:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Validity Not Before: Feb 21 16:45:30 2026 GMT Not After : Feb 20 16:50:30 2027 GMT Subject: CN=1B32D753F944CC4077C8E2A0B1AEE1CDAE77709C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c0:d3:06:1a:84:b4:1a:c4:c1:52:71:b4:86: bb:a0:31:ec:cf:5d:b6:af:8a:58:57:16:a1:cf:08: 75:2d:f1:80:d8:a2:92:65:22:b1:9a:32:00:e6:07: e2:8f:42:7c:64:02:93:f6:05:f1:11:44:35:9f:e6: ca:85:ee:a2:cb:5e:19:18:64:5f:9e:a2:2a:c0:4a: 21:df:7b:99:fb:0a:49:7c:47:ac:6e:29:bd:28:19: 2d:4d:b4:44:e8:6b:41:b4:ad:5f:fe:74:54:fc:cc: b9:35:72:c2:22:d4:b6:a8:34:bc:5e:01:c5:bf:a0: ca:11:d2:eb:84:af:6f:0d:83:02:aa:c3:60:26:01: 28:e1:17:2e:79:be:83:8c:72:dc:75:ee:e5:f4:3f: b1:9d:a3:c6:47:a0:88:62:44:c9:5e:cf:c7:78:d2: d7:32:aa:cf:02:95:df:de:92:04:23:e8:be:18:84: 60:e3:a2:8e:fd:44:03:61:0b:bc:bf:13:d6:4b:02: 8a:97:2d:d9:c2:ed:e6:42:48:dc:98:d8:9d:26:32: 51:5c:92:19:68:a7:26:c7:c8:92:f3:74:a3:0b:bc: 29:86:a6:2d:72:45:04:73:6d:53:2f:a3:d9:97:05: 3c:68:ff:bf:82:95:3c:2c:f1:9b:f6:6c:df:8d:d8: 83:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:32:D7:53:F9:44:CC:40:77:C8:E2:A0:B1:AE:E1:CD:AE:77:70:9C X509v3 Authority Key Identifier: keyid:1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20323135323438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f6ba::/40 Signature Algorithm: sha256WithRSAEncryption 07:1e:e5:30:d7:69:85:37:a5:a6:f8:4f:98:d1:b1:c3:bd:7c: d1:9c:1c:36:c6:02:88:a8:ca:31:cb:00:39:de:e9:e5:e1:c4: 4e:72:50:93:37:b2:d3:2a:c3:78:83:9a:1f:f4:8d:01:98:23: 8b:b9:41:bd:ca:7d:06:f6:2e:0f:2d:e0:4d:a5:b2:27:df:05: 70:81:c1:0f:ff:05:9e:11:26:11:4a:b3:96:87:77:aa:09:1c: 10:32:f0:b2:86:0c:3f:98:6c:5b:49:36:70:3b:25:9f:67:fd: 96:c7:a4:81:f0:6f:9f:0a:14:c9:9a:fb:6a:5c:cc:4f:63:78: b1:6d:1f:ab:5d:de:4f:c7:63:47:42:77:aa:fa:1e:13:69:ad: d0:ca:55:ba:40:42:ca:ff:ea:c8:5e:69:f3:4a:88:74:5b:0c: 0c:31:4a:96:80:17:a6:68:72:57:e9:b6:a3:17:4e:24:eb:b3: 1e:ac:c1:41:84:ab:c6:58:7c:b9:1e:08:76:76:5c:35:c1:21: f7:04:fa:b0:fd:f5:83:22:00:53:c3:18:c8:e9:5c:9c:f7:3a: 2d:97:b2:61:33:3d:0e:d3:15:f6:3d:b5:d8:21:3c:38:e3:e6: a0:34:de:28:91:c4:65:e5:56:ca:fc:a2:3f:43:9b:90:b5:19: 32:80:86:73 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUG+3OhJM3Nu0LyTDkdfVqD5jDVXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0 NDI5ZjE2NmI2NTMwMWE5ZGQwHhcNMjYwMjIxMTY0NTMwWhcNMjcwMjIwMTY1MDMw WjAzMTEwLwYDVQQDEygxQjMyRDc1M0Y5NDRDQzQwNzdDOEUyQTBCMUFFRTFDREFF Nzc3MDlDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcDTBhqEtBrE wVJxtIa7oDHsz122r4pYVxahzwh1LfGA2KKSZSKxmjIA5gfij0J8ZAKT9gXxEUQ1 n+bKhe6iy14ZGGRfnqIqwEoh33uZ+wpJfEesbim9KBktTbRE6GtBtK1f/nRU/My5 NXLCItS2qDS8XgHFv6DKEdLrhK9vDYMCqsNgJgEo4Rcueb6DjHLcde7l9D+xnaPG R6CIYkTJXs/HeNLXMqrPApXf3pIEI+i+GIRg46KO/UQDYQu8vxPWSwKKly3Zwu3m QkjcmNidJjJRXJIZaKcmx8iS83SjC7wphqYtckUEc21TL6PZlwU8aP+/gpU8LPGb 9mzfjdiDuQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFBsy11P5RMxAd8jioLGu4c2u d3CcMB8GA1UdIwQYMBaAFB9/ckmmgfjNQScLUNjX54FYgdo2MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0 LTU4MGQxMzY5YjdjNC8xLzFGN0Y3MjQ5QTY4MUY4Q0Q0MTI3MEI1MEQ4RDdFNzgx NTg4MURBMzYuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q2YjVhZDI4LTFjYmMt NDdhYi05MDRlLTQ1MzYxYTU0ODdjMy8zODNiZDUwYi1iMTkyLTQ0YmQtOTM0OS0z NTEyMjVhMTNhMzMvMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0NDI5 ZjE2NmI2NTMwMWE5ZGQuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0LTU4MGQxMzY5YjdjNC8xLzMyMzYzMDMy M2E2NjM2NjI2MTNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEzNTMyMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACYC9roAMA0GCSqGSIb3DQEBCwUAA4IBAQAHHuUw12mFN6Wm+E+Y 0bHDvXzRnBw2xgKIqMoxywA53unl4cROclCTN7LTKsN4g5of9I0BmCOLuUG9yn0G 9i4PLeBNpbIn3wVwgcEP/wWeESYRSrOWh3eqCRwQMvCyhgw/mGxbSTZwOyWfZ/2W x6SB8G+fChTJmvtqXMxPY3ixbR+rXd5Px2NHQneq+h4Taa3QylW6QELK/+rIXmnz Soh0WwwMMUqWgBemaHJX6bajF04k67MerMFBhKvGWHy5Hgh2dlw1wSH3BPqw/fWD IgBTwxjI6Vyc9zotl7JhMz0O0xX2PbXYITw44+agNN4okcRl5VbK/KI/Q5uQtRky gIZz -----END CERTIFICATE-----Generated at Sun Mar 1 16:29:48 2026 by rpki-client