$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230333a3a2f34382d313238203d3e20323133343133.roa File: 326130363a313238333a386230333a3a2f34382d313238203d3e20323133343133.roa (raw, json) Hash identifier: 9C302LCYvU+i5JLVJOH4qrTiJnLXDxCLo10Ivgf+geE= Subject key identifier: 30:1B:9C:F4:51:D1:BE:7F:EA:E8:E8:1B:F9:66:B1:A0:B6:11:47:9E Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 4D09675FBDA20A7D0F19D3C4F99F66C7BBD0EEC2 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230333a3a2f34382d313238203d3e20323133343133.roa Signing time: Fri 18 Jul 2025 22:21:01 +0000 ROA not before: Fri 18 Jul 2025 22:16:01 +0000 ROA not after: Fri 17 Jul 2026 22:21:01 +0000 asID: 213413 IP address blocks: 2a06:1283:8b03::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 14:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:09:67:5f:bd:a2:0a:7d:0f:19:d3:c4:f9:9f:66:c7:bb:d0:ee:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 18 22:16:01 2025 GMT Not After : Jul 17 22:21:01 2026 GMT Subject: CN=301B9CF451D1BE7FEAE8E81BF966B1A0B611479E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:b8:b7:f3:bc:0c:5f:28:61:3c:7e:5a:6f: 06:6b:6a:a4:71:9b:ee:d3:6d:38:3b:1c:c4:f6:ae: f4:21:80:5e:ce:27:1d:1d:e8:dd:5e:23:8d:8d:85: 7c:dd:18:15:20:5e:d5:9c:9b:16:e3:76:da:b0:76: f5:06:c6:ba:eb:6d:ce:aa:57:ee:49:f5:48:2f:56: 89:da:26:5f:5c:84:2c:83:b7:0f:60:00:13:75:e5: a8:00:3f:3a:cd:fa:25:08:50:8b:8b:d6:4e:62:18: 6e:40:01:bc:00:56:f1:53:27:75:35:2b:cb:8b:97: a6:95:8b:22:c9:ea:5e:00:e8:d0:66:55:c1:ec:2d: 29:c7:cb:15:4e:eb:55:e1:0f:4c:1f:d3:d8:6c:4b: fa:e3:e8:b2:3c:21:d7:40:f0:4b:86:c5:5b:d1:06: 83:1e:ea:34:5e:f6:85:05:cc:b2:96:33:97:35:d3: 6b:50:d4:3e:58:4f:4f:af:d5:ec:21:dc:4f:a0:85: ea:90:9e:17:ac:fa:de:eb:fc:2e:28:37:f6:26:d3: a6:4b:fd:e8:74:55:92:5e:2b:db:9e:07:84:bb:89: 98:56:e3:6f:5f:cb:ee:f1:cf:34:87:65:88:3c:35: 59:b5:1f:81:4b:b2:57:4c:88:0c:96:67:68:92:bf: 46:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1B:9C:F4:51:D1:BE:7F:EA:E8:E8:1B:F9:66:B1:A0:B6:11:47:9E X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230333a3a2f34382d313238203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b03::/48 Signature Algorithm: sha256WithRSAEncryption 45:a1:b1:ba:02:b2:73:37:c0:3b:99:50:0c:84:39:f8:e6:34: 25:37:19:6c:1a:bf:eb:e6:5d:0a:ab:46:81:20:19:24:34:5d: 73:15:90:97:f1:8b:60:51:be:2a:37:03:41:80:2d:bd:94:6f: c9:a5:6c:65:e0:7c:e9:d5:3c:80:fb:e9:51:3b:f1:6c:a2:78: 2e:d6:94:34:ad:b3:25:b7:ec:3d:88:c6:27:6f:a6:70:97:ba: db:62:4d:00:c0:b4:ba:2e:1b:68:4b:b0:0e:33:7b:4d:1c:5d: 7a:80:f2:14:7c:5a:4b:e4:a6:5f:44:26:44:e2:43:ab:d7:a8: 77:9f:27:1b:f3:40:66:62:f9:ed:75:ae:27:96:c9:ed:94:6c: f8:11:ed:e6:a4:da:c3:8a:d4:6b:6d:41:8a:e7:aa:99:c3:c5: c1:d4:2b:3e:9c:43:fd:99:c9:7b:d6:fd:6a:ce:76:8b:38:4f: 02:db:20:da:6d:d5:c7:0f:f7:64:3a:d0:c4:39:b3:9e:e1:13: 72:42:6d:ee:5c:38:a3:14:fb:ec:d5:b7:aa:8e:b6:cd:01:b3: 28:ab:ea:0f:d7:e3:75:14:cb:09:04:c6:a3:5d:cb:9b:d4:5a: 45:03:f7:18:9a:2d:fe:5f:48:7e:65:35:5e:d4:98:b8:c5:67: 1d:1c:ac:eb -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUTQlnX72iCn0PGdPE+Z9mx7vQ7sIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MTgyMjE2MDFaFw0yNjA3MTcyMjIxMDFaMDMxMTAvBgNV BAMTKDMwMUI5Q0Y0NTFEMUJFN0ZFQUU4RTgxQkY5NjZCMUEwQjYxMTQ3OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Ibi387wMXyhhPH5abwZraqRx m+7TbTg7HMT2rvQhgF7OJx0d6N1eI42NhXzdGBUgXtWcmxbjdtqwdvUGxrrrbc6q V+5J9UgvVonaJl9chCyDtw9gABN15agAPzrN+iUIUIuL1k5iGG5AAbwAVvFTJ3U1 K8uLl6aViyLJ6l4A6NBmVcHsLSnHyxVO61XhD0wf09hsS/rj6LI8IddA8EuGxVvR BoMe6jRe9oUFzLKWM5c102tQ1D5YT0+v1ewh3E+gheqQnhes+t7r/C4oN/Ym06ZL /eh0VZJeK9ueB4S7iZhW429fy+7xzzSHZYg8NVm1H4FLsldMiAyWZ2iSv0atAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUMBuc9FHRvn/q6Ogb+WaxoLYRR54wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDMzM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzMzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiwMwDQYJKoZIhvcNAQELBQADggEB AEWhsboCsnM3wDuZUAyEOfjmNCU3GWwav+vmXQqrRoEgGSQ0XXMVkJfxi2BRvio3 A0GALb2Ub8mlbGXgfOnVPID76VE78WyieC7WlDStsyW37D2IxidvpnCXuttiTQDA tLouG2hLsA4ze00cXXqA8hR8Wkvkpl9EJkTiQ6vXqHefJxvzQGZi+e11rieWye2U bPgR7eak2sOK1GttQYrnqpnDxcHUKz6cQ/2ZyXvW/WrOdos4TwLbINpt1ccP92Q6 0MQ5s57hE3JCbe5cOKMU++zVt6qOts0Bsyir6g/X43UUywkExqNdy5vUWkUD9xia Lf5fSH5lNV7UmLjFZx0crOs= -----END CERTIFICATE-----Generated at Mon Jul 21 21:28:35 2025 by rpki-client