$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/10/326130373a353463313a343234323a3a2f34382d3438203d3e20313939353138.roa File: 326130373a353463313a343234323a3a2f34382d3438203d3e20313939353138.roa (raw, json) Hash identifier: BOG3fQtugkiXpKS/p2fTg16ei6qBO6dg8xuWYfodSgU= Subject key identifier: C9:E1:FF:37:29:95:7A:44:3C:D5:2A:10:54:BE:F8:B1:8F:43:6D:7E Certificate issuer: /CN=E19302BE91C9D4211CDF4AFF091055A173B3593B Certificate serial: 7676251C6B01690F29B9C7DCE7D96E0433D5B521 Authority key identifier: E1:93:02:BE:91:C9:D4:21:1C:DF:4A:FF:09:10:55:A1:73:B3:59:3B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/E19302BE91C9D4211CDF4AFF091055A173B3593B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/10/326130373a353463313a343234323a3a2f34382d3438203d3e20313939353138.roa Signing time: Sat 05 Jul 2025 07:50:17 +0000 ROA not before: Sat 05 Jul 2025 07:45:17 +0000 ROA not after: Sat 04 Jul 2026 07:50:17 +0000 asID: 199518 IP address blocks: 2a07:54c1:4242::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/10/E19302BE91C9D4211CDF4AFF091055A173B3593B.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/10/E19302BE91C9D4211CDF4AFF091055A173B3593B.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/E19302BE91C9D4211CDF4AFF091055A173B3593B.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 11:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:76:25:1c:6b:01:69:0f:29:b9:c7:dc:e7:d9:6e:04:33:d5:b5:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E19302BE91C9D4211CDF4AFF091055A173B3593B Validity Not Before: Jul 5 07:45:17 2025 GMT Not After : Jul 4 07:50:17 2026 GMT Subject: CN=C9E1FF3729957A443CD52A1054BEF8B18F436D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:97:2d:4d:cd:31:fd:78:7a:ae:1b:b5:56:6e: 8c:38:8f:82:70:12:8f:ab:2d:00:cd:2d:c3:25:3f: 50:38:61:cf:6d:dd:89:27:b3:fc:1e:bb:e5:d3:4f: 90:5a:91:78:1f:d2:d9:0c:46:3b:ae:b9:93:27:3e: 79:b2:84:92:56:c9:cf:48:05:5a:bc:c8:3e:d3:85: 6f:02:91:34:21:78:b6:e7:e9:82:fa:29:f1:fe:fa: 4d:e3:78:0a:e4:38:b3:0c:81:61:a2:e6:1d:47:20: 96:58:c6:47:2f:38:e0:d5:80:59:52:c4:a2:71:ba: 13:f3:cc:a5:3d:74:39:d0:85:bf:1e:92:dc:a6:d2: c5:a9:ec:1d:0f:1e:97:82:fe:09:74:b4:9b:32:ab: 05:8e:7b:65:3a:36:64:e6:46:1d:88:bb:47:3d:96: 75:b2:8f:e3:c6:1c:0d:f2:78:3e:80:87:ff:90:54: 25:fc:8e:d8:da:2f:ce:5d:44:24:b8:0a:fc:2f:97: 99:31:ea:5a:5d:e2:d1:73:b6:2f:11:2e:1a:ca:6e: 62:6f:42:25:95:2c:07:e1:5a:b1:5a:4c:59:71:16: 12:22:db:97:09:a9:f9:79:1b:c9:29:0c:57:58:00: 2b:75:b0:ad:be:8b:94:f2:5a:41:74:0b:9e:64:90: 4f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E1:FF:37:29:95:7A:44:3C:D5:2A:10:54:BE:F8:B1:8F:43:6D:7E X509v3 Authority Key Identifier: keyid:E1:93:02:BE:91:C9:D4:21:1C:DF:4A:FF:09:10:55:A1:73:B3:59:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/10/E19302BE91C9D4211CDF4AFF091055A173B3593B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/E19302BE91C9D4211CDF4AFF091055A173B3593B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/10/326130373a353463313a343234323a3a2f34382d3438203d3e20313939353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4242::/48 Signature Algorithm: sha256WithRSAEncryption 9b:1a:cd:b1:49:ce:f1:4d:fc:98:00:a0:df:97:47:8e:f4:d9: ce:97:ac:ea:ac:2f:e4:17:4e:b2:27:8c:5b:99:9f:97:b3:90: ed:7e:87:55:0d:5d:05:48:48:fd:36:82:a3:fb:82:19:26:df: b7:07:50:66:f7:27:30:3b:85:bd:71:ed:18:b2:e2:cd:84:77: ae:9d:09:36:4f:98:dc:a7:3e:ce:31:67:62:c1:c9:0f:b0:be: df:4a:fd:b2:da:ff:b6:7a:7f:50:f7:4e:b3:9a:a2:ff:0b:cd: c9:2e:9a:9f:bc:d7:a1:6f:1f:22:85:a8:09:49:62:aa:1b:35: be:c5:59:83:cd:33:5d:d9:1a:33:7f:17:10:61:e4:0f:be:6b: eb:78:bd:d3:7b:03:58:b1:7f:35:61:29:1b:57:31:8b:86:6c: fc:f5:33:dc:36:9d:29:14:3b:d3:f2:63:43:e1:33:57:6e:b4: 6b:c8:39:02:da:73:c1:f4:9d:03:55:3d:27:82:f9:cb:84:ef: c8:4a:3b:99:a3:ad:a0:0a:e7:ea:a8:92:55:d4:20:89:e8:f9: 6f:cc:a7:b0:10:8f:20:6c:b6:e0:ff:1b:96:dd:e4:cb:b5:36: f8:c3:f6:cb:34:78:25:40:71:05:86:73:9a:c6:c5:fd:87:d2: 10:71:01:6d -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUdnYlHGsBaQ8pucfc59luBDPVtSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTE5MzAyQkU5MUM5RDQyMTFDREY0QUZGMDkxMDU1QTE3 M0IzNTkzQjAeFw0yNTA3MDUwNzQ1MTdaFw0yNjA3MDQwNzUwMTdaMDMxMTAvBgNV BAMTKEM5RTFGRjM3Mjk5NTdBNDQzQ0Q1MkExMDU0QkVGOEIxOEY0MzZEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkly1NzTH9eHquG7VWbow4j4Jw Eo+rLQDNLcMlP1A4Yc9t3Ykns/weu+XTT5BakXgf0tkMRjuuuZMnPnmyhJJWyc9I BVq8yD7ThW8CkTQheLbn6YL6KfH++k3jeArkOLMMgWGi5h1HIJZYxkcvOODVgFlS xKJxuhPzzKU9dDnQhb8ektym0sWp7B0PHpeC/gl0tJsyqwWOe2U6NmTmRh2Iu0c9 lnWyj+PGHA3yeD6Ah/+QVCX8jtjaL85dRCS4Cvwvl5kx6lpd4tFzti8RLhrKbmJv QiWVLAfhWrFaTFlxFhIi25cJqfl5G8kpDFdYACt1sK2+i5TyWkF0C55kkE8LAgMB AAGjggKIMIIChDAdBgNVHQ4EFgQUyeH/NymVekQ81SoQVL74sY9DbX4wHwYDVR0j BBgwFoAU4ZMCvpHJ1CEc30r/CRBVoXOzWTswDgYDVR0PAQH/BAQDAgeAMIGXBgNV HR8EgY8wgYwwgYmggYaggYOGgYByc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNm NTBlOC8xMC9FMTkzMDJCRTkxQzlENDIxMUNERjRBRkYwOTEwNTVBMTczQjM1OTNC LmNybDCBngYIKwYBBQUHAQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0UxOTMwMkJFOTFDOUQ0MjExQ0RGNEFG RjA5MTA1NUExNzNCMzU5M0IuY2VyMIG4BggrBgEFBQcBCwSBqzCBqDCBpQYIKwYB BQUHMAuGgZhyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBlOC8xMC8zMjYx MzAzNzNhMzUzNDYzMzEzYTM0MzIzNDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIw MzEzOTM5MzUzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsG AQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwUJCMA0GCSqGSIb3DQEBCwUAA4IB AQCbGs2xSc7xTfyYAKDfl0eO9NnOl6zqrC/kF06yJ4xbmZ+Xs5DtfodVDV0FSEj9 NoKj+4IZJt+3B1Bm9ycwO4W9ce0YsuLNhHeunQk2T5jcpz7OMWdiwckPsL7fSv2y 2v+2en9Q906zmqL/C83JLpqfvNehbx8ihagJSWKqGzW+xVmDzTNd2RozfxcQYeQP vmvreL3TewNYsX81YSkbVzGLhmz89TPcNp0pFDvT8mND4TNXbrRryDkC2nPB9J0D VT0ngvnLhO/ISjuZo62gCufqqJJV1CCJ6PlvzKewEI8gbLbg/xuW3eTLtTb4w/bL NHglQHEFhnOaxsX9h9IQcQFt -----END CERTIFICATE-----Generated at Wed Jul 23 01:35:07 2025 by rpki-client