$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230343a3a2f34382d313238203d3e20323133343133.roa File: 326130363a313238333a386230343a3a2f34382d313238203d3e20323133343133.roa (raw, json) Hash identifier: 8yrqf+s2g5bw5KG3SyAhrNgPcZSxkzmGXTu5AJ2lCBE= Subject key identifier: 1F:25:67:68:1C:FD:E2:66:23:A5:4F:28:F5:64:7C:77:AE:9A:76:18 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 7AE188FDB783CC4541D634368EFE8957042AE9A8 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230343a3a2f34382d313238203d3e20323133343133.roa Signing time: Fri 18 Jul 2025 22:21:42 +0000 ROA not before: Fri 18 Jul 2025 22:16:42 +0000 ROA not after: Fri 17 Jul 2026 22:21:42 +0000 asID: 213413 IP address blocks: 2a06:1283:8b04::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 14:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e1:88:fd:b7:83:cc:45:41:d6:34:36:8e:fe:89:57:04:2a:e9:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 18 22:16:42 2025 GMT Not After : Jul 17 22:21:42 2026 GMT Subject: CN=1F2567681CFDE26623A54F28F5647C77AE9A7618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:c8:a7:04:5c:c1:ff:f7:e6:e2:82:92:a1: af:c1:2c:92:49:a3:4a:4d:39:04:00:1f:3d:e6:42: 90:31:48:47:1b:be:cb:b5:89:5e:7a:26:9d:16:89: 64:fc:0f:22:49:06:7c:2b:5e:21:98:0a:7e:49:e6: 88:21:f1:ff:e9:c7:10:02:b7:b0:81:2a:96:6f:8e: 3c:45:10:4e:2b:5e:ec:c9:9f:3b:35:0d:fe:8b:f7: 5b:25:b1:02:46:a0:07:c4:98:bb:bc:28:01:32:66: 23:24:72:a6:77:c2:c2:9b:8b:ea:48:8f:a8:2d:f0: c2:3d:6f:97:6d:e0:63:fa:fd:76:65:59:b0:84:98: 20:c8:c4:48:ab:ec:58:db:68:e2:b0:12:fd:27:91: ae:54:07:9f:11:a2:01:ed:0a:ca:e5:59:53:58:99: 7b:7c:c9:6c:bd:6d:47:22:95:bd:1c:ab:ab:07:53: 39:00:a4:b4:56:cb:e4:72:c5:88:ae:5e:ae:79:0c: cc:da:0c:6b:7e:b5:31:6a:6e:54:1f:8c:f9:1f:87: 6b:0a:4b:ae:ed:da:ba:dc:f4:0a:35:6a:03:fa:2c: c1:62:32:32:07:75:d3:a2:c0:a4:8c:8b:28:df:cc: 99:2b:df:0f:69:36:b5:2d:95:ef:c2:5c:de:e2:9a: 7e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:25:67:68:1C:FD:E2:66:23:A5:4F:28:F5:64:7C:77:AE:9A:76:18 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230343a3a2f34382d313238203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b04::/48 Signature Algorithm: sha256WithRSAEncryption 02:20:a3:2a:b9:37:01:39:b6:e4:85:42:11:ff:87:d5:3c:85: 1e:77:d8:8f:25:6b:d0:63:ee:cd:14:a7:55:62:1d:f3:f8:dc: cf:c5:e6:b4:41:69:3d:40:12:7d:6c:1f:21:03:60:80:37:02: 89:e3:a7:70:87:12:04:09:f0:48:e1:d2:2f:e1:83:dd:8a:2e: 5c:05:e8:a5:80:69:35:ac:ed:09:6a:dc:68:2f:2e:25:ae:ae: d9:87:f4:21:5d:f8:eb:95:d4:16:aa:3c:fe:ef:09:62:80:1d: af:84:87:96:b1:b3:bb:4b:d4:bd:cc:af:ac:66:b4:8a:27:1d: 57:05:1d:9b:e2:96:7b:a1:26:85:21:b6:54:55:05:8e:af:33: b0:99:93:81:48:af:1c:94:a9:1b:61:93:9b:e7:97:bd:81:fc: 51:29:6a:76:06:e2:27:da:c8:7f:e9:81:85:94:af:eb:16:0f: 70:8b:66:3f:6c:46:0e:1f:5b:63:93:35:f5:84:34:75:bc:4a: d0:79:f4:60:b4:71:3a:9c:d2:59:77:ca:a1:41:3d:e6:5d:97: a3:26:33:67:8f:ec:65:a1:39:f4:07:1f:3f:f2:fc:f0:07:f4: e7:eb:a6:24:97:03:11:b8:db:d5:7b:09:0d:bb:62:d0:3f:ce: 8f:d7:8f:6f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUeuGI/beDzEVB1jQ2jv6JVwQq6agwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MTgyMjE2NDJaFw0yNjA3MTcyMjIxNDJaMDMxMTAvBgNV BAMTKDFGMjU2NzY4MUNGREUyNjYyM0E1NEYyOEY1NjQ3Qzc3QUU5QTc2MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW9sinBFzB//fm4oKSoa/BLJJJ o0pNOQQAHz3mQpAxSEcbvsu1iV56Jp0WiWT8DyJJBnwrXiGYCn5J5ogh8f/pxxAC t7CBKpZvjjxFEE4rXuzJnzs1Df6L91slsQJGoAfEmLu8KAEyZiMkcqZ3wsKbi+pI j6gt8MI9b5dt4GP6/XZlWbCEmCDIxEir7FjbaOKwEv0nka5UB58RogHtCsrlWVNY mXt8yWy9bUcilb0cq6sHUzkApLRWy+RyxYiuXq55DMzaDGt+tTFqblQfjPkfh2sK S67t2rrc9Ao1agP6LMFiMjIHddOiwKSMiyjfzJkr3w9pNrUtle/CXN7imn7xAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUHyVnaBz94mYjpU8o9WR8d66adhgwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDM0M2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzMzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiwQwDQYJKoZIhvcNAQELBQADggEB AAIgoyq5NwE5tuSFQhH/h9U8hR532I8la9Bj7s0Up1ViHfP43M/F5rRBaT1AEn1s HyEDYIA3Aonjp3CHEgQJ8Ejh0i/hg92KLlwF6KWAaTWs7Qlq3GgvLiWurtmH9CFd +OuV1BaqPP7vCWKAHa+Eh5axs7tL1L3Mr6xmtIonHVcFHZvilnuhJoUhtlRVBY6v M7CZk4FIrxyUqRthk5vnl72B/FEpanYG4ifayH/pgYWUr+sWD3CLZj9sRg4fW2OT NfWENHW8StB59GC0cTqc0ll3yqFBPeZdl6MmM2eP7GWhOfQHHz/y/PAH9OfrpiSX AxG429V7CQ27YtA/zo/Xj28= -----END CERTIFICATE-----Generated at Mon Jul 21 21:26:11 2025 by rpki-client