$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa File: 326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa (raw, json) Hash identifier: pe/tp2bLBPulUkbhZe9b5ATBM6Rh5HMZWo4IJTXGPDU= Subject key identifier: 81:FD:96:81:67:90:7D:AF:00:7C:77:52:A7:8D:23:2B:E7:A5:82:72 Certificate issuer: /CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Certificate serial: 56FDC32B6960E1E0E075B409827437AC700E5EA6 Authority key identifier: B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa Signing time: Thu 03 Jul 2025 23:35:34 +0000 ROA not before: Thu 03 Jul 2025 23:30:34 +0000 ROA not after: Thu 02 Jul 2026 23:35:34 +0000 asID: 203069 IP address blocks: 2a05:dfc5:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 19:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:fd:c3:2b:69:60:e1:e0:e0:75:b4:09:82:74:37:ac:70:0e:5e:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65 Validity Not Before: Jul 3 23:30:34 2025 GMT Not After : Jul 2 23:35:34 2026 GMT Subject: CN=81FD968167907DAF007C7752A78D232BE7A58272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:60:c5:5b:90:98:97:0e:73:4a:b0:fb:b4:34: da:b4:44:3f:88:3c:27:89:7d:ba:bd:f7:a4:7c:ac: 45:87:0b:42:d1:df:4c:1d:59:0a:e6:3d:c5:e7:d5: da:06:76:ba:8b:fe:06:55:01:8d:aa:58:0c:83:b9: 5e:0a:ec:71:3e:35:8d:2b:12:41:b3:6e:e5:b0:9d: 19:6c:47:6b:d9:1a:5e:b1:ca:fd:c5:45:40:50:78: 89:85:9b:73:28:af:56:e8:8d:dc:8d:8b:5a:f9:39: 24:6f:c1:c5:df:0d:57:7c:9f:70:81:82:c6:92:a9: 15:af:4a:f0:37:b4:77:e4:27:7d:4e:6f:76:5c:b9: aa:11:53:07:52:56:00:96:98:b8:2c:22:c5:bf:14: d0:49:b9:25:77:b5:d6:de:d7:d7:63:a8:6a:cb:e8: 35:ea:b0:db:af:7d:99:9a:41:38:3a:33:dd:2f:38: 21:b5:49:57:4e:d9:5a:25:cc:fb:92:ff:dc:11:bf: 7c:67:d4:ad:c3:3a:b7:65:53:80:55:bd:e9:c0:be: 9c:b2:56:59:29:0c:73:d1:57:5b:5f:90:9d:84:5b: 95:ab:8e:b4:da:26:4c:84:e1:3d:da:fc:34:ff:d0: 6f:10:79:d0:6f:9d:34:49:9f:e2:37:9d:7b:9d:d4: bc:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FD:96:81:67:90:7D:AF:00:7C:77:52:A7:8D:23:2B:E7:A5:82:72 X509v3 Authority Key Identifier: keyid:B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 33:8f:73:c8:82:aa:39:99:7b:df:fe:7a:3d:5e:c9:fb:44:a6: 09:0e:2d:2d:c8:a2:4f:62:83:6d:cd:af:21:f0:89:29:a0:25: 2c:1a:8a:3c:7f:e8:e0:7b:09:89:dc:4f:77:d8:27:60:54:e3: c6:1d:ec:e1:ee:62:a5:26:a9:e0:ae:40:6d:73:5d:4e:37:e6: aa:ed:c5:1e:43:96:1e:48:62:7b:b8:ef:4c:e0:5b:83:65:cc: 82:03:1d:62:2c:f1:a6:ce:26:6e:9e:b0:9d:33:b7:12:f4:39: b7:ee:62:5c:1b:e1:9c:06:13:bd:45:be:af:61:dd:85:ae:0e: 8c:86:50:36:a6:a4:33:64:ce:57:ee:93:99:25:47:31:65:54: f6:ee:5e:aa:f2:ba:61:be:55:72:8a:2a:84:e5:80:10:2b:e3: 79:fb:9d:94:e5:f3:4d:77:de:59:0b:65:19:0e:cf:ce:5c:70: 17:33:22:b5:52:a4:e6:7a:07:7e:79:80:d3:33:01:70:bd:92: 68:21:5f:2a:fd:d1:95:6b:62:1e:2e:f6:1a:6a:ab:16:67:27: 9a:6d:24:ae:55:bd:9f:71:ef:22:a7:4a:53:cb:62:c0:09:47: d5:f8:f0:5c:b8:60:58:4d:84:8e:8c:74:b5:74:c5:94:8e:70: bd:0c:4e:99 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUVv3DK2lg4eDgdbQJgnQ3rHAOXqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERC RkQ2OEQ2NTAeFw0yNTA3MDMyMzMwMzRaFw0yNjA3MDIyMzM1MzRaMDMxMTAvBgNV BAMTKDgxRkQ5NjgxNjc5MDdEQUYwMDdDNzc1MkE3OEQyMzJCRTdBNTgyNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnYMVbkJiXDnNKsPu0NNq0RD+I PCeJfbq996R8rEWHC0LR30wdWQrmPcXn1doGdrqL/gZVAY2qWAyDuV4K7HE+NY0r EkGzbuWwnRlsR2vZGl6xyv3FRUBQeImFm3Mor1bojdyNi1r5OSRvwcXfDVd8n3CB gsaSqRWvSvA3tHfkJ31Ob3ZcuaoRUwdSVgCWmLgsIsW/FNBJuSV3tdbe19djqGrL 6DXqsNuvfZmaQTg6M90vOCG1SVdO2VolzPuS/9wRv3xn1K3DOrdlU4BVvenAvpyy VlkpDHPRV1tfkJ2EW5WrjrTaJkyE4T3a/DT/0G8QedBvnTRJn+I3nXud1Lx7AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUgf2WgWeQfa8AfHdSp40jK+elgnIwHwYDVR0j BBgwFoAUtkeeCQSzAZdbGdK/9Cvgjb/WjWUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzkvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2OEQ2NS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2 OEQ2NS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzkvMzI2MTMwMzUzYTY0NjY2MzM1 M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMzMwMzYzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoF38WwCzANBgkqhkiG9w0BAQsFAAOCAQEAM49zyIKqOZl73/56 PV7J+0SmCQ4tLciiT2KDbc2vIfCJKaAlLBqKPH/o4HsJidxPd9gnYFTjxh3s4e5i pSap4K5AbXNdTjfmqu3FHkOWHkhie7jvTOBbg2XMggMdYizxps4mbp6wnTO3EvQ5 t+5iXBvhnAYTvUW+r2Hdha4OjIZQNqakM2TOV+6TmSVHMWVU9u5eqvK6Yb5Vcooq hOWAECvjefudlOXzTXfeWQtlGQ7PzlxwFzMitVKk5noHfnmA0zMBcL2SaCFfKv3R lWtiHi72GmqrFmcnmm0krlW9n3HvIqdKU8tiwAlH1fjwXLhgWE2Ejox0tXTFlI5w vQxOmQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:57:54 2025 by rpki-client