$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613030303a3a2f34302d313238203d3e20323039383734.roa File: 326130393a353463333a613030303a3a2f34302d313238203d3e20323039383734.roa (raw, json) Hash identifier: ca9GKU5mOXVUfI7Du4XvHpxs7R00F6F4l3yz+1HGWmo= Subject key identifier: 46:5A:62:08:78:B7:1E:C5:29:68:0F:91:14:B9:D2:DD:BC:F2:DC:4C Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 389AFFC44230257BC739EB50A1A3B2C8DB1270F1 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613030303a3a2f34302d313238203d3e20323039383734.roa Signing time: Sat 19 Jul 2025 15:15:55 +0000 ROA not before: Sat 19 Jul 2025 15:10:55 +0000 ROA not after: Sat 18 Jul 2026 15:15:55 +0000 asID: 209874 IP address blocks: 2a09:54c3:a000::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 26 Jul 2025 20:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9a:ff:c4:42:30:25:7b:c7:39:eb:50:a1:a3:b2:c8:db:12:70:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Jul 19 15:10:55 2025 GMT Not After : Jul 18 15:15:55 2026 GMT Subject: CN=465A620878B71EC529680F9114B9D2DDBCF2DC4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:81:43:2b:77:91:6d:18:09:31:cf:d0:44:fb: 55:61:3c:88:e8:53:d2:53:3a:9e:95:9e:ea:79:33: c2:88:42:06:d2:c0:da:0b:b1:75:3a:e2:5d:dd:48: 7b:72:51:07:18:6f:bb:46:03:37:2b:43:5e:c9:db: c8:2d:98:da:94:bd:e7:11:c1:30:89:4c:db:9a:43: 5d:9f:89:2e:c2:9e:22:e2:00:ff:fe:4e:28:08:07: 66:4a:8b:3e:eb:d7:fa:8f:97:4a:cc:77:b8:19:54: 2b:f8:8a:cf:12:c7:37:d0:32:18:33:42:a5:96:d3: 8e:a3:f1:c3:6c:ce:7a:65:6d:a0:73:83:37:00:59: 14:21:52:77:d4:32:fd:45:97:dc:fd:b3:e7:30:09: 4e:bd:de:34:10:85:27:16:31:f0:06:66:c7:85:f8: 6d:d9:2b:a4:e5:a5:b8:72:fd:a8:4c:ef:68:ef:41: d6:b3:f3:3b:08:7d:9b:4f:44:d9:d1:c5:67:08:bc: df:ae:bb:fe:fa:0b:bf:f3:07:80:1d:8a:6d:2c:3e: ea:db:b1:14:2f:a9:f2:dd:15:1f:e5:a0:f3:b3:04: 38:a5:4e:dc:d3:e7:35:01:0a:ec:4e:28:df:89:54: ae:83:0a:11:ec:f2:48:1b:89:9c:3f:84:48:a4:07: 00:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5A:62:08:78:B7:1E:C5:29:68:0F:91:14:B9:D2:DD:BC:F2:DC:4C X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613030303a3a2f34302d313238203d3e20323039383734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:a000::/40 Signature Algorithm: sha256WithRSAEncryption 9c:24:e9:6b:29:fc:af:1e:92:bd:5e:a1:68:38:be:e7:28:54: 95:8f:99:ab:69:42:36:b2:71:2a:58:49:c5:0a:45:5a:0f:e2: a0:19:74:73:48:84:fc:a3:30:b3:f0:ba:77:17:cb:e7:e5:fd: 6c:72:e9:7f:da:a9:cc:d6:59:c6:72:cc:32:28:25:f2:fa:dc: 30:7a:44:1c:5a:81:e7:d6:d9:c4:21:69:f6:2a:1f:2d:1d:07: 22:28:82:64:78:3b:b3:6c:fb:92:f8:e0:a6:8d:0c:d6:e1:59: 87:80:cd:b8:11:9b:33:45:54:d4:e1:ed:7a:05:ad:ac:ca:5a: 6a:6d:f8:34:ad:a1:a5:18:0e:e1:2b:77:f2:e6:d1:b1:b0:b7: 28:e8:e2:ec:e3:b7:91:4f:74:f9:7c:f5:8b:24:23:4a:61:44: 87:8a:4b:d3:96:72:4e:64:80:59:20:2a:1e:0b:fe:02:7c:f0: bf:9e:5c:58:67:f2:0d:3d:75:ab:cb:78:f3:46:bc:4a:1a:ed: fe:f5:9c:24:29:12:26:b2:75:ea:dd:3a:f9:21:a5:e8:72:f4: f8:78:04:8a:44:b9:05:fc:52:12:e6:0c:56:76:98:ba:22:7d: a5:4f:52:3c:8a:05:72:d6:3f:62:e8:c0:ce:b1:82:f1:df:23: 45:14:78:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUOJr/xEIwJXvHOetQoaOyyNsScPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA3MTkxNTEwNTVaFw0yNjA3MTgxNTE1NTVaMDMxMTAvBgNV BAMTKDQ2NUE2MjA4NzhCNzFFQzUyOTY4MEY5MTE0QjlEMkREQkNGMkRDNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEgUMrd5FtGAkxz9BE+1VhPIjo U9JTOp6Vnup5M8KIQgbSwNoLsXU64l3dSHtyUQcYb7tGAzcrQ17J28gtmNqUvecR wTCJTNuaQ12fiS7CniLiAP/+TigIB2ZKiz7r1/qPl0rMd7gZVCv4is8SxzfQMhgz QqWW046j8cNsznplbaBzgzcAWRQhUnfUMv1Fl9z9s+cwCU693jQQhScWMfAGZseF +G3ZK6Tlpbhy/ahM72jvQdaz8zsIfZtPRNnRxWcIvN+uu/76C7/zB4Adim0sPurb sRQvqfLdFR/loPOzBDilTtzT5zUBCuxOKN+JVK6DChHs8kgbiZw/hEikBwAbAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQURlpiCHi3HsUpaA+RFLnS3bzy3EwwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2MTMwMzAzMDNhM2EyZjM0MzAyZDMxMzIzODIwM2QzZTIwMzIzMDM5MzgzNzM0 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAOBAIAAjAIAwYAKglUw6AwDQYJKoZIhvcNAQELBQADggEBAJwk6Wsp/K8ekr1e oWg4vucoVJWPmatpQjaycSpYScUKRVoP4qAZdHNIhPyjMLPwuncXy+fl/Wxy6X/a qczWWcZyzDIoJfL63DB6RBxagefW2cQhafYqHy0dByIogmR4O7Ns+5L44KaNDNbh WYeAzbgRmzNFVNTh7XoFrazKWmpt+DStoaUYDuErd/Lm0bGwtyjo4uzjt5FPdPl8 9YskI0phRIeKS9OWck5kgFkgKh4L/gJ88L+eXFhn8g09davLePNGvEoa7f71nCQp EiayderdOvkhpehy9Ph4BIpEuQX8UhLmDFZ2mLoifaVPUjyKBXLWP2LowM6xgvHf I0UUeBI= -----END CERTIFICATE-----Generated at Sat Jul 26 06:18:43 2025 by rpki-client