$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa File: 326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa (raw, json) Hash identifier: ikPIiFRhFNPp4wzJn8w9YCg2eDdJG03INaF7Jeb4D9A= Subject key identifier: 3D:59:F0:F9:8D:ED:5E:84:D3:84:A6:85:A9:37:3A:F6:D2:EE:86:D5 Certificate issuer: /CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Certificate serial: 5AF05C4145CADEB0B3B5AD2D0DC593E99A7544A4 Authority key identifier: B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa Signing time: Thu 03 Jul 2025 23:35:26 +0000 ROA not before: Thu 03 Jul 2025 23:30:26 +0000 ROA not after: Thu 02 Jul 2026 23:35:26 +0000 asID: 203069 IP address blocks: 2a05:dfc5:2f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 19:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f0:5c:41:45:ca:de:b0:b3:b5:ad:2d:0d:c5:93:e9:9a:75:44:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Validity Not Before: Jul 3 23:30:26 2025 GMT Not After : Jul 2 23:35:26 2026 GMT Subject: CN=3D59F0F98DED5E84D384A685A9373AF6D2EE86D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d8:8f:2b:e1:61:c7:3e:bb:a8:0a:b6:12:9f: 57:64:53:af:59:de:4a:de:11:0f:d3:cf:f2:23:7e: 84:73:bf:be:2f:2d:90:ae:12:3e:99:4c:67:3d:0e: 94:02:b6:aa:6c:e2:d8:89:fb:a7:92:a7:82:a9:b5: 33:cc:bc:3c:d4:76:63:01:df:32:92:1d:fe:e4:50: 72:92:47:27:eb:f9:f6:b5:e2:be:35:5c:c2:e7:71: 3f:df:55:d9:2f:5b:9b:7f:cf:19:b5:1c:fc:51:a0: 4c:90:3f:90:95:95:ba:f4:59:83:8c:89:fe:23:3b: dd:8d:35:93:ab:9b:3d:da:91:06:cd:1a:b4:53:48: 45:b8:25:52:fc:56:c0:fd:31:6b:e3:dc:7f:b9:ce: 4a:c4:f4:be:96:47:ae:d9:a2:61:ea:ec:ce:d8:96: 2f:f9:13:1d:f5:48:bf:69:cc:32:0d:22:ca:d0:51: 66:bf:a0:83:64:1b:89:30:55:b7:c0:95:47:9d:29: f8:55:5f:67:68:63:12:ba:20:2e:72:0a:7d:ed:6c: fd:36:0f:73:04:91:5d:65:16:b6:7e:ea:75:8f:1f: 58:8b:ad:4e:e1:90:c1:1d:c6:29:6b:a4:36:39:57: 1a:94:cd:41:1c:c4:e5:39:30:94:d0:7d:b4:2f:9c: 23:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:59:F0:F9:8D:ED:5E:84:D3:84:A6:85:A9:37:3A:F6:D2:EE:86:D5 X509v3 Authority Key Identifier: keyid:B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5:2f00::/40 Signature Algorithm: sha256WithRSAEncryption 82:2f:4e:26:9d:83:e7:5e:fd:50:1f:9e:a8:02:96:77:15:21: 1d:12:4a:0d:19:ef:fb:4a:c6:a4:db:68:e8:07:f6:40:5b:ec: eb:61:c1:d1:38:fb:05:d6:35:11:67:c7:f1:39:0e:8c:a1:a8: 0b:f5:15:34:e2:41:4c:8e:30:35:db:c7:f4:b7:3c:4b:62:3c: 02:17:4e:5f:c4:2d:24:c0:e0:1a:bb:d5:de:cc:73:6a:1a:ad: d4:d6:3d:68:2e:f0:19:7c:ea:7e:bc:0a:1b:45:0f:8c:6e:d7: 02:f1:0e:2a:b6:8e:df:50:28:30:91:c0:58:3e:b8:71:e4:d4: 48:59:89:53:9b:b4:30:c4:ff:59:d1:56:d6:99:ef:4b:ab:9d: d3:a3:8c:95:ff:ed:2c:71:06:7f:3f:ae:48:32:ba:27:0b:4e: 55:23:7c:0b:db:4d:9b:d2:14:01:44:fc:a1:fb:19:55:df:5d: 68:69:a9:52:84:ec:8a:0b:e0:cc:8f:09:ba:f4:b7:2f:fc:7b: b9:37:62:82:63:be:22:40:70:9e:22:a7:77:4a:2d:c3:b4:a1: 82:20:e5:31:c7:87:7f:52:74:4b:ab:94:89:6f:b5:26:4b:a1: 1a:50:b9:56:f1:0e:0f:bd:f3:f6:9a:fb:13:79:86:54:7a:30: 10:74:ff:e4 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUWvBcQUXK3rCzta0tDcWT6Zp1RKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERC RkQ2OEQ2NTAeFw0yNTA3MDMyMzMwMjZaFw0yNjA3MDIyMzM1MjZaMDMxMTAvBgNV BAMTKDNENTlGMEY5OERFRDVFODREMzg0QTY4NUE5MzczQUY2RDJFRTg2RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl2I8r4WHHPruoCrYSn1dkU69Z 3kreEQ/Tz/IjfoRzv74vLZCuEj6ZTGc9DpQCtqps4tiJ+6eSp4KptTPMvDzUdmMB 3zKSHf7kUHKSRyfr+fa14r41XMLncT/fVdkvW5t/zxm1HPxRoEyQP5CVlbr0WYOM if4jO92NNZOrmz3akQbNGrRTSEW4JVL8VsD9MWvj3H+5zkrE9L6WR67ZomHq7M7Y li/5Ex31SL9pzDINIsrQUWa/oINkG4kwVbfAlUedKfhVX2doYxK6IC5yCn3tbP02 D3MEkV1lFrZ+6nWPH1iLrU7hkMEdxilrpDY5VxqUzUEcxOU5MJTQfbQvnCOZAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUPVnw+Y3tXoTThKaFqTc69tLuhtUwHwYDVR0j BBgwFoAUtkeeCQSzAZdbGdK/9Cvgjb/WjWUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzkvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2OEQ2NS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2 OEQ2NS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzkvMzI2MTMwMzUzYTY0NjY2MzM1 M2EzMjY2MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzAzMzMwMzYzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoF38UvMA0GCSqGSIb3DQEBCwUAA4IBAQCCL04mnYPnXv1QH56o ApZ3FSEdEkoNGe/7Ssak22joB/ZAW+zrYcHROPsF1jURZ8fxOQ6MoagL9RU04kFM jjA128f0tzxLYjwCF05fxC0kwOAau9XezHNqGq3U1j1oLvAZfOp+vAobRQ+MbtcC 8Q4qto7fUCgwkcBYPrhx5NRIWYlTm7QwxP9Z0VbWme9Lq53To4yV/+0scQZ/P65I MronC05VI3wL202b0hQBRPyh+xlV311oaalShOyKC+DMjwm69Lcv/Hu5N2KCY74i QHCeIqd3Si3DtKGCIOUxx4d/UnRLq5SJb7UmS6EaULlW8Q4PvfP2mvsTeYZUejAQ dP/k -----END CERTIFICATE-----Generated at Sat Jul 5 09:04:08 2025 by rpki-client