$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230363a3a2f34382d313238203d3e20323133343133.roa File: 326130363a313238333a386230363a3a2f34382d313238203d3e20323133343133.roa (raw, json) Hash identifier: LRX/tmRuBv04fybDYPCQD9lanhfB9HcnVGBpgk5TB5I= Subject key identifier: 33:5D:2A:0D:11:86:F4:42:E7:C4:11:B7:9F:FC:73:57:F0:68:B2:8F Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 3CE51C76AC25C2F3CFDCD3CCC25758C193706E21 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230363a3a2f34382d313238203d3e20323133343133.roa Signing time: Fri 18 Jul 2025 22:21:57 +0000 ROA not before: Fri 18 Jul 2025 22:16:57 +0000 ROA not after: Fri 17 Jul 2026 22:21:57 +0000 asID: 213413 IP address blocks: 2a06:1283:8b06::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 14:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e5:1c:76:ac:25:c2:f3:cf:dc:d3:cc:c2:57:58:c1:93:70:6e:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 18 22:16:57 2025 GMT Not After : Jul 17 22:21:57 2026 GMT Subject: CN=335D2A0D1186F442E7C411B79FFC7357F068B28F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:22:f5:cb:da:86:68:34:9f:0d:73:2b:c0:49: ff:e1:c7:7e:aa:b3:3c:c8:e5:6e:2e:f0:d0:e8:b7: 41:30:17:bc:1e:a3:83:c7:76:25:ce:c4:72:07:b1: 10:c9:b0:52:49:dc:a3:13:88:4d:ad:59:05:07:04: 2e:34:e6:a6:4e:de:a6:a5:22:8c:5c:43:42:30:16: df:ac:d8:db:49:25:b1:55:51:45:25:6c:08:f6:bc: f1:1a:6d:6c:a2:66:2b:ec:ae:28:97:a2:2f:8e:a1: 05:1c:99:87:d8:6e:8f:e7:1e:07:f5:fc:48:03:cd: 3a:f0:71:dc:a0:8e:01:68:6c:06:c0:4f:75:d4:46: 91:15:20:c9:cb:3a:9a:fa:fe:12:b7:34:3a:3d:6c: cd:ee:04:0a:69:f0:1b:41:c7:9d:12:58:86:35:ce: d3:eb:76:17:b5:39:ee:47:a6:eb:33:9e:c3:a6:18: 70:6f:c9:72:f4:98:41:f2:c1:3c:04:41:08:62:4f: 75:78:8c:85:16:91:f8:f3:ca:1a:50:1c:9e:c2:dc: ce:4e:f9:13:46:8c:42:5e:bc:10:64:81:ff:8d:ae: ee:a6:61:e0:a1:f0:03:40:18:4b:49:03:fb:4c:99: 2a:cf:19:1c:84:05:18:5b:4a:1b:dd:54:eb:66:4b: 15:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5D:2A:0D:11:86:F4:42:E7:C4:11:B7:9F:FC:73:57:F0:68:B2:8F X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230363a3a2f34382d313238203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b06::/48 Signature Algorithm: sha256WithRSAEncryption 29:f0:5a:d6:17:33:8f:e5:ef:ad:5b:86:c3:a9:b2:e2:88:89: a2:f5:d9:ac:42:98:be:cd:88:d4:13:63:07:bf:8e:af:8b:c8: 95:66:cc:ff:2f:16:ac:7e:2d:3f:b8:da:ac:69:e6:e1:25:21: e5:2e:20:61:a4:dd:d3:25:60:d8:a6:89:06:5d:fe:e5:17:b1: e3:d0:05:30:04:ce:8f:9a:e4:32:8d:3d:4d:3a:d5:ad:97:91: 05:6a:f9:f0:4d:04:bf:ff:2d:39:34:1f:1b:23:29:15:4f:cf: 5e:ed:24:72:9e:82:15:df:8c:09:6d:82:d1:39:e5:b1:16:06: d8:af:61:af:5e:36:5b:a2:c1:79:d0:79:f6:be:ce:ed:60:0a: 7b:05:9e:b6:c4:36:4b:f7:5d:bd:4c:78:b4:67:9c:82:32:ee: e5:05:3e:51:dd:cf:00:8d:12:1d:ca:71:3b:6a:5a:98:12:91: 1b:6c:c3:7f:14:01:29:4a:39:4d:3b:cf:93:34:f3:1a:74:de: 38:2b:2d:a1:d1:fe:37:de:d3:d8:91:60:5f:05:c5:dd:ad:58: 32:56:6e:fb:96:7f:26:0c:92:ba:8a:7f:18:a4:dd:c0:85:3b: 81:e6:75:c0:37:cd:4b:44:7b:6e:16:91:a5:e3:07:aa:12:9d: 15:e3:0d:27 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUPOUcdqwlwvPP3NPMwldYwZNwbiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MTgyMjE2NTdaFw0yNjA3MTcyMjIxNTdaMDMxMTAvBgNV BAMTKDMzNUQyQTBEMTE4NkY0NDJFN0M0MTFCNzlGRkM3MzU3RjA2OEIyOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGIvXL2oZoNJ8NcyvASf/hx36q szzI5W4u8NDot0EwF7weo4PHdiXOxHIHsRDJsFJJ3KMTiE2tWQUHBC405qZO3qal IoxcQ0IwFt+s2NtJJbFVUUUlbAj2vPEabWyiZivsriiXoi+OoQUcmYfYbo/nHgf1 /EgDzTrwcdygjgFobAbAT3XURpEVIMnLOpr6/hK3NDo9bM3uBApp8BtBx50SWIY1 ztPrdhe1Oe5HpusznsOmGHBvyXL0mEHywTwEQQhiT3V4jIUWkfjzyhpQHJ7C3M5O +RNGjEJevBBkgf+Nru6mYeCh8ANAGEtJA/tMmSrPGRyEBRhbShvdVOtmSxUnAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUM10qDRGG9ELnxBG3n/xzV/Boso8wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDM2M2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzMzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiwYwDQYJKoZIhvcNAQELBQADggEB ACnwWtYXM4/l761bhsOpsuKIiaL12axCmL7NiNQTYwe/jq+LyJVmzP8vFqx+LT+4 2qxp5uElIeUuIGGk3dMlYNimiQZd/uUXsePQBTAEzo+a5DKNPU061a2XkQVq+fBN BL//LTk0HxsjKRVPz17tJHKeghXfjAltgtE55bEWBtivYa9eNluiwXnQefa+zu1g CnsFnrbENkv3Xb1MeLRnnIIy7uUFPlHdzwCNEh3KcTtqWpgSkRtsw38UASlKOU07 z5M08xp03jgrLaHR/jfe09iRYF8Fxd2tWDJWbvuWfyYMkrqKfxik3cCFO4HmdcA3 zUtEe24WkaXjB6oSnRXjDSc= -----END CERTIFICATE-----Generated at Mon Jul 21 21:29:30 2025 by rpki-client