$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/1/32332e3137352e32342e302f32332d3234203d3e203434333234.roa File: 32332e3137352e32342e302f32332d3234203d3e203434333234.roa (raw, json) Hash identifier: Ll5vJFutahJkWr4VzOHWGGr69grKSEO2M/wfqdD5M1s= Subject key identifier: 14:12:2C:82:27:14:EA:04:E9:4E:9D:23:23:88:6F:99:D9:BC:8E:21 Certificate issuer: /CN=a22aa82bd6af16d70a699d34ed843d71620176f10e2010d22d Certificate serial: 65BDB764B410C2788D3305EE08DF6DD21BF9D0A5 Authority key identifier: DE:F9:CF:6D:4F:F8:42:24:03:A0:B6:5E:13:9A:B5:3C:60:8B:92:12 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd6af16d70a699d34ed843d71620176f10e2010d22d.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/1/32332e3137352e32342e302f32332d3234203d3e203434333234.roa Signing time: Fri 24 Oct 2025 17:15:38 +0000 ROA not before: Fri 24 Oct 2025 17:10:38 +0000 ROA not after: Fri 23 Oct 2026 17:15:38 +0000 asID: 44324 IP address blocks: 23.175.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/1/DEF9CF6D4FF8422403A0B65E139AB53C608B9212.crl rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/1/DEF9CF6D4FF8422403A0B65E139AB53C608B9212.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd6af16d70a699d34ed843d71620176f10e2010d22d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/7f33cf59-ae35-41d4-8252-d9bdbaba4210.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 16:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:bd:b7:64:b4:10:c2:78:8d:33:05:ee:08:df:6d:d2:1b:f9:d0:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a22aa82bd6af16d70a699d34ed843d71620176f10e2010d22d Validity Not Before: Oct 24 17:10:38 2025 GMT Not After : Oct 23 17:15:38 2026 GMT Subject: CN=14122C822714EA04E94E9D2323886F99D9BC8E21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:66:3b:fd:31:ad:52:0b:ea:1a:d0:f8:1a:39: 93:6c:dd:53:4c:eb:d6:29:70:53:ef:fd:61:7b:d6: d4:7e:bf:08:e2:ff:1b:a0:08:bc:5c:0b:10:09:61: 6d:21:5a:d1:d1:5d:7a:67:a1:dd:0a:5a:b8:ba:11: 0f:f0:d8:e3:4c:dc:5d:6e:e6:38:1d:e1:05:76:e3: 99:08:49:e9:d8:cf:dc:49:d0:7f:d6:46:ef:5a:42: 1b:0f:63:c9:ba:7f:c4:b3:45:1a:d6:6d:7c:e6:f2: c0:24:2b:41:a8:7a:66:f0:93:af:07:3a:54:7e:73: c0:fe:d6:13:d5:02:fc:c5:26:6f:c0:51:2b:90:04: ba:e7:38:27:26:a3:27:dd:4d:c4:fc:51:f7:da:41: 5b:2c:d5:2c:0b:75:63:cf:f9:0e:0f:cc:2c:01:e8: 58:42:30:86:ea:14:7b:a5:b7:6b:44:6a:bd:3a:a1: 4f:a6:0b:e5:96:ed:f5:83:b8:02:41:4d:9c:f3:5a: b3:71:ab:d7:ce:4b:df:4c:a4:96:f7:a1:09:5c:3a: 80:ad:24:93:2d:be:9c:1c:67:3f:94:74:59:32:10: 3c:40:12:dc:37:5c:5a:8e:6e:53:fc:6d:01:7f:15: 0f:c3:cf:8a:12:5c:95:75:71:20:80:ea:ba:b9:c7: fc:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:12:2C:82:27:14:EA:04:E9:4E:9D:23:23:88:6F:99:D9:BC:8E:21 X509v3 Authority Key Identifier: keyid:DE:F9:CF:6D:4F:F8:42:24:03:A0:B6:5E:13:9A:B5:3C:60:8B:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/1/DEF9CF6D4FF8422403A0B65E139AB53C608B9212.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7f33cf59-ae35-41d4-8252-d9bdbaba4210/a22aa82bd6af16d70a699d34ed843d71620176f10e2010d22d.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/1/32332e3137352e32342e302f32332d3234203d3e203434333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.175.24.0/23 Signature Algorithm: sha256WithRSAEncryption 61:0a:43:03:9f:74:4c:cb:d2:4d:ae:98:7a:4e:80:1f:f5:90: 94:61:60:c1:c3:a0:02:c9:60:81:3b:28:7c:7e:01:29:81:4e: de:c6:8f:7e:74:5c:ee:49:b8:d8:d3:a3:28:af:27:f0:4c:84: dc:d9:7d:cf:92:82:99:26:76:f8:b2:96:e8:76:c2:ac:19:7c: 41:24:12:c8:75:36:2a:7f:27:87:e9:b0:7c:ab:31:69:9b:70: 32:a1:dc:92:ff:33:1a:db:0d:ba:e0:f9:83:18:f2:c4:2b:e4: 70:9a:5e:7f:c5:07:43:7d:6a:26:36:4d:dc:bb:67:8c:af:93: f2:07:63:86:56:27:11:2f:18:16:60:f9:90:e9:79:f2:72:55: 34:8c:55:13:f0:74:fe:e7:fa:67:fd:15:c3:51:8b:a1:ac:7b: 24:7f:94:90:e0:c3:04:5c:59:b1:ee:23:e9:9e:0e:16:ff:20: 07:14:3d:3b:ac:7a:22:3d:78:8d:28:9b:75:80:50:65:41:d3: 0e:b7:0a:27:d4:f6:7b:62:db:ac:a9:51:8e:25:5f:af:ec:17: ea:db:f2:25:bb:8c:76:a1:a8:26:a3:30:b1:26:27:be:50:6d: 16:0e:7b:98:80:e7:64:2f:3a:66:2a:0d:0c:df:f0:1d:f7:1b: 41:81:a4:eb -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUZb23ZLQQwniNMwXuCN9t0hv50KUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTIyYWE4MmJkNmFmMTZkNzBhNjk5ZDM0ZWQ4NDNkNzE2 MjAxNzZmMTBlMjAxMGQyMmQwHhcNMjUxMDI0MTcxMDM4WhcNMjYxMDIzMTcxNTM4 WjAzMTEwLwYDVQQDEygxNDEyMkM4MjI3MTRFQTA0RTk0RTlEMjMyMzg4NkY5OUQ5 QkM4RTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomY7/TGtUgvq GtD4GjmTbN1TTOvWKXBT7/1he9bUfr8I4v8boAi8XAsQCWFtIVrR0V16Z6HdClq4 uhEP8NjjTNxdbuY4HeEFduOZCEnp2M/cSdB/1kbvWkIbD2PJun/Es0Ua1m185vLA JCtBqHpm8JOvBzpUfnPA/tYT1QL8xSZvwFErkAS65zgnJqMn3U3E/FH32kFbLNUs C3Vjz/kOD8wsAehYQjCG6hR7pbdrRGq9OqFPpgvllu31g7gCQU2c81qzcavXzkvf TKSW96EJXDqArSSTLb6cHGc/lHRZMhA8QBLcN1xajm5T/G0BfxUPw8+KElyVdXEg gOq6ucf8HwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFBQSLIInFOoE6U6dIyOIb5nZ vI4hMB8GA1UdIwQYMBaAFN75z21P+EIkA6C2XhOatTxgi5ISMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2UyNmViMTM2LTRmZTUtNGU2MS1hNGQ4 LWYzNDVmNTJiYzI1ZC8xL0RFRjlDRjZENEZGODQyMjQwM0EwQjY1RTEzOUFCNTND NjA4QjkyMTIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmIt NDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83ZjMzY2Y1OS1hZTM1LTQxZDQtODI1Mi1k OWJkYmFiYTQyMTAvYTIyYWE4MmJkNmFmMTZkNzBhNjk5ZDM0ZWQ4NDNkNzE2MjAx NzZmMTBlMjAxMGQyMmQuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2UyNmViMTM2LTRmZTUtNGU2MS1hNGQ4LWYzNDVmNTJiYzI1ZC8xLzMyMzMyZTMx MzczNTJlMzIzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM0MzQzMzMyMzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAEXrxgwDQYJKoZIhvcNAQELBQADggEBAGEKQwOfdEzL0k2umHpOgB/1 kJRhYMHDoALJYIE7KHx+ASmBTt7Gj350XO5JuNjToyivJ/BMhNzZfc+Sgpkmdviy luh2wqwZfEEkEsh1Nip/J4fpsHyrMWmbcDKh3JL/MxrbDbrg+YMY8sQr5HCaXn/F B0N9aiY2Tdy7Z4yvk/IHY4ZWJxEvGBZg+ZDpefJyVTSMVRPwdP7n+mf9FcNRi6Gs eyR/lJDgwwRcWbHuI+meDhb/IAcUPTuseiI9eI0om3WAUGVB0w63CifU9nti26yp UY4lX6/sF+rb8iW7jHahqCajMLEmJ75QbRYOe5iA52QvOmYqDQzf8B33G0GBpOs= -----END CERTIFICATE-----Generated at Wed Nov 5 10:20:02 2025 by rpki-client