$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa File: 326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa (raw, json) Hash identifier: rvOnZK77CBYF4grHGBuz0EhJZokSzxuINy2qRMybAKE= Subject key identifier: B4:2F:9E:20:F7:B2:03:E7:97:A1:F6:EA:31:8C:94:70:F5:6F:13:B3 Certificate issuer: /CN=966427869FCAD15ECBE4F1C77A3FB3C68BD1F917 Certificate serial: 33DD75AEBD14A5533078B884756E4BC9208B0CFB Authority key identifier: 96:64:27:86:9F:CA:D1:5E:CB:E4:F1:C7:7A:3F:B3:C6:8B:D1:F9:17 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa Signing time: Sun 20 Jul 2025 11:33:25 +0000 ROA not before: Sun 20 Jul 2025 11:28:25 +0000 ROA not after: Sun 19 Jul 2026 11:33:25 +0000 asID: 213413 IP address blocks: 2a0b:4e07:a82::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.crl rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 06:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:dd:75:ae:bd:14:a5:53:30:78:b8:84:75:6e:4b:c9:20:8b:0c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=966427869FCAD15ECBE4F1C77A3FB3C68BD1F917 Validity Not Before: Jul 20 11:28:25 2025 GMT Not After : Jul 19 11:33:25 2026 GMT Subject: CN=B42F9E20F7B203E797A1F6EA318C9470F56F13B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:bc:74:ee:c1:fc:f7:56:01:77:24:97:20:6f: cf:cd:d6:51:da:5e:5e:56:5e:d2:77:91:50:ae:e1: e6:3d:19:1d:fb:cb:01:3a:97:2a:5e:7c:00:40:85: e3:46:04:67:9b:46:e2:b8:b9:c3:a4:21:ac:07:4b: e4:d9:b3:82:1c:fc:db:4d:53:36:a2:44:a5:71:ed: 0d:92:95:41:71:90:6b:9e:d3:49:aa:b0:4c:39:1c: f1:14:b7:20:e9:6b:35:28:84:f3:ce:c7:da:1a:06: d8:df:7e:30:9b:ce:6e:a0:87:7e:c2:8a:5d:9a:ee: 0a:98:01:07:1b:3c:3b:55:90:c8:c0:05:c4:9d:ef: df:99:d8:b4:f7:2d:0e:ce:a8:44:1a:69:6d:92:07: 78:ab:c2:93:6e:ee:fa:2e:13:a4:c1:62:b6:52:43: 77:66:77:90:ce:00:0f:19:82:b4:d5:50:c0:0a:bd: e9:ec:ca:3c:b8:79:16:34:18:a9:16:ff:c1:6f:52: cf:15:49:ba:6d:53:e0:0a:d0:c8:1c:e7:b5:45:c2: 34:8d:82:a9:f1:8d:fd:a0:a3:c4:f9:10:4c:aa:2e: a0:11:29:a6:f8:8e:c4:e0:29:d2:a9:50:39:1f:00: e7:b6:c4:e7:94:cf:e2:b2:16:ba:51:5c:91:bd:36: d6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2F:9E:20:F7:B2:03:E7:97:A1:F6:EA:31:8C:94:70:F5:6F:13:B3 X509v3 Authority Key Identifier: keyid:96:64:27:86:9F:CA:D1:5E:CB:E4:F1:C7:7A:3F:B3:C6:8B:D1:F9:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/966427869FCAD15ECBE4F1C77A3FB3C68BD1F917.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c7d2512-e4bf-411b-b00a-e79e3a378b46/1/326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a82::/48 Signature Algorithm: sha256WithRSAEncryption b1:9d:35:04:ab:d2:c9:0f:16:da:61:fe:60:79:63:83:57:58: 9b:b0:36:94:56:e9:12:81:cd:72:40:43:df:9c:60:56:7a:19: 5e:b2:4a:07:c3:a1:26:a0:86:df:d3:bc:04:c8:f2:dc:1c:62: ea:e8:8e:f9:6a:3e:68:99:a5:e0:d0:c4:13:15:68:03:97:53: 6c:2e:83:1d:e4:2a:93:fb:5a:ae:b2:db:07:10:fd:6e:ba:88: 5e:99:95:05:b3:19:1d:7f:de:fb:ec:10:84:24:ad:7f:70:2f: 17:37:11:11:f9:c3:d4:85:84:b6:5d:61:c0:c2:9a:18:9a:2e: 2c:3f:54:bb:0d:1e:d4:88:d0:19:9d:0e:9e:ba:48:d7:7d:43: 3a:ce:12:c2:cc:ce:41:5d:a3:84:25:a4:2d:68:c7:7b:d5:dc: 70:ea:74:5b:7f:4d:e8:fb:e9:a4:03:98:41:5c:fb:f4:73:31: 9c:34:aa:73:e9:f4:f6:b2:57:7f:e2:73:5c:6d:36:ad:ae:91: c6:f8:17:fe:cb:5a:4d:7f:2c:1c:7b:69:c3:56:73:47:26:b7: f1:ea:16:2e:24:63:4f:2a:01:b5:71:ba:64:f0:04:23:09:44: 7e:1b:4e:6e:68:30:30:4f:17:57:3b:f1:0f:61:09:a2:f5:fb: a0:bf:55:c9 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUM911rr0UpVMweLiEdW5LySCLDPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY2NDI3ODY5RkNBRDE1RUNCRTRGMUM3N0EzRkIzQzY4 QkQxRjkxNzAeFw0yNTA3MjAxMTI4MjVaFw0yNjA3MTkxMTMzMjVaMDMxMTAvBgNV BAMTKEI0MkY5RTIwRjdCMjAzRTc5N0ExRjZFQTMxOEM5NDcwRjU2RjEzQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3vHTuwfz3VgF3JJcgb8/N1lHa Xl5WXtJ3kVCu4eY9GR37ywE6lypefABAheNGBGebRuK4ucOkIawHS+TZs4Ic/NtN UzaiRKVx7Q2SlUFxkGue00mqsEw5HPEUtyDpazUohPPOx9oaBtjffjCbzm6gh37C il2a7gqYAQcbPDtVkMjABcSd79+Z2LT3LQ7OqEQaaW2SB3irwpNu7vouE6TBYrZS Q3dmd5DOAA8ZgrTVUMAKvensyjy4eRY0GKkW/8FvUs8VSbptU+AK0Mgc57VFwjSN gqnxjf2go8T5EEyqLqARKab4jsTgKdKpUDkfAOe2xOeUz+KyFrpRXJG9NtaRAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUtC+eIPeyA+eXofbqMYyUcPVvE7MwHwYDVR0j BBgwFoAUlmQnhp/K0V7L5PHHej+zxovR+RcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWM3ZDI1MTItZTRiZi00MTFiLWIwMGEtZTc5ZTNhMzc4 YjQ2LzEvOTY2NDI3ODY5RkNBRDE1RUNCRTRGMUM3N0EzRkIzQzY4QkQxRjkxNy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvOTY2NDI3ODY5RkNBRDE1RUNCRTRGMUM3N0EzRkIzQzY4QkQx RjkxNy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOWM3ZDI1MTIt ZTRiZi00MTFiLWIwMGEtZTc5ZTNhMzc4YjQ2LzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTM4MzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzMzNDMxMzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqC04HCoIwDQYJKoZIhvcNAQELBQADggEBALGdNQSr0skPFtph/mB5 Y4NXWJuwNpRW6RKBzXJAQ9+cYFZ6GV6ySgfDoSaght/TvATI8twcYurojvlqPmiZ peDQxBMVaAOXU2wugx3kKpP7Wq6y2wcQ/W66iF6ZlQWzGR1/3vvsEIQkrX9wLxc3 ERH5w9SFhLZdYcDCmhiaLiw/VLsNHtSI0BmdDp66SNd9QzrOEsLMzkFdo4QlpC1o x3vV3HDqdFt/Tej76aQDmEFc+/RzMZw0qnPp9PayV3/ic1xtNq2ukcb4F/7LWk1/ LBx7acNWc0cmt/HqFi4kY08qAbVxumTwBCMJRH4bTm5oMDBPF1c78Q9hCaL1+6C/ Vck= -----END CERTIFICATE-----Generated at Mon Jul 21 21:20:12 2025 by rpki-client