$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa File: 326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa (raw, json) Hash identifier: rJLCwnl4uhsE/sIS8YisrOAIem98x56OxfgeBDZO+zk= Subject key identifier: E4:44:94:4F:BE:28:5B:BA:50:60:4D:C9:D2:E5:AF:F8:B3:12:8D:DE Certificate issuer: /CN=B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2 Certificate serial: 501C8302FABDE3E3FDB41BD2D04C2F453FF3DAB2 Authority key identifier: B3:F0:D7:73:DC:BE:52:3A:3F:B1:F5:D2:6D:00:33:48:74:BC:9F:B2 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa Signing time: Thu 24 Jul 2025 11:05:45 +0000 ROA not before: Thu 24 Jul 2025 11:00:45 +0000 ROA not after: Thu 23 Jul 2026 11:05:45 +0000 asID: 44733 IP address blocks: 2a0a:6044:b3c0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2.crl rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2.mft rsync://krill.47272.net/repo/HYEHOST/5/B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 26 Jul 2025 18:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:1c:83:02:fa:bd:e3:e3:fd:b4:1b:d2:d0:4c:2f:45:3f:f3:da:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2 Validity Not Before: Jul 24 11:00:45 2025 GMT Not After : Jul 23 11:05:45 2026 GMT Subject: CN=E444944FBE285BBA50604DC9D2E5AFF8B3128DDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a5:dc:93:ca:a1:30:9f:87:8c:11:06:fe:22: 3c:25:b3:b6:67:90:db:a1:2c:b8:53:3a:53:cc:13: e9:c6:96:72:be:3d:c8:82:aa:e4:bc:50:b2:45:90: 58:85:e4:93:48:e9:6c:e8:ad:b0:65:91:d3:59:6a: 36:fe:aa:7a:e1:36:1c:92:43:12:54:1d:a3:ce:7e: b9:a7:23:cd:d4:84:04:4c:a0:4f:21:b9:fe:f3:23: 7d:4e:a5:33:83:98:e3:eb:08:30:8b:62:d9:04:eb: f4:25:a6:23:21:f6:1b:52:07:f8:61:1d:26:e1:78: 72:8a:d9:c0:ac:f3:7b:48:af:d6:f9:2f:ff:b7:09: 43:11:c5:61:aa:f2:87:26:3d:7c:dd:a7:c6:ee:9b: 28:5c:f9:7b:ab:52:1e:e4:72:93:a5:e5:bf:0b:a4: d5:eb:93:3f:6f:46:ca:49:77:f9:b2:78:be:cb:bb: 59:0a:23:2c:f0:84:1f:b6:0d:4f:ac:65:7c:3c:f5: 43:07:66:20:30:44:e6:f7:30:cc:7b:ba:86:b4:64: 57:c6:14:10:7c:23:21:2c:aa:0d:98:34:76:56:92: 64:b2:ef:1d:8a:93:d6:ab:f3:a7:83:f0:1d:0d:11: 07:06:65:bf:c5:ca:b2:49:a5:d4:78:1d:3a:81:0a: 4f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:44:94:4F:BE:28:5B:BA:50:60:4D:C9:D2:E5:AF:F8:B3:12:8D:DE X509v3 Authority Key Identifier: keyid:B3:F0:D7:73:DC:BE:52:3A:3F:B1:F5:D2:6D:00:33:48:74:BC:9F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B3F0D773DCBE523A3FB1F5D26D00334874BC9FB2.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b3c0::/44 Signature Algorithm: sha256WithRSAEncryption 20:10:e8:15:ed:84:58:ee:4e:67:86:a1:1c:3e:26:60:06:82: 8f:c3:9d:1f:22:b1:e6:6f:89:e0:fe:2b:da:d9:d9:16:03:ca: 9b:ce:a7:05:c5:fd:d2:58:dc:2f:e4:2a:d7:92:b2:fb:e2:38: 6c:58:d9:3e:02:70:62:8d:19:10:24:e6:5b:77:d9:e0:60:cd: cd:e9:36:d8:42:76:46:f8:29:83:24:79:6b:36:0f:d4:cf:87: 1a:1a:44:0d:29:07:14:e9:d6:db:e6:17:96:bb:3b:f4:a4:57: f5:b5:7c:0c:62:d7:fe:ff:5e:0e:f4:af:68:c6:ae:0a:5b:b9: 81:6e:0d:55:b8:55:66:a1:ef:02:f3:fa:ee:6c:41:a6:75:50: 4b:ef:5e:1e:a7:37:e2:ce:fd:d6:c6:81:6e:ff:ca:d9:00:c7: 46:53:56:3e:6c:3a:56:16:d2:f5:c7:17:ab:5e:4f:61:93:3a: 7c:36:40:29:08:bc:e2:a1:09:37:a3:00:d3:06:ac:b7:71:66: 56:c5:c4:fb:fd:3f:af:8f:11:d6:72:22:94:9b:25:48:4a:0b: b3:28:1a:c0:67:b6:dd:f5:d8:6c:8d:a2:b3:d6:5a:c1:13:f9: 38:2b:94:59:be:97:79:0f:72:c5:44:93:ab:0d:09:b3:76:9b: 65:3c:26:c9 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUUByDAvq94+P9tBvS0EwvRT/z2rIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMEQ3NzNEQ0JFNTIzQTNGQjFGNUQyNkQwMDMzNDg3 NEJDOUZCMjAeFw0yNTA3MjQxMTAwNDVaFw0yNjA3MjMxMTA1NDVaMDMxMTAvBgNV BAMTKEU0NDQ5NDRGQkUyODVCQkE1MDYwNERDOUQyRTVBRkY4QjMxMjhEREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0pdyTyqEwn4eMEQb+Ijwls7Zn kNuhLLhTOlPME+nGlnK+PciCquS8ULJFkFiF5JNI6WzorbBlkdNZajb+qnrhNhyS QxJUHaPOfrmnI83UhARMoE8huf7zI31OpTODmOPrCDCLYtkE6/QlpiMh9htSB/hh HSbheHKK2cCs83tIr9b5L/+3CUMRxWGq8ocmPXzdp8bumyhc+XurUh7kcpOl5b8L pNXrkz9vRspJd/myeL7Lu1kKIyzwhB+2DU+sZXw89UMHZiAwROb3MMx7uoa0ZFfG FBB8IyEsqg2YNHZWkmSy7x2Kk9ar86eD8B0NEQcGZb/FyrJJpdR4HTqBCk99AgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU5ESUT74oW7pQYE3J0uWv+LMSjd4wHwYDVR0j BBgwFoAUs/DXc9y+Ujo/sfXSbQAzSHS8n7IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzEwOThjMjMtYTk3Ny00ZjlhLTk3YzktY2Q0ZTc1OWRl YTA5LzIvQjNGMEQ3NzNEQ0JFNTIzQTNGQjFGNUQyNkQwMDMzNDg3NEJDOUZCMi5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CM0YwRDc3M0RDQkU1MjNBM0ZCMUY1RDI2 RDAwMzM0ODc0QkM5RkIyLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MTA5OGMyMy1hOTc3LTRmOWEtOTdjOS1jZDRlNzU5ZGVhMDkvMi8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyMzM2MzMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzQz NDM3MzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoKYESzwDANBgkqhkiG9w0BAQsFAAOCAQEAIBDo Fe2EWO5OZ4ahHD4mYAaCj8OdHyKx5m+J4P4r2tnZFgPKm86nBcX90ljcL+Qq15Ky ++I4bFjZPgJwYo0ZECTmW3fZ4GDNzek22EJ2RvgpgyR5azYP1M+HGhpEDSkHFOnW 2+YXlrs79KRX9bV8DGLX/v9eDvSvaMauClu5gW4NVbhVZqHvAvP67mxBpnVQS+9e Hqc34s791saBbv/K2QDHRlNWPmw6VhbS9ccXq15PYZM6fDZAKQi84qEJN6MA0was t3FmVsXE+/0/r48R1nIilJslSEoLsygawGe23fXYbI2is9ZawRP5OCuUWb6XeQ9y xUSTqw0Js3abZTwmyQ== -----END CERTIFICATE-----Generated at Sat Jul 26 06:34:26 2025 by rpki-client