$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386232303a3a2f34342d313238203d3e20323036363034.roa File: 326130363a313238333a386232303a3a2f34342d313238203d3e20323036363034.roa (raw, json) Hash identifier: 5OdJnaKVh+px3V/b0A5vN4t5kNQD310BBRMdi9J8Cio= Subject key identifier: 48:C9:DF:4C:B4:8A:B2:C5:CD:9C:17:BE:F0:55:5E:99:EB:A8:D0:EF Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 1B87F272E4C697A4E08D92BE773E77FD7193B1F9 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386232303a3a2f34342d313238203d3e20323036363034.roa Signing time: Mon 21 Jul 2025 16:26:53 +0000 ROA not before: Mon 21 Jul 2025 16:21:53 +0000 ROA not after: Mon 20 Jul 2026 16:26:53 +0000 asID: 206604 IP address blocks: 2a06:1283:8b20::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 00:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:87:f2:72:e4:c6:97:a4:e0:8d:92:be:77:3e:77:fd:71:93:b1:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 21 16:21:53 2025 GMT Not After : Jul 20 16:26:53 2026 GMT Subject: CN=48C9DF4CB48AB2C5CD9C17BEF0555E99EBA8D0EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:87:5f:d0:97:5c:fe:29:1e:d3:8f:d4:63:7b: 7b:87:cb:aa:01:7b:f6:f3:b3:1c:6e:49:da:13:5e: 38:ef:9b:50:b1:c5:f5:f1:fe:2a:0f:c9:c0:e2:24: 4e:bc:73:1b:74:a8:b8:84:39:12:1d:64:67:18:ed: be:0a:1a:97:2b:50:6e:5c:1a:7b:6c:fb:a7:29:3b: a7:f7:7b:ac:cb:9e:6c:f1:d7:0b:2c:fc:bb:f5:22: 10:80:ce:fd:aa:26:60:9b:f1:3e:1b:57:2f:3a:8d: 43:90:7c:06:58:5e:f6:ae:94:8d:05:15:fd:86:0c: d2:13:c5:11:01:b6:a2:3f:36:91:a7:93:de:24:e2: 78:0f:7e:4f:f1:5a:ce:1a:2b:02:3e:79:b5:79:c5: d6:00:c4:ea:e2:87:bc:c2:b6:55:5b:41:9c:1e:86: 3b:87:98:21:e3:bb:6e:e5:5b:e9:d3:c8:8f:86:f3: 60:24:6c:a7:48:af:9e:f2:9a:2c:9e:c6:12:78:0b: de:8a:66:2f:d8:25:0c:4f:ba:3d:bc:d1:2e:26:0c: a0:9f:52:43:a9:c0:1b:68:e3:f5:8f:fd:e0:37:75: 2f:14:0e:79:88:9a:8f:7f:e6:d3:e3:0e:82:c4:d5: 5c:de:f3:b3:59:66:87:5e:26:25:02:de:36:dc:2e: f8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C9:DF:4C:B4:8A:B2:C5:CD:9C:17:BE:F0:55:5E:99:EB:A8:D0:EF X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386232303a3a2f34342d313238203d3e20323036363034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b20::/44 Signature Algorithm: sha256WithRSAEncryption 42:81:96:d2:88:ec:27:8c:df:82:35:e5:8e:b6:56:fd:8d:a1: 56:75:c2:ee:ff:48:df:4b:f8:1b:05:71:77:33:49:48:1a:47: 52:69:66:76:36:cb:32:d9:5f:1f:0f:2a:a4:54:17:2d:06:9e: 57:ce:64:b4:07:1d:a6:69:8d:a0:4d:99:a1:9a:f2:7f:9a:b1: 55:2f:e7:19:01:bd:14:f8:98:51:ae:b6:25:b5:cf:b3:26:ed: d4:58:23:c8:0b:c7:e2:7a:37:0a:7a:72:32:0a:38:57:bd:b6: 0e:e8:76:ac:9e:82:69:da:c5:3c:0c:fd:76:6b:7c:2e:a4:33: ec:18:2b:a7:e1:98:3c:5a:bf:bf:83:cc:72:bd:d0:5d:e7:a5: 8f:45:4d:2c:e6:3a:89:ea:97:01:20:1b:a4:b8:f6:f6:9b:e3: a1:79:83:aa:e4:72:9e:0a:e0:6b:7a:87:77:7e:9a:34:32:a1: f6:6c:ef:c9:1a:57:a3:9a:fd:7a:c1:75:f1:5d:8e:69:3b:77: f4:3a:21:18:18:3a:ca:4d:fb:a8:db:09:4e:01:c6:16:ac:6a: 4a:79:3d:82:2d:46:f1:4c:ba:88:5e:ed:99:63:77:10:18:4a: cd:9b:e3:5e:5e:dc:31:cd:b5:72:f9:4b:43:48:dd:fb:0e:8e: 5c:3b:9f:af -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUG4fycuTGl6TgjZK+dz53/XGTsfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MjExNjIxNTNaFw0yNjA3MjAxNjI2NTNaMDMxMTAvBgNV BAMTKDQ4QzlERjRDQjQ4QUIyQzVDRDlDMTdCRUYwNTU1RTk5RUJBOEQwRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdh1/Ql1z+KR7Tj9Rje3uHy6oB e/bzsxxuSdoTXjjvm1CxxfXx/ioPycDiJE68cxt0qLiEORIdZGcY7b4KGpcrUG5c Gnts+6cpO6f3e6zLnmzx1wss/Lv1IhCAzv2qJmCb8T4bVy86jUOQfAZYXvaulI0F Ff2GDNITxREBtqI/NpGnk94k4ngPfk/xWs4aKwI+ebV5xdYAxOrih7zCtlVbQZwe hjuHmCHju27lW+nTyI+G82AkbKdIr57ymiyexhJ4C96KZi/YJQxPuj280S4mDKCf UkOpwBto4/WP/eA3dS8UDnmImo9/5tPjDoLE1Vze87NZZodeJiUC3jbcLvixAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUSMnfTLSKssXNnBe+8FVemeuo0O8wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMjMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNlMjAz MjMwMzYzNjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBhKDiyAwDQYJKoZIhvcNAQELBQADggEB AEKBltKI7CeM34I15Y62Vv2NoVZ1wu7/SN9L+BsFcXczSUgaR1JpZnY2yzLZXx8P KqRUFy0GnlfOZLQHHaZpjaBNmaGa8n+asVUv5xkBvRT4mFGutiW1z7Mm7dRYI8gL x+J6Nwp6cjIKOFe9tg7odqyegmnaxTwM/XZrfC6kM+wYK6fhmDxav7+DzHK90F3n pY9FTSzmOonqlwEgG6S49vab46F5g6rkcp4K4Gt6h3d+mjQyofZs78kaV6Oa/XrB dfFdjmk7d/Q6IRgYOspN+6jbCU4Bxhasakp5PYItRvFMuohe7ZljdxAYSs2b415e 3DHNtXL5S0NI3fsOjlw7n68= -----END CERTIFICATE-----Generated at Wed Jul 23 12:13:42 2025 by rpki-client