$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/326130363a613030353a6432643a3a2f34382d3438203d3e20313532333638.roa File: 326130363a613030353a6432643a3a2f34382d3438203d3e20313532333638.roa (raw, json) Hash identifier: 52mHsWa4VgNp8igpY75YRE/bqiZx2ZdwnVE8gr1/unY= Subject key identifier: 1A:71:98:3F:14:78:0F:14:19:DB:A8:61:42:22:EB:6D:FE:26:C9:32 Certificate issuer: /CN=6578E79662000496EB1540D8BD8FA65ED8D63A62 Certificate serial: 33EA036C3250C5449E85FCCA11E4FC2545F7429F Authority key identifier: 65:78:E7:96:62:00:04:96:EB:15:40:D8:BD:8F:A6:5E:D8:D6:3A:62 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/326130363a613030353a6432643a3a2f34382d3438203d3e20313532333638.roa Signing time: Thu 03 Jul 2025 23:54:20 +0000 ROA not before: Thu 03 Jul 2025 23:49:20 +0000 ROA not after: Thu 02 Jul 2026 23:54:20 +0000 asID: 152368 IP address blocks: 2a06:a005:d2d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.crl rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 22:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ea:03:6c:32:50:c5:44:9e:85:fc:ca:11:e4:fc:25:45:f7:42:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6578E79662000496EB1540D8BD8FA65ED8D63A62 Validity Not Before: Jul 3 23:49:20 2025 GMT Not After : Jul 2 23:54:20 2026 GMT Subject: CN=1A71983F14780F1419DBA8614222EB6DFE26C932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:67:2c:13:20:67:8b:02:1e:7d:85:44:88:7b: 8d:57:45:4e:bf:64:ca:8e:18:e2:15:34:94:7f:09: 2a:7d:57:6f:f1:cf:e3:0e:f2:f3:0c:23:bb:3e:3d: 1e:91:c6:d5:52:60:83:5d:02:e4:10:1a:67:61:b9: 05:14:1e:82:d7:38:ac:b5:34:2f:8b:52:a4:d1:e0: 31:d9:d1:e8:6b:2f:9f:90:69:1d:57:1c:e8:0a:c2: ec:da:bf:54:b1:19:ea:d7:82:d2:4f:8f:45:d9:01: b9:fb:70:ef:67:82:e2:85:44:07:fb:05:76:83:2e: 54:ea:e0:e7:3b:41:3e:d9:c0:59:3f:c3:0c:eb:ea: 26:40:45:b3:e7:1f:16:ac:f1:45:e1:66:27:10:7d: ff:95:4c:12:ca:60:3b:38:03:b1:85:25:9e:b1:69: 87:7f:73:24:f4:94:a1:f1:6b:79:ca:f6:aa:f2:f4: 22:2e:68:d2:45:22:d5:33:04:7b:e1:f5:b6:d0:c9: 9b:7c:b5:96:fb:f4:5c:c1:4b:ed:e6:e4:28:58:25: 1d:93:dd:13:d9:28:2a:bb:ce:20:d4:48:b2:90:1d: 6f:3f:a0:3c:39:90:3a:67:79:b0:6f:9e:45:b2:be: 89:23:b4:12:e8:fd:35:06:1b:fa:7f:40:66:0f:9d: aa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:71:98:3F:14:78:0F:14:19:DB:A8:61:42:22:EB:6D:FE:26:C9:32 X509v3 Authority Key Identifier: keyid:65:78:E7:96:62:00:04:96:EB:15:40:D8:BD:8F:A6:5E:D8:D6:3A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/326130363a613030353a6432643a3a2f34382d3438203d3e20313532333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a005:d2d::/48 Signature Algorithm: sha256WithRSAEncryption 6b:3d:92:99:a4:6c:8b:d8:51:2f:89:71:ce:b5:23:2f:64:c9: 40:1d:f6:39:1e:ff:3c:e2:17:e2:b3:3e:5d:27:9f:de:27:be: c1:28:fb:78:8f:bd:bb:75:08:a6:70:f1:af:a5:5c:aa:dd:af: 9a:b9:04:ac:8f:62:9e:71:ac:c7:c7:5c:3b:55:31:5f:79:60: ed:e2:2e:42:8b:82:eb:3c:ea:48:31:36:5f:42:16:13:53:7d: ef:21:ac:ce:f7:25:9f:62:52:55:8d:97:14:b8:11:09:b2:e3: 14:11:b6:15:9e:59:b0:b6:bb:f9:cc:85:48:8d:0b:0c:b7:73: 33:44:dc:b4:fc:1e:22:bd:70:6e:6b:08:a8:01:20:ff:e6:22: c0:7a:9b:af:41:10:8b:d0:eb:8e:fa:d6:f4:1f:03:5a:67:35: 2b:66:77:ff:57:36:7b:07:5e:4f:53:a1:b3:44:0c:6a:b3:58: a3:81:20:a1:7f:c6:17:f2:21:3d:21:a0:24:81:c9:41:2d:74: be:aa:16:12:7e:63:bb:4d:9c:b0:f9:ff:88:49:ae:6e:bf:e0: 16:99:d3:57:78:1b:08:97:63:54:94:b9:6c:d1:8c:55:82:d8: ed:11:72:e0:e2:84:42:92:d2:0c:6c:7f:46:c3:71:88:54:1c: fb:fe:cb:c6 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUM+oDbDJQxUSehfzKEeT8JUX3Qp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVE OEQ2M0E2MjAeFw0yNTA3MDMyMzQ5MjBaFw0yNjA3MDIyMzU0MjBaMDMxMTAvBgNV BAMTKDFBNzE5ODNGMTQ3ODBGMTQxOURCQTg2MTQyMjJFQjZERkUyNkM5MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiZywTIGeLAh59hUSIe41XRU6/ ZMqOGOIVNJR/CSp9V2/xz+MO8vMMI7s+PR6RxtVSYINdAuQQGmdhuQUUHoLXOKy1 NC+LUqTR4DHZ0ehrL5+QaR1XHOgKwuzav1SxGerXgtJPj0XZAbn7cO9nguKFRAf7 BXaDLlTq4Oc7QT7ZwFk/wwzr6iZARbPnHxas8UXhZicQff+VTBLKYDs4A7GFJZ6x aYd/cyT0lKHxa3nK9qry9CIuaNJFItUzBHvh9bbQyZt8tZb79FzBS+3m5ChYJR2T 3RPZKCq7ziDUSLKQHW8/oDw5kDpnebBvnkWyvokjtBLo/TUGG/p/QGYPnaqpAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUGnGYPxR4DxQZ26hhQiLrbf4myTIwHwYDVR0j BBgwFoAUZXjnlmIABJbrFUDYvY+mXtjWOmIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQtZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVk OGM0LzgvNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVEOEQ2M0E2Mi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVEOEQ2 M0E2Mi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQt ZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVkOGM0LzgvMzI2MTMwMzYzYTYxMzAzMDM1 M2E2NDMyNjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzIzMzM2Mzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqBqAFDS0wDQYJKoZIhvcNAQELBQADggEBAGs9kpmkbIvYUS+Jcc61 Iy9kyUAd9jke/zziF+KzPl0nn94nvsEo+3iPvbt1CKZw8a+lXKrdr5q5BKyPYp5x rMfHXDtVMV95YO3iLkKLgus86kgxNl9CFhNTfe8hrM73JZ9iUlWNlxS4EQmy4xQR thWeWbC2u/nMhUiNCwy3czNE3LT8HiK9cG5rCKgBIP/mIsB6m69BEIvQ64761vQf A1pnNStmd/9XNnsHXk9TobNEDGqzWKOBIKF/xhfyIT0hoCSByUEtdL6qFhJ+Y7tN nLD5/4hJrm6/4BaZ01d4GwiXY1SUuWzRjFWC2O0RcuDihEKS0gxsf0bDcYhUHPv+ y8Y= -----END CERTIFICATE-----Generated at Sat Jul 5 08:44:09 2025 by rpki-client