$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386234303a3a2f34342d313238203d3e20323036363034.roa File: 326130363a313238333a386234303a3a2f34342d313238203d3e20323036363034.roa (raw, json) Hash identifier: jMnRJSIBI/vK/lYdVRqiwNEB3nWoaFm4KV/BQrtgZJI= Subject key identifier: DD:EC:9D:ED:6C:77:9A:7F:A6:04:A0:38:03:39:DC:F7:84:4A:51:25 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 5CCE2794273861DA1DD49884AC5CB069B93BB036 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386234303a3a2f34342d313238203d3e20323036363034.roa Signing time: Mon 21 Jul 2025 16:27:21 +0000 ROA not before: Mon 21 Jul 2025 16:22:21 +0000 ROA not after: Mon 20 Jul 2026 16:27:21 +0000 asID: 206604 IP address blocks: 2a06:1283:8b40::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 00:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ce:27:94:27:38:61:da:1d:d4:98:84:ac:5c:b0:69:b9:3b:b0:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 21 16:22:21 2025 GMT Not After : Jul 20 16:27:21 2026 GMT Subject: CN=DDEC9DED6C779A7FA604A0380339DCF7844A5125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:34:01:61:ee:91:fa:1f:a6:0b:5b:61:6a:8c: 09:6e:4b:69:01:ec:7c:68:03:1a:db:c7:29:0d:08: dd:9a:fe:6d:ba:37:cf:c4:99:50:f1:a3:b7:76:1e: 9b:fc:24:f3:b7:2b:15:3b:84:dd:ce:2a:bc:7f:9c: eb:2c:8d:25:1d:9f:3b:d9:22:dc:69:0b:4f:69:78: 4e:62:9e:6a:5e:6e:82:53:cd:f7:39:b5:b0:f5:ca: f0:6c:53:d6:be:d7:86:78:0c:d8:c8:5c:34:7d:9e: 6e:e1:5e:7e:ed:85:53:e5:68:4e:ec:8e:66:4a:3c: f4:dc:41:5a:89:0c:bf:ec:73:1f:98:32:79:7a:c1: 22:97:c5:04:fd:d6:4e:d7:e4:50:b1:22:08:ed:3a: 1d:c2:00:ed:4f:02:bf:dd:4b:5d:06:3e:20:95:80: dd:51:b9:0e:c2:be:26:5b:4b:96:32:86:71:5a:4c: 8f:e5:43:af:1a:14:d6:64:57:0d:5d:c0:74:26:16: 88:75:02:d9:d0:b3:8c:32:75:c2:24:d9:a6:8a:2e: 61:72:b9:04:c6:9b:bb:19:bd:33:34:da:4b:d4:ba: 46:98:f5:8c:d2:02:20:81:6f:72:95:5b:9f:0c:2e: 3b:24:b7:d5:48:ce:68:08:0a:6f:56:26:80:c8:ab: cd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:EC:9D:ED:6C:77:9A:7F:A6:04:A0:38:03:39:DC:F7:84:4A:51:25 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386234303a3a2f34342d313238203d3e20323036363034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b40::/44 Signature Algorithm: sha256WithRSAEncryption 34:68:5b:7a:f3:52:e4:9d:4f:8a:e7:20:a8:52:5a:22:27:24: 01:a8:73:26:aa:39:28:24:d4:eb:4b:19:2d:a8:22:e0:cc:38: ec:08:12:27:73:8e:78:a6:27:fe:91:88:b0:26:b8:2c:86:33: b5:27:54:5f:ef:62:1d:02:58:9a:99:62:8b:c7:09:fc:ac:ed: 6f:83:55:1c:05:f7:2f:e6:7e:a5:7d:74:dc:16:7e:12:8f:e1: 35:d6:3b:7a:8c:be:ec:0e:da:b5:df:55:bb:18:f2:ad:b0:a8: 3e:e1:fb:83:ee:63:01:fa:6d:ae:3f:e7:17:7b:d2:a1:3b:13: 82:f4:b7:b9:19:19:1c:a0:a4:21:28:e6:9f:31:99:e4:ab:56: 21:e8:45:86:45:d2:00:6e:72:e5:b1:67:b9:70:8d:4a:2b:34: e1:8d:b8:63:61:a6:ae:63:4e:4f:9d:6d:43:3f:6d:a7:30:46: c6:83:aa:83:9d:fa:c8:c9:57:fb:be:4d:70:d4:13:4f:d6:c4: 1f:d5:03:c9:41:75:eb:5b:09:e6:4a:bc:79:26:d7:27:f7:39: 4f:6a:87:19:19:21:5d:12:70:91:e8:db:0c:bf:b4:18:f4:cd: 56:76:ca:a9:c3:8f:93:c2:a4:f5:56:d3:46:eb:1c:1a:46:c2: 5e:66:b6:3e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUXM4nlCc4Ydod1JiErFywabk7sDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MjExNjIyMjFaFw0yNjA3MjAxNjI3MjFaMDMxMTAvBgNV BAMTKERERUM5REVENkM3NzlBN0ZBNjA0QTAzODAzMzlEQ0Y3ODQ0QTUxMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyNAFh7pH6H6YLW2FqjAluS2kB 7HxoAxrbxykNCN2a/m26N8/EmVDxo7d2Hpv8JPO3KxU7hN3OKrx/nOssjSUdnzvZ ItxpC09peE5inmpeboJTzfc5tbD1yvBsU9a+14Z4DNjIXDR9nm7hXn7thVPlaE7s jmZKPPTcQVqJDL/scx+YMnl6wSKXxQT91k7X5FCxIgjtOh3CAO1PAr/dS10GPiCV gN1RuQ7CviZbS5YyhnFaTI/lQ68aFNZkVw1dwHQmFoh1AtnQs4wydcIk2aaKLmFy uQTGm7sZvTM02kvUukaY9YzSAiCBb3KVW58MLjskt9VIzmgICm9WJoDIq82nAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQU3eyd7Wx3mn+mBKA4Aznc94RKUSUwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzNDMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNlMjAz MjMwMzYzNjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBhKDi0AwDQYJKoZIhvcNAQELBQADggEB ADRoW3rzUuSdT4rnIKhSWiInJAGocyaqOSgk1OtLGS2oIuDMOOwIEidzjnimJ/6R iLAmuCyGM7UnVF/vYh0CWJqZYovHCfys7W+DVRwF9y/mfqV9dNwWfhKP4TXWO3qM vuwO2rXfVbsY8q2wqD7h+4PuYwH6ba4/5xd70qE7E4L0t7kZGRygpCEo5p8xmeSr ViHoRYZF0gBucuWxZ7lwjUorNOGNuGNhpq5jTk+dbUM/bacwRsaDqoOd+sjJV/u+ TXDUE0/WxB/VA8lBdetbCeZKvHkm1yf3OU9qhxkZIV0ScJHo2wy/tBj0zVZ2yqnD j5PCpPVW00brHBpGwl5mtj4= -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:45 2025 by rpki-client