$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/4/326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa File: 326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa (raw, json) Hash identifier: BMQm/qBTXOX+KWZAB8Yko8pr4iwiYzYk6iEMUC1D/KU= Subject key identifier: 31:CC:8B:E5:54:B5:63:F4:16:A9:DA:09:85:80:31:9A:32:7B:34:21 Certificate issuer: /CN=432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5 Certificate serial: 4F7D5A006F1A417A6CEF553BD40748104859C773 Authority key identifier: 43:2E:ED:23:6E:0D:59:96:FA:1A:E9:B1:A7:A9:FE:C3:44:6B:A2:D5 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/4/326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa Signing time: Fri 04 Jul 2025 19:31:20 +0000 ROA not before: Fri 04 Jul 2025 19:26:20 +0000 ROA not after: Fri 03 Jul 2026 19:31:20 +0000 asID: 215956 IP address blocks: 2a0a:6044:bb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/4/432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/4/432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5.mft rsync://krill.47272.net/repo/HYEHOST/5/432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 14:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:7d:5a:00:6f:1a:41:7a:6c:ef:55:3b:d4:07:48:10:48:59:c7:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5 Validity Not Before: Jul 4 19:26:20 2025 GMT Not After : Jul 3 19:31:20 2026 GMT Subject: CN=31CC8BE554B563F416A9DA098580319A327B3421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5c:bf:79:20:bf:f1:bc:93:78:bb:20:04:b8: 7c:b4:7a:00:e7:34:67:e1:1e:cf:a7:c7:81:84:de: 84:fe:1d:1b:3c:8b:d6:dd:0b:8a:b2:63:92:ba:7d: df:de:73:13:8e:75:87:41:5b:f3:0a:91:7c:11:4c: 76:89:62:81:32:e2:b0:06:85:0d:94:05:97:a4:a7: 02:44:76:83:f3:09:21:36:5d:42:f8:de:6f:ba:5e: eb:f7:9e:df:21:da:a5:97:82:a9:74:06:61:c3:59: d0:40:79:2e:80:fa:42:3e:6c:93:b9:9c:85:45:56: 4f:78:1a:78:b3:d0:af:12:9b:8c:37:5a:05:f1:3d: f2:d8:a3:e7:30:3a:51:93:7e:0e:ae:c8:38:86:c6: aa:73:e7:0f:a5:7c:c8:40:4d:b1:62:ef:db:42:47: dc:ba:17:f1:cb:9c:7f:6c:77:55:6e:e0:63:4f:cf: 9c:38:0d:fa:29:f4:37:b6:ae:2f:b6:97:9e:9d:89: eb:14:8b:fd:3c:39:99:4f:6d:98:77:a3:74:d0:f5: 9e:56:d7:72:d0:ad:58:1f:2f:e4:ef:bc:0e:57:bc: f6:c4:bb:f9:2c:b8:c6:7f:b4:a6:74:eb:11:4d:5b: 04:87:9a:96:59:78:5c:7e:67:54:51:90:3c:2d:a2: b9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CC:8B:E5:54:B5:63:F4:16:A9:DA:09:85:80:31:9A:32:7B:34:21 X509v3 Authority Key Identifier: keyid:43:2E:ED:23:6E:0D:59:96:FA:1A:E9:B1:A7:A9:FE:C3:44:6B:A2:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/4/432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/432EED236E0D5996FA1AE9B1A7A9FEC3446BA2D5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/4/326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:bb00::/40 Signature Algorithm: sha256WithRSAEncryption 51:55:49:0c:76:bb:73:69:cf:72:a4:45:b5:56:e5:80:27:9a: 13:7a:57:45:90:ef:81:d7:35:7a:6b:cb:ac:f0:c5:b1:fe:fd: 1a:a5:25:29:cb:ff:a5:40:41:99:49:9a:0b:29:b4:a0:4a:29: 7c:36:f2:22:fb:b3:ad:3f:63:e8:09:bd:5d:67:f8:29:6e:e5: 8f:2e:44:69:ab:2a:42:8d:d4:ce:e8:b8:09:9d:67:9b:2b:5c: 0f:7d:8f:c8:1d:0e:3e:9c:28:46:80:b0:7b:1d:8f:14:41:d9: d8:27:f9:c7:f4:61:33:ea:e4:5b:37:24:15:d7:16:09:4f:a0: 02:57:e4:ce:08:08:15:78:d9:ed:b8:4f:9c:b8:81:b5:32:6d: 58:dc:76:10:87:0d:92:e5:6a:d9:33:4c:eb:2c:59:56:a8:92: c5:57:d2:d4:fd:54:24:ed:85:7c:2f:df:1f:06:20:1d:79:34: 6c:fa:7e:f0:e8:08:2c:87:04:5f:63:9d:59:fd:1c:20:81:1a: a3:a1:db:54:29:21:2f:b6:1b:45:7c:c1:2f:db:41:73:b7:31: 9a:45:0d:48:f8:6d:49:90:84:6f:11:70:e0:fd:35:a5:7e:eb: fe:9e:b7:f3:6a:ac:a3:4a:96:f8:b7:92:96:b9:d9:3b:46:8b: 51:7a:1f:55 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIUT31aAG8aQXps71U71AdIEEhZx3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyRUVEMjM2RTBENTk5NkZBMUFFOUIxQTdBOUZFQzM0 NDZCQTJENTAeFw0yNTA3MDQxOTI2MjBaFw0yNjA3MDMxOTMxMjBaMDMxMTAvBgNV BAMTKDMxQ0M4QkU1NTRCNTYzRjQxNkE5REEwOTg1ODAzMTlBMzI3QjM0MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFXL95IL/xvJN4uyAEuHy0egDn NGfhHs+nx4GE3oT+HRs8i9bdC4qyY5K6fd/ecxOOdYdBW/MKkXwRTHaJYoEy4rAG hQ2UBZekpwJEdoPzCSE2XUL43m+6Xuv3nt8h2qWXgql0BmHDWdBAeS6A+kI+bJO5 nIVFVk94Gniz0K8Sm4w3WgXxPfLYo+cwOlGTfg6uyDiGxqpz5w+lfMhATbFi79tC R9y6F/HLnH9sd1Vu4GNPz5w4Dfop9De2ri+2l56diesUi/08OZlPbZh3o3TQ9Z5W 13LQrVgfL+TvvA5XvPbEu/ksuMZ/tKZ06xFNWwSHmpZZeFx+Z1RRkDwtorn5AgMB AAGjggJUMIICUDAdBgNVHQ4EFgQUMcyL5VS1Y/QWqdoJhYAxmjJ7NCEwHwYDVR0j BBgwFoAUQy7tI24NWZb6Gumxp6n+w0RrotUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzQvNDMyRUVEMjM2RTBENTk5NkZBMUFFOUIxQTdBOUZFQzM0NDZCQTJENS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS80MzJFRUQyMzZFMEQ1OTk2RkExQUU5QjFB N0E5RkVDMzQ0NkJBMkQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjIzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgRLswDQYJKoZIhvcNAQELBQADggEBAFFV SQx2u3Npz3KkRbVW5YAnmhN6V0WQ74HXNXpry6zwxbH+/RqlJSnL/6VAQZlJmgsp tKBKKXw28iL7s60/Y+gJvV1n+Clu5Y8uRGmrKkKN1M7ouAmdZ5srXA99j8gdDj6c KEaAsHsdjxRB2dgn+cf0YTPq5Fs3JBXXFglPoAJX5M4ICBV42e24T5y4gbUybVjc dhCHDZLlatkzTOssWVaoksVX0tT9VCTthXwv3x8GIB15NGz6fvDoCCyHBF9jnVn9 HCCBGqOh21QpIS+2G0V8wS/bQXO3MZpFDUj4bUmQhG8RcOD9NaV+6/6et/NqrKNK lvi3kpa52TtGi1F6H1U= -----END CERTIFICATE-----Generated at Mon Jul 21 23:57:11 2025 by rpki-client