$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a3a2f34372d3437203d3e20323033303639.roa File: 326130353a646663353a3a2f34372d3437203d3e20323033303639.roa (raw, json) Hash identifier: tIjYpQd9GyWainiE9GzQFbd7ZqDFGn1arDb1AExxerU= Subject key identifier: DC:99:62:EC:C9:B5:A7:F1:37:FC:7D:D8:14:A9:B9:41:E7:16:98:60 Certificate issuer: /CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Certificate serial: 7C44D4B66BC56A8A2F9595E6671A37E4E649B2AF Authority key identifier: B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a3a2f34372d3437203d3e20323033303639.roa Signing time: Thu 03 Jul 2025 23:35:31 +0000 ROA not before: Thu 03 Jul 2025 23:30:31 +0000 ROA not after: Thu 02 Jul 2026 23:35:31 +0000 asID: 203069 IP address blocks: 2a05:dfc5::/47 maxlen: 47 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 19:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:44:d4:b6:6b:c5:6a:8a:2f:95:95:e6:67:1a:37:e4:e6:49:b2:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Validity Not Before: Jul 3 23:30:31 2025 GMT Not After : Jul 2 23:35:31 2026 GMT Subject: CN=DC9962ECC9B5A7F137FC7DD814A9B941E7169860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:9c:41:d3:29:89:34:30:85:f6:b1:04:e6:d0: 5b:9f:d7:97:c5:85:28:0d:63:a9:76:42:74:65:df: db:65:49:71:06:a4:32:7a:0b:b7:a1:13:8e:bf:8b: 10:f1:51:b3:dd:84:a4:df:a5:dd:7a:70:d1:e7:f4: cf:42:11:80:b7:68:f1:c7:c7:45:3b:9d:ba:d4:f2: bc:4e:0b:af:c4:5f:e1:5f:06:d4:c3:c6:06:37:ee: ba:38:03:48:dc:f9:3f:8b:d4:97:41:05:c0:57:47: 44:a4:f1:20:da:d8:38:21:a0:6b:e0:7c:5f:20:58: 49:1c:8e:5a:09:34:67:d9:9c:a7:50:c2:6d:cf:04: d8:49:76:17:85:47:60:74:ad:b0:91:3b:03:dc:28: 77:62:eb:a4:86:c8:e9:d7:26:50:1b:75:3c:1b:03: c3:d4:71:6b:38:66:0b:6b:48:2e:f7:a8:74:09:f4: b5:45:49:43:45:70:34:c5:f7:f2:7e:62:ba:24:0e: 75:4b:7b:ea:e8:45:b2:a0:fe:11:db:04:97:b0:30: 9b:65:5f:d8:08:3e:a4:a0:c7:85:85:ac:40:34:d8: 05:b4:2e:97:71:de:93:13:88:2c:c3:c9:de:34:9c: 06:64:f1:25:9a:6f:7e:44:48:05:4b:46:90:56:ba: 10:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:99:62:EC:C9:B5:A7:F1:37:FC:7D:D8:14:A9:B9:41:E7:16:98:60 X509v3 Authority Key Identifier: keyid:B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a3a2f34372d3437203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5::/47 Signature Algorithm: sha256WithRSAEncryption 23:cf:64:61:73:b9:98:6e:76:50:0d:47:ac:0a:04:df:b6:1e: 19:27:f9:a7:02:69:fd:51:29:3b:1f:a0:35:83:8e:7a:52:18: 5c:a4:83:53:ae:80:b9:a3:c5:34:fd:71:0f:a9:e5:a5:16:67: 49:2c:42:b1:3d:74:71:1c:9f:77:9d:d1:32:31:32:54:70:6d: 41:93:0d:dd:4b:66:de:29:10:77:5f:67:f2:84:2d:74:ad:21: 67:cb:bf:17:b5:ef:db:08:cd:b2:bd:71:d5:34:b6:f4:72:8b: 29:a1:de:a8:7d:7e:57:85:19:30:23:bd:a1:b5:d4:9b:de:88: 6b:cd:92:58:5c:aa:be:11:15:d2:2f:8c:66:28:2d:46:59:64: 9b:b7:95:bb:45:e9:68:13:ca:af:73:65:69:83:5c:e3:33:db: 6e:44:24:7e:7b:58:72:86:cc:ae:f6:a4:cd:58:62:b7:4e:cf: fd:70:9c:b9:49:ac:a3:fd:3f:b8:b5:8a:05:f0:a7:6c:6e:a0: 50:f2:c9:b5:72:38:a9:c6:f0:07:c9:41:47:83:88:c9:c9:ac: 2c:31:80:a9:26:d9:97:24:8e:03:7b:05:af:2e:ad:d0:e2:e5: b7:0c:97:d9:5a:0f:78:72:3f:39:c2:11:5d:f1:7e:49:06:8c: 4e:12:94:46 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUfETUtmvFaoovlZXmZxo35OZJsq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERC RkQ2OEQ2NTAeFw0yNTA3MDMyMzMwMzFaFw0yNjA3MDIyMzM1MzFaMDMxMTAvBgNV BAMTKERDOTk2MkVDQzlCNUE3RjEzN0ZDN0REODE0QTlCOTQxRTcxNjk4NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrnEHTKYk0MIX2sQTm0Fuf15fF hSgNY6l2QnRl39tlSXEGpDJ6C7ehE46/ixDxUbPdhKTfpd16cNHn9M9CEYC3aPHH x0U7nbrU8rxOC6/EX+FfBtTDxgY37ro4A0jc+T+L1JdBBcBXR0Sk8SDa2DghoGvg fF8gWEkcjloJNGfZnKdQwm3PBNhJdheFR2B0rbCROwPcKHdi66SGyOnXJlAbdTwb A8PUcWs4ZgtrSC73qHQJ9LVFSUNFcDTF9/J+YrokDnVLe+roRbKg/hHbBJewMJtl X9gIPqSgx4WFrEA02AW0Lpdx3pMTiCzDyd40nAZk8SWab35ESAVLRpBWuhCJAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQU3Jli7Mm1p/E3/H3YFKm5QecWmGAwHwYDVR0j BBgwFoAUtkeeCQSzAZdbGdK/9Cvgjb/WjWUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzkvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2OEQ2NS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2 OEQ2NS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzkvMzI2MTMwMzUzYTY0NjY2MzM1 M2EzYTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIzMDMzMzAzNjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcB KgXfxQAAMA0GCSqGSIb3DQEBCwUAA4IBAQAjz2Rhc7mYbnZQDUesCgTfth4ZJ/mn Amn9USk7H6A1g456UhhcpINTroC5o8U0/XEPqeWlFmdJLEKxPXRxHJ93ndEyMTJU cG1Bkw3dS2beKRB3X2fyhC10rSFny78Xte/bCM2yvXHVNLb0cospod6ofX5XhRkw I72htdSb3ohrzZJYXKq+ERXSL4xmKC1GWWSbt5W7ReloE8qvc2Vpg1zjM9tuRCR+ e1hyhsyu9qTNWGK3Ts/9cJy5Sayj/T+4tYoF8KdsbqBQ8sm1cjipxvAHyUFHg4jJ yawsMYCpJtmXJI4DewWvLq3Q4uW3DJfZWg94cj85whFd8X5JBoxOEpRG -----END CERTIFICATE-----Generated at Sat Jul 5 08:55:06 2025 by rpki-client