$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e20323036363034.roa File: 326130363a313238333a386235303a3a2f34342d313238203d3e20323036363034.roa (raw, json) Hash identifier: 4reeNbN2ltLfVHU8qpdiliEFl9Ty64DXI/3VJ3ck1VA= Subject key identifier: 2D:F4:74:70:76:EB:C0:4D:85:39:34:53:5F:32:1C:DF:EE:06:9A:89 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 4C75876D7068A4A118F18590C4F84EBA6ABA7237 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e20323036363034.roa Signing time: Tue 22 Jul 2025 23:51:55 +0000 ROA not before: Tue 22 Jul 2025 23:46:55 +0000 ROA not after: Tue 21 Jul 2026 23:51:55 +0000 asID: 206604 IP address blocks: 2a06:1283:8b50::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 00:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:75:87:6d:70:68:a4:a1:18:f1:85:90:c4:f8:4e:ba:6a:ba:72:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 22 23:46:55 2025 GMT Not After : Jul 21 23:51:55 2026 GMT Subject: CN=2DF4747076EBC04D853934535F321CDFEE069A89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ff:f6:53:48:a2:c5:d8:91:9d:23:7c:cf:12: 97:e6:f8:2e:bb:5c:a0:5d:c5:5b:80:77:b2:ef:47: f6:45:b9:de:f6:11:51:54:1a:50:05:14:0d:b5:84: da:aa:b0:82:39:b4:3b:0a:88:56:d2:2c:ee:61:97: 3d:f5:1c:1e:5d:10:d2:a7:0b:28:df:4a:0d:9a:d2: 55:0b:26:c0:af:dd:09:3e:0b:16:d9:38:82:8a:ac: 89:e7:d2:09:92:1e:31:3b:1a:5b:b1:7c:2a:45:9f: fb:0c:9a:92:f1:29:d7:4a:0c:ea:c6:fb:d9:61:fc: 3a:34:3e:c8:e8:a8:ef:32:9c:ba:4f:2d:68:4a:7e: 69:03:72:bd:e5:59:f2:c8:56:ae:36:63:4a:90:f6: 82:36:11:0e:29:f2:93:e7:0b:4a:7d:92:f4:37:62: d9:c9:d7:d0:aa:c1:70:ea:7e:24:f9:64:11:1e:19: f9:ba:50:57:1c:47:84:a1:b3:7e:49:2d:9f:24:f5: 39:d6:3a:3e:da:c6:e2:64:5f:e9:75:05:fc:21:18: 4b:9a:ec:52:f4:af:87:3f:ad:93:81:d2:30:24:d3: 46:22:b7:09:61:35:26:f0:f5:7a:0f:de:ce:00:60: b3:af:1f:75:42:5c:9b:c6:c2:c2:49:89:b1:d2:04: ad:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F4:74:70:76:EB:C0:4D:85:39:34:53:5F:32:1C:DF:EE:06:9A:89 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e20323036363034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b50::/44 Signature Algorithm: sha256WithRSAEncryption b7:30:3f:e7:d9:91:ff:e1:4d:a4:44:9f:6a:69:d1:30:96:77: 62:d7:85:f9:e9:df:84:bb:46:4d:21:94:d8:ec:2f:1f:91:f3: 2b:3e:26:ea:50:b2:99:58:38:06:42:85:aa:1f:4c:9a:46:45: 89:bd:c3:d0:06:9a:c5:84:d1:a4:5c:1d:16:8e:70:57:1a:a0: 95:70:0b:b8:67:1b:0c:a3:77:d1:a1:53:e6:d9:ae:64:9f:dd: 4a:65:27:50:3b:8a:9f:8e:4f:af:31:6d:ca:2c:6c:5b:78:f9: 9d:9a:53:75:5c:73:5f:60:36:cc:d4:e0:0c:6c:0f:07:de:fd: 31:99:49:f0:2e:5c:7b:af:ad:ec:74:10:e3:78:e3:c5:4d:93: 5f:5c:03:f9:aa:3d:80:9b:54:dc:59:d9:d9:75:5b:4b:1e:3f: c5:2a:80:7d:59:d9:24:16:9b:07:66:bf:a9:01:f6:57:54:b6: b5:7c:c7:84:0e:5e:50:2e:5b:a2:91:29:3b:b4:9f:6e:a4:aa: b3:0d:1a:2f:c0:3b:03:42:b1:78:a5:df:1d:ff:2d:78:b5:52: 8a:02:34:6d:c8:e3:d4:4e:cc:8d:b7:fc:22:16:86:40:a0:03: 40:6f:65:2f:b4:fe:49:39:06:81:d9:ee:50:f1:9e:89:9a:36: f7:82:51:2e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUTHWHbXBopKEY8YWQxPhOumq6cjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MjIyMzQ2NTVaFw0yNjA3MjEyMzUxNTVaMDMxMTAvBgNV BAMTKDJERjQ3NDcwNzZFQkMwNEQ4NTM5MzQ1MzVGMzIxQ0RGRUUwNjlBODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK//ZTSKLF2JGdI3zPEpfm+C67 XKBdxVuAd7LvR/ZFud72EVFUGlAFFA21hNqqsII5tDsKiFbSLO5hlz31HB5dENKn CyjfSg2a0lULJsCv3Qk+CxbZOIKKrInn0gmSHjE7GluxfCpFn/sMmpLxKddKDOrG +9lh/Do0PsjoqO8ynLpPLWhKfmkDcr3lWfLIVq42Y0qQ9oI2EQ4p8pPnC0p9kvQ3 YtnJ19CqwXDqfiT5ZBEeGfm6UFccR4Shs35JLZ8k9TnWOj7axuJkX+l1BfwhGEua 7FL0r4c/rZOB0jAk00YitwlhNSbw9XoP3s4AYLOvH3VCXJvGwsJJibHSBK3tAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQULfR0cHbrwE2FOTRTXzIc3+4GmokwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzNTMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNlMjAz MjMwMzYzNjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBhKDi1AwDQYJKoZIhvcNAQELBQADggEB ALcwP+fZkf/hTaREn2pp0TCWd2LXhfnp34S7Rk0hlNjsLx+R8ys+JupQsplYOAZC haofTJpGRYm9w9AGmsWE0aRcHRaOcFcaoJVwC7hnGwyjd9GhU+bZrmSf3UplJ1A7 ip+OT68xbcosbFt4+Z2aU3Vcc19gNszU4AxsDwfe/TGZSfAuXHuvrex0EON448VN k19cA/mqPYCbVNxZ2dl1W0seP8UqgH1Z2SQWmwdmv6kB9ldUtrV8x4QOXlAuW6KR KTu0n26kqrMNGi/AOwNCsXil3x3/LXi1UooCNG3I49ROzI23/CIWhkCgA0BvZS+0 /kk5BoHZ7lDxnomaNveCUS4= -----END CERTIFICATE-----Generated at Wed Jul 23 12:16:29 2025 by rpki-client