$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa File: 326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa (raw, json) Hash identifier: t/2Kihb52wxLH3GVF+LrphldGHxVkV2gtesMFke+X4A= Subject key identifier: 7A:93:44:ED:5B:D3:0D:4B:86:F7:DB:48:0F:F7:2E:49:C9:00:68:02 Certificate issuer: /CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Certificate serial: 59C6E250EB921668DA0695E32736724DA19D8E54 Authority key identifier: B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa Signing time: Thu 03 Jul 2025 23:35:29 +0000 ROA not before: Thu 03 Jul 2025 23:30:29 +0000 ROA not after: Thu 02 Jul 2026 23:35:29 +0000 asID: 203069 IP address blocks: 2a05:dfc5:10::/47 maxlen: 47 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 19:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c6:e2:50:eb:92:16:68:da:06:95:e3:27:36:72:4d:a1:9d:8e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Validity Not Before: Jul 3 23:30:29 2025 GMT Not After : Jul 2 23:35:29 2026 GMT Subject: CN=7A9344ED5BD30D4B86F7DB480FF72E49C9006802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:84:e1:68:6c:5a:cf:c5:ec:55:dd:5e:0c:78: 94:89:a2:35:76:94:86:97:a2:2c:76:ed:b3:cf:e9: 2c:72:25:ed:af:93:ce:0d:27:36:f1:95:74:4c:f6: af:68:c3:98:65:6f:f3:28:93:8f:e2:c1:50:2b:04: dd:e3:50:e7:d9:b7:9d:bc:d9:46:79:9e:be:48:6c: 39:3f:1a:18:d1:69:73:57:1b:61:35:54:a8:ca:2c: 01:6f:d9:dc:68:8d:26:ee:fb:a1:2d:55:26:c6:2f: b1:bc:cd:20:06:df:9a:c2:3f:1a:46:80:5c:e6:bc: 64:e3:5f:d9:19:d3:00:9d:80:09:83:38:c4:a2:ed: 47:b1:eb:21:0d:e1:0a:28:c2:19:40:8d:ea:ce:7b: 8e:d3:52:32:9d:d6:ac:ed:9a:c6:2f:95:fb:4b:90: 96:0e:58:76:2d:5c:ab:e7:46:1f:02:37:ee:d6:7d: 66:48:07:98:12:84:f5:32:18:70:3b:10:d7:14:55: 2f:fa:82:c5:23:0d:c8:87:50:f3:e6:c9:20:36:b8: 5a:67:13:bc:4b:8e:92:10:7a:73:4d:63:46:5a:16: f4:b0:63:59:10:e9:60:fd:cb:2d:d7:1b:ca:cb:91: dd:21:bb:d5:74:fe:44:cd:56:13:6d:5d:93:cb:54: 67:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:93:44:ED:5B:D3:0D:4B:86:F7:DB:48:0F:F7:2E:49:C9:00:68:02 X509v3 Authority Key Identifier: keyid:B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5:10::/47 Signature Algorithm: sha256WithRSAEncryption 26:f8:f1:38:f9:6e:49:4a:db:23:78:9b:0f:34:4b:7f:78:04: 78:b0:f4:b1:f4:38:1a:4d:61:dd:31:8f:a5:96:87:b1:07:b6: fc:ab:c9:2a:a1:2e:84:cb:11:af:a0:e6:4a:e6:56:3d:b2:64: 46:13:b3:b7:21:ff:f4:05:f5:2d:2a:90:4b:5a:54:6e:3d:6e: d2:bb:24:3f:d1:da:7d:02:20:bb:6c:ff:7a:9b:95:5e:2f:c2: 16:66:70:6f:5d:96:f8:ae:46:0b:ad:f8:6c:cd:cc:db:89:4f: e9:f9:9b:1a:7f:fa:02:9a:bd:8b:59:79:e6:62:25:40:98:b1: f1:f3:6e:10:7d:bf:7c:91:ea:dd:6d:43:60:6c:8e:de:5c:ce: 2d:a0:1a:bb:5d:55:c7:44:86:9d:f5:8f:c5:4c:08:7f:b2:5f: e2:7b:1c:54:14:2c:ac:df:e3:b9:ee:8a:60:5d:a2:cd:2c:71: 14:13:2c:1d:ab:fd:a6:d1:35:fe:2f:58:ff:9c:46:28:39:44: 3c:46:64:d4:42:ca:d5:14:17:fd:b5:db:85:8d:fc:c0:36:67: ad:aa:e1:d8:00:7a:f4:5b:ed:27:e0:85:b4:f5:c5:7e:d3:b5: 32:3c:8c:3a:71:ea:31:89:38:f1:e6:42:1b:dd:86:01:7e:42: 9b:5c:12:80 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUWcbiUOuSFmjaBpXjJzZyTaGdjlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERC RkQ2OEQ2NTAeFw0yNTA3MDMyMzMwMjlaFw0yNjA3MDIyMzM1MjlaMDMxMTAvBgNV BAMTKDdBOTM0NEVENUJEMzBENEI4NkY3REI0ODBGRjcyRTQ5QzkwMDY4MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDehOFobFrPxexV3V4MeJSJojV2 lIaXoix27bPP6SxyJe2vk84NJzbxlXRM9q9ow5hlb/Mok4/iwVArBN3jUOfZt528 2UZ5nr5IbDk/GhjRaXNXG2E1VKjKLAFv2dxojSbu+6EtVSbGL7G8zSAG35rCPxpG gFzmvGTjX9kZ0wCdgAmDOMSi7Uex6yEN4QoowhlAjerOe47TUjKd1qztmsYvlftL kJYOWHYtXKvnRh8CN+7WfWZIB5gShPUyGHA7ENcUVS/6gsUjDciHUPPmySA2uFpn E7xLjpIQenNNY0ZaFvSwY1kQ6WD9yy3XG8rLkd0hu9V0/kTNVhNtXZPLVGdDAgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQUepNE7VvTDUuG99tID/cuSckAaAIwHwYDVR0j BBgwFoAUtkeeCQSzAZdbGdK/9Cvgjb/WjWUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzkvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2OEQ2NS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2 OEQ2NS5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzkvMzI2MTMwMzUzYTY0NjY2MzM1 M2EzMTMwM2EzYTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIzMDMzMzAzNjM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcBKgXfxQAQMA0GCSqGSIb3DQEBCwUAA4IBAQAm+PE4+W5JStsjeJsPNEt/ eAR4sPSx9DgaTWHdMY+lloexB7b8q8kqoS6EyxGvoOZK5lY9smRGE7O3If/0BfUt KpBLWlRuPW7SuyQ/0dp9AiC7bP96m5VeL8IWZnBvXZb4rkYLrfhszczbiU/p+Zsa f/oCmr2LWXnmYiVAmLHx824Qfb98kerdbUNgbI7eXM4toBq7XVXHRIad9Y/FTAh/ sl/iexxUFCys3+O57opgXaLNLHEUEywdq/2m0TX+L1j/nEYoOUQ8RmTUQsrVFBf9 tduFjfzANmetquHYAHr0W+0n4IW09cV+07UyPIw6ceoxiTjx5kIb3YYBfkKbXBKA -----END CERTIFICATE-----Generated at Sat Jul 5 08:56:58 2025 by rpki-client