$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534303a3a2f33322d3332203d3e20323134343531.roa File: 326130623a396534303a3a2f33322d3332203d3e20323134343531.roa (raw, json) Hash identifier: GwXhJxTPfppTl2To2mF3GpvFgaV+3IGFSczXonJ1+q0= Subject key identifier: 5E:6A:88:1A:E9:BE:3E:9E:5C:AF:AE:43:2C:76:20:E1:1F:58:B6:FA Certificate issuer: /CN=B5F5EC5C567FD489BE73902862EBEE81CCDEE35C Certificate serial: 54F67E225D9A3FA48E7E770D86E4C32459F2ED0D Authority key identifier: B5:F5:EC:5C:56:7F:D4:89:BE:73:90:28:62:EB:EE:81:CC:DE:E3:5C Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534303a3a2f33322d3332203d3e20323134343531.roa Signing time: Fri 29 Aug 2025 06:21:22 +0000 ROA not before: Fri 29 Aug 2025 06:16:22 +0000 ROA not after: Fri 28 Aug 2026 06:21:22 +0000 asID: 214451 IP address blocks: 2a0b:9e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Sep 2025 07:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f6:7e:22:5d:9a:3f:a4:8e:7e:77:0d:86:e4:c3:24:59:f2:ed:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5F5EC5C567FD489BE73902862EBEE81CCDEE35C Validity Not Before: Aug 29 06:16:22 2025 GMT Not After : Aug 28 06:21:22 2026 GMT Subject: CN=5E6A881AE9BE3E9E5CAFAE432C7620E11F58B6FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2a:2f:22:87:83:c3:52:17:bc:d3:04:cb:0e: e9:27:3d:36:01:07:9d:d4:ed:db:87:dc:8b:68:87: 2f:05:14:ae:ce:7d:2b:dd:31:e1:7d:30:bc:18:8b: 36:5e:6f:86:54:8e:34:fb:29:bf:3a:59:cf:05:45: 77:19:a4:64:a3:47:01:43:29:66:c4:7b:91:f1:61: cc:57:32:59:5f:3d:20:46:b7:38:4e:99:c3:31:5b: 5f:c4:7e:95:a3:00:02:3f:11:c5:05:72:54:cb:f4: c1:59:5d:6c:59:83:89:b1:ea:1a:8a:48:92:27:76: a9:76:af:88:05:93:f7:cb:dd:85:dd:2f:75:50:05: 7f:c7:d1:42:7b:c7:ce:99:a7:ac:74:d6:2d:2f:e2: 71:6a:33:36:a1:f9:1a:1b:3b:19:51:42:a7:55:dc: ed:45:56:54:51:8d:67:5e:a3:86:ce:59:af:15:62: f1:d0:f4:60:b6:34:ed:26:0a:2e:c1:e0:40:e8:37: 70:df:89:74:14:e2:c4:a2:52:6d:b3:6f:51:d8:88: bb:6d:fe:ee:95:a4:65:32:4e:fd:77:83:65:de:de: ba:11:e9:93:39:d1:25:df:2b:a4:e6:ae:59:23:13: 24:cf:f2:6b:c5:46:e3:4e:c3:ab:d3:e6:dd:3b:f0: 53:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:6A:88:1A:E9:BE:3E:9E:5C:AF:AE:43:2C:76:20:E1:1F:58:B6:FA X509v3 Authority Key Identifier: keyid:B5:F5:EC:5C:56:7F:D4:89:BE:73:90:28:62:EB:EE:81:CC:DE:E3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534303a3a2f33322d3332203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:9e40::/32 Signature Algorithm: sha256WithRSAEncryption ad:74:a1:61:a0:d6:a0:97:58:af:98:27:a9:fc:c8:af:60:f2: 77:f7:9d:74:5c:20:e7:67:58:af:af:68:7c:f6:7e:bb:5c:09: f2:1f:75:3e:2c:e3:2e:25:cd:dc:0b:3e:f7:79:68:f4:56:24: 75:ba:19:1e:89:90:1a:fa:41:29:4e:9c:f9:36:be:36:8a:af: 47:74:9b:f9:bc:71:bf:ac:c9:af:96:3d:74:5a:2f:dd:25:3e: da:e1:d8:84:68:31:e8:40:00:eb:c5:ca:7b:7f:c2:6e:3b:b3: 73:26:44:3f:e0:99:84:b2:7d:79:6b:11:d8:48:68:e8:31:2c: 61:5f:7b:a5:71:77:d4:35:d5:47:c2:bc:2d:44:49:44:cf:3b: 8e:fe:ee:51:6b:49:15:2f:83:6d:ad:14:9a:bc:7e:e4:18:d4: ae:24:d2:cc:24:dd:3f:fd:d8:80:6c:86:86:21:48:03:db:92: b1:7a:d8:0e:1f:e7:90:21:28:cf:28:20:cf:e3:77:47:b7:44: 98:7e:ed:a7:c9:5a:c9:29:d0:b3:c3:78:a5:03:a5:26:c6:91: 42:dd:db:00:b8:9d:a6:74:bc:e0:fe:4b:b5:d8:b2:a4:df:9e: 84:5a:99:2c:52:e9:39:6a:24:68:7a:87:e9:b0:55:20:80:bf: 69:bf:ab:e8 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUVPZ+Il2aP6SOfncNhuTDJFny7Q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFD Q0RFRTM1QzAeFw0yNTA4MjkwNjE2MjJaFw0yNjA4MjgwNjIxMjJaMDMxMTAvBgNV BAMTKDVFNkE4ODFBRTlCRTNFOUU1Q0FGQUU0MzJDNzYyMEUxMUY1OEI2RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvKi8ih4PDUhe80wTLDuknPTYB B53U7duH3Itohy8FFK7OfSvdMeF9MLwYizZeb4ZUjjT7Kb86Wc8FRXcZpGSjRwFD KWbEe5HxYcxXMllfPSBGtzhOmcMxW1/EfpWjAAI/EcUFclTL9MFZXWxZg4mx6hqK SJIndql2r4gFk/fL3YXdL3VQBX/H0UJ7x86Zp6x01i0v4nFqMzah+RobOxlRQqdV 3O1FVlRRjWdeo4bOWa8VYvHQ9GC2NO0mCi7B4EDoN3DfiXQU4sSiUm2zb1HYiLtt /u6VpGUyTv13g2Xe3roR6ZM50SXfK6TmrlkjEyTP8mvFRuNOw6vT5t078FM5AgMB AAGjggJuMIICajAdBgNVHQ4EFgQUXmqIGum+Pp5cr65DLHYg4R9YtvowHwYDVR0j BBgwFoAUtfXsXFZ/1Im+c5AoYuvugcze41wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzUvQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFDQ0RFRTM1Qy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFDQ0RF RTM1Qy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjJjZjhiYTct Y2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdlOTUwLzUvMzI2MTMwNjIzYTM5NjUzNDMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzMTM0MzQzNTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgueQDANBgkqhkiG9w0BAQsFAAOCAQEArXShYaDWoJdYr5gnqfzIr2Dyd/eddFwg 52dYr69ofPZ+u1wJ8h91PizjLiXN3As+93lo9FYkdboZHomQGvpBKU6c+Ta+Noqv R3Sb+bxxv6zJr5Y9dFov3SU+2uHYhGgx6EAA68XKe3/CbjuzcyZEP+CZhLJ9eWsR 2Eho6DEsYV97pXF31DXVR8K8LURJRM87jv7uUWtJFS+Dba0Umrx+5BjUriTSzCTd P/3YgGyGhiFIA9uSsXrYDh/nkCEozyggz+N3R7dEmH7tp8laySnQs8N4pQOlJsaR Qt3bALidpnS84P5LtdiypN+ehFqZLFLpOWokaHqH6bBVIIC/ab+r6A== -----END CERTIFICATE-----Generated at Wed Sep 10 14:12:03 2025 by rpki-client