$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa File: 326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa (raw, json) Hash identifier: K5QPPi4Yfjuh9BxUtSBKx+Yx6emt2s39uotzqzd2HMk= Subject key identifier: C5:DC:2E:1C:81:F2:44:D9:74:29:90:EE:C5:B1:41:8A:12:DD:4F:5A Certificate issuer: /CN=966427869FCAD15ECBE4F1C77A3FB3C68BD1F917 Certificate serial: 3C59EE10F5783E53D26FB02260826938FCF1F227 Authority key identifier: 96:64:27:86:9F:CA:D1:5E:CB:E4:F1:C7:7A:3F:B3:C6:8B:D1:F9:17 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa Signing time: Sun 20 Jul 2025 11:33:01 +0000 ROA not before: Sun 20 Jul 2025 11:28:01 +0000 ROA not after: Sun 19 Jul 2026 11:33:01 +0000 asID: 213413 IP address blocks: 2a0b:4e07:a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.crl rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 06:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:59:ee:10:f5:78:3e:53:d2:6f:b0:22:60:82:69:38:fc:f1:f2:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=966427869FCAD15ECBE4F1C77A3FB3C68BD1F917 Validity Not Before: Jul 20 11:28:01 2025 GMT Not After : Jul 19 11:33:01 2026 GMT Subject: CN=C5DC2E1C81F244D9742990EEC5B1418A12DD4F5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ec:3c:f1:b3:cc:42:fa:40:cf:b9:cd:27:57: 8c:35:77:7c:a5:84:fc:5d:9c:3d:b5:ad:34:cd:62: a3:98:33:c9:2d:41:53:43:ce:a8:9f:59:fa:8d:09: bd:62:99:fd:16:77:6b:3a:55:77:6e:1f:ea:c5:92: fa:8d:80:be:3e:5d:da:0b:65:09:44:9b:ab:29:ff: 3a:20:6c:aa:13:f9:3e:af:32:12:ab:43:38:21:e0: 7f:a0:69:58:d3:06:fb:9d:13:45:58:3b:14:15:7d: 11:c7:0e:26:0d:eb:a1:78:db:13:20:5a:a8:24:b6: ce:f5:55:d2:b9:0c:f8:38:cf:82:bc:ac:3e:02:27: d3:b5:a6:e7:34:ef:ec:ed:ef:24:b1:c8:5f:a6:ce: 6d:b5:f6:48:85:a4:91:3e:71:c3:c5:cd:10:38:78: ce:37:2e:d3:a6:dc:1c:3e:d8:05:0f:1f:40:77:8b: f0:53:80:db:33:7c:7a:c1:e8:e9:7e:bc:91:97:62: 51:b0:2b:df:6f:b0:fc:8e:cb:8c:69:5e:66:bd:bb: 9e:06:21:00:8a:17:8b:8b:57:85:8f:97:95:03:14: 65:4e:b2:94:83:b8:3c:4f:e2:85:fc:e6:34:c4:ad: 8f:cc:f7:5e:31:4e:a6:fe:1f:b9:95:1a:54:09:61: 66:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DC:2E:1C:81:F2:44:D9:74:29:90:EE:C5:B1:41:8A:12:DD:4F:5A X509v3 Authority Key Identifier: keyid:96:64:27:86:9F:CA:D1:5E:CB:E4:F1:C7:7A:3F:B3:C6:8B:D1:F9:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a80::/48 Signature Algorithm: sha256WithRSAEncryption 67:8c:54:4e:25:62:39:fe:9c:43:09:88:ba:5f:6c:62:99:91: 57:87:bf:33:fb:54:e3:85:49:24:1c:87:92:82:01:e0:ce:89: 5b:0e:50:e1:25:59:c7:bc:3d:68:b5:3b:d7:27:01:69:68:2b: 91:10:75:0a:d2:c0:48:17:e5:b7:b0:42:01:06:e5:ef:5d:fe: e0:3d:3b:44:d4:60:1c:ec:a8:0a:cf:73:e6:4d:03:a8:e1:04: d4:a6:63:0c:a4:04:66:25:07:43:e6:0e:cb:01:97:1d:da:b8: 5d:c9:ae:8b:f3:1a:2a:33:99:25:79:9e:42:1a:9a:2d:7f:24: 19:d2:e0:2e:52:2d:d0:65:68:4c:d0:e0:6a:ee:73:08:0f:44: 64:4b:a9:d4:f8:e3:fe:a0:67:aa:b2:1b:d3:9d:5c:87:8b:cc: 98:68:f9:f5:8c:f6:85:15:8d:b1:5e:72:78:a7:82:84:db:9e: 45:71:e3:d4:0d:3d:5c:1a:8a:e6:58:fe:bd:50:e2:9d:76:6c: a4:c9:63:ce:b9:54:a5:a4:ba:f5:d4:6b:6e:86:4f:5a:97:53: f6:22:61:d0:21:7d:95:fd:69:82:6b:95:0e:d3:4b:9d:ef:2c: 60:23:cd:cd:6d:13:dc:ae:ac:dd:48:9d:a9:87:da:95:d2:a9: 29:16:cb:c6 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUPFnuEPV4PlPSb7AiYIJpOPzx8icwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY2NDI3ODY5RkNBRDE1RUNCRTRGMUM3N0EzRkIzQzY4 QkQxRjkxNzAeFw0yNTA3MjAxMTI4MDFaFw0yNjA3MTkxMTMzMDFaMDMxMTAvBgNV BAMTKEM1REMyRTFDODFGMjQ0RDk3NDI5OTBFRUM1QjE0MThBMTJERDRGNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd7Dzxs8xC+kDPuc0nV4w1d3yl hPxdnD21rTTNYqOYM8ktQVNDzqifWfqNCb1imf0Wd2s6VXduH+rFkvqNgL4+XdoL ZQlEm6sp/zogbKoT+T6vMhKrQzgh4H+gaVjTBvudE0VYOxQVfRHHDiYN66F42xMg Wqgkts71VdK5DPg4z4K8rD4CJ9O1puc07+zt7ySxyF+mzm219kiFpJE+ccPFzRA4 eM43LtOm3Bw+2AUPH0B3i/BTgNszfHrB6Ol+vJGXYlGwK99vsPyOy4xpXma9u54G IQCKF4uLV4WPl5UDFGVOspSDuDxP4oX85jTErY/M914xTqb+H7mVGlQJYWbtAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUxdwuHIHyRNl0KZDuxbFBihLdT1owHwYDVR0j BBgwFoAUlmQnhp/K0V7L5PHHej+zxovR+RcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM3ZDI1MTItZTRiZi00MTFiLWIwMGEtZTc5ZTNhMzc4 YjQ2LzEvOTY2NDI3ODY5RkNBRDE1RUNCRTRGMUM3N0EzRkIzQzY4QkQxRjkxNy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvOTY2NDI3ODY5RkNBRDE1RUNCRTRGMUM3N0EzRkIzQzY4QkQx RjkxNy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOWM3ZDI1MTIt ZTRiZi00MTFiLWIwMGEtZTc5ZTNhMzc4YjQ2LzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTM4MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzMzNDMxMzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqC04HCoAwDQYJKoZIhvcNAQELBQADggEBAGeMVE4lYjn+nEMJiLpf bGKZkVeHvzP7VOOFSSQch5KCAeDOiVsOUOElWce8PWi1O9cnAWloK5EQdQrSwEgX 5bewQgEG5e9d/uA9O0TUYBzsqArPc+ZNA6jhBNSmYwykBGYlB0PmDssBlx3auF3J rovzGiozmSV5nkIami1/JBnS4C5SLdBlaEzQ4GrucwgPRGRLqdT44/6gZ6qyG9Od XIeLzJho+fWM9oUVjbFecningoTbnkVx49QNPVwaiuZY/r1Q4p12bKTJY865VKWk uvXUa26GT1qXU/YiYdAhfZX9aYJrlQ7TS53vLGAjzc1tE9yurN1InamH2pXSqSkW y8Y= -----END CERTIFICATE-----Generated at Mon Jul 21 21:39:34 2025 by rpki-client