$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa File: 326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa (raw, json) Hash identifier: +oN/MdgSycgZ3iltmrx2LnazIG402VP1RhBuB1dJOWQ= Subject key identifier: 4C:83:14:67:F1:10:84:D7:5C:7B:78:12:17:F0:B0:3A:47:97:69:FE Certificate issuer: /CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970 Certificate serial: 66D38E4FEA5964E9406F05815763A724C1F5786D Authority key identifier: 75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa Signing time: Fri 30 May 2025 14:18:40 +0000 ROA not before: Fri 30 May 2025 14:13:40 +0000 ROA not after: Fri 29 May 2026 14:18:40 +0000 asID: 207682 IP address blocks: 2a06:9f41:a900::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 08:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d3:8e:4f:ea:59:64:e9:40:6f:05:81:57:63:a7:24:c1:f5:78:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970 Validity Not Before: May 30 14:13:40 2025 GMT Not After : May 29 14:18:40 2026 GMT Subject: CN=4C831467F11084D75C7B781217F0B03A479769FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:04:bc:4b:de:57:7f:ab:78:b9:43:95:9f:24: d8:9f:6f:b3:40:6f:c5:c1:4e:a4:b9:38:2b:97:ed: 7c:a5:c6:5b:27:bc:5b:6b:d5:e1:47:3c:3f:8d:21: 3e:62:dd:a4:d5:8b:21:70:4f:32:da:a1:5b:9c:31: 41:b5:32:54:47:23:30:47:2b:2e:01:e9:3c:8c:5d: 89:10:9d:79:aa:46:09:93:4c:59:b2:05:c0:74:a0: 9b:55:4c:0a:81:b1:ea:48:f9:41:11:dc:0d:6f:38: d9:a8:ca:ec:98:99:64:ca:2a:a2:29:85:38:88:ef: e6:71:fd:d7:ea:87:5b:ba:c9:d7:6e:51:a5:ee:ab: bf:84:94:14:ee:c5:04:49:f0:b8:c8:74:0f:98:61: dd:ee:eb:61:18:59:3a:9c:9d:a5:17:6b:14:ac:10: 7b:21:f2:8e:4d:4b:52:3f:e8:39:46:ac:5e:32:d3: c1:45:bd:fc:e7:2a:0e:80:eb:31:4e:72:95:fc:43: f0:61:83:46:bf:ff:fc:37:ff:d8:e5:17:31:9c:05: 51:38:7a:85:86:16:be:01:87:0b:68:c8:d2:fa:4e: 0d:98:e5:23:7f:cc:82:a1:b3:11:f9:ea:32:a9:2b: 78:88:23:2f:86:36:14:af:62:a3:b0:57:51:57:e9: 9d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:83:14:67:F1:10:84:D7:5C:7B:78:12:17:F0:B0:3A:47:97:69:FE X509v3 Authority Key Identifier: keyid:75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:a900::/48 Signature Algorithm: sha256WithRSAEncryption 15:a4:ef:de:c8:1c:8a:a6:3a:d0:f9:53:6e:0f:8c:53:62:e9: 7a:8c:a4:76:16:17:32:aa:87:a7:95:13:bb:75:d8:bf:fa:30: 57:ec:a3:39:90:88:5b:d2:09:17:3d:63:34:f1:53:df:4a:1c: 63:6e:90:b2:64:76:90:7b:27:d7:d7:7e:e0:c3:e8:1f:78:b2: 73:11:cf:3c:fe:58:52:7f:58:2c:e1:97:53:09:44:d9:84:1d: 19:34:38:ee:e8:0d:4f:13:e6:3a:b3:b3:49:f8:3a:3e:97:34: a3:72:15:2e:a7:8f:a0:18:39:a9:b9:1b:c7:a7:ba:dc:50:c1: b9:a5:31:ba:d6:14:a4:24:c9:11:f4:0c:6f:2c:8c:90:89:5d: 01:36:c1:e2:21:81:30:86:98:15:ae:50:94:1c:cf:d4:b2:dd: 63:66:c8:a9:8a:e0:e4:18:99:b0:74:70:a1:2a:53:ab:2a:c4: 75:1e:05:f9:64:69:d9:9f:c0:4f:49:53:72:0a:3b:7b:54:9e: a9:b8:11:d8:11:00:ef:64:0d:c6:e3:d5:d4:4f:07:b6:dc:fe: c4:50:9b:cf:f6:0a:3d:83:9c:eb:97:b1:50:86:b2:91:8b:07: 34:f8:65:14:65:43:ae:7c:64:bc:55:47:ff:40:36:6a:d1:7d: 7f:59:dc:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUZtOOT+pZZOlAbwWBV2OnJMH1eG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1 RDhCQTk3MDAeFw0yNTA1MzAxNDEzNDBaFw0yNjA1MjkxNDE4NDBaMDMxMTAvBgNV BAMTKDRDODMxNDY3RjExMDg0RDc1QzdCNzgxMjE3RjBCMDNBNDc5NzY5RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbBLxL3ld/q3i5Q5WfJNifb7NA b8XBTqS5OCuX7XylxlsnvFtr1eFHPD+NIT5i3aTViyFwTzLaoVucMUG1MlRHIzBH Ky4B6TyMXYkQnXmqRgmTTFmyBcB0oJtVTAqBsepI+UER3A1vONmoyuyYmWTKKqIp hTiI7+Zx/dfqh1u6ydduUaXuq7+ElBTuxQRJ8LjIdA+YYd3u62EYWTqcnaUXaxSs EHsh8o5NS1I/6DlGrF4y08FFvfznKg6A6zFOcpX8Q/Bhg0a///w3/9jlFzGcBVE4 eoWGFr4BhwtoyNL6Tg2Y5SN/zIKhsxH56jKpK3iIIy+GNhSvYqOwV1FX6Z0FAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUTIMUZ/EQhNdce3gSF/CwOkeXaf4wHwYDVR0j BBgwFoAUddXC7NMPaA210WmH9Ff+tF2LqXAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzEvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhCQTk3MC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhC QTk3MC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzEvMzI2MTMwMzYzYTM5NjYzNDMx M2E2MTM5MzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNzM2MzgzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGn0GpADANBgkqhkiG9w0BAQsFAAOCAQEAFaTv3sgciqY60PlT bg+MU2LpeoykdhYXMqqHp5UTu3XYv/owV+yjOZCIW9IJFz1jNPFT30ocY26QsmR2 kHsn19d+4MPoH3iycxHPPP5YUn9YLOGXUwlE2YQdGTQ47ugNTxPmOrOzSfg6Ppc0 o3IVLqePoBg5qbkbx6e63FDBuaUxutYUpCTJEfQMbyyMkIldATbB4iGBMIaYFa5Q lBzP1LLdY2bIqYrg5BiZsHRwoSpTqyrEdR4F+WRp2Z/AT0lTcgo7e1SeqbgR2BEA 72QNxuPV1E8Httz+xFCbz/YKPYOc65exUIaykYsHNPhlFGVDrnxkvFVH/0A2atF9 f1nc5Q== -----END CERTIFICATE-----Generated at Fri Jun 6 23:19:31 2025 by rpki-client