$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a363936393a3a2f34382d3438203d3e20323132323432.roa File: 326130363a396634313a363936393a3a2f34382d3438203d3e20323132323432.roa (raw, json) Hash identifier: oZMKPe8zIqKXDWE+ceP6ZovC366mkj//dk5ag6RqSYo= Subject key identifier: 14:30:20:FF:17:70:04:8A:06:84:0D:D7:47:8C:02:98:B7:98:EC:16 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 27F22FA5B9875092A650B957E8DF78768F2EB52E Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a363936393a3a2f34382d3438203d3e20323132323432.roa Signing time: Thu 25 Sep 2025 18:16:10 +0000 ROA not before: Thu 25 Sep 2025 18:11:10 +0000 ROA not after: Thu 24 Sep 2026 18:16:10 +0000 asID: 212242 IP address blocks: 2a06:9f41:6969::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 11:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f2:2f:a5:b9:87:50:92:a6:50:b9:57:e8:df:78:76:8f:2e:b5:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Sep 25 18:11:10 2025 GMT Not After : Sep 24 18:16:10 2026 GMT Subject: CN=143020FF1770048A06840DD7478C0298B798EC16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e7:5f:bc:90:c1:7f:6a:33:6b:52:d3:c9:41: 51:48:79:6e:21:4a:13:36:cb:55:61:0b:82:fc:b0: bc:87:5d:a8:58:af:76:08:95:c7:e4:62:2c:09:56: b9:e4:0e:33:6d:56:3b:cf:fe:70:93:c1:65:c5:87: 98:34:5c:69:f3:74:64:a8:e8:d5:73:1e:c8:75:b0: af:5f:e0:78:a5:c6:be:f9:f6:49:ea:f6:21:c5:1c: bf:c4:96:05:7a:ed:ee:70:c4:bf:05:ce:99:25:20: 55:f2:82:7c:fc:97:54:7a:f6:2c:bc:b7:d9:67:96: d1:7f:8b:01:c7:4b:31:03:fd:5e:ac:e0:22:83:20: 3d:92:8d:d4:b4:51:64:f7:b4:12:77:e0:de:2a:e5: 52:d7:9b:13:6f:e6:2f:e8:9e:a3:5b:c1:ee:09:d6: 32:3d:bf:83:a3:72:d4:2e:20:f9:39:64:6b:99:2a: f7:f4:17:c5:e7:9a:5e:bd:b1:5f:2e:c9:34:3b:e0: 4b:1f:f6:ce:05:18:10:60:2b:4e:31:51:45:4d:4f: 53:48:56:b6:41:b2:84:12:ca:6a:a4:38:e8:47:38: a4:0a:24:36:98:84:71:fd:4e:78:89:09:22:6e:43: a0:6c:6e:82:1d:97:d9:4b:42:1d:18:c9:19:73:c6: 95:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:30:20:FF:17:70:04:8A:06:84:0D:D7:47:8C:02:98:B7:98:EC:16 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a363936393a3a2f34382d3438203d3e20323132323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:6969::/48 Signature Algorithm: sha256WithRSAEncryption 2e:fc:21:f5:c1:f4:0b:f9:9b:82:4f:40:f9:3a:5c:85:0a:e9: b9:06:01:82:68:49:49:58:95:05:39:64:e3:d6:d3:cf:14:43: 36:52:ba:4b:22:b1:f4:5f:f9:80:e2:68:b2:ae:68:d0:1a:4d: f5:f1:b3:e5:ed:2a:be:95:23:b6:fe:6e:41:89:06:b5:af:11: cd:a1:eb:5b:e3:54:05:59:a4:89:96:7d:17:3c:6b:fd:b7:8c: 8f:cf:9a:9d:c3:c1:3f:4e:01:d3:33:74:a7:f4:92:8b:85:72: 8b:ca:03:22:e7:5d:46:ab:bb:f0:04:00:45:2e:8b:4a:48:87: ed:e1:b9:01:5c:bc:00:be:7e:9e:01:04:f1:5a:7e:19:a5:79: e0:f8:b7:b7:b0:ce:a8:97:1b:38:bd:88:a8:3d:08:09:09:45: 89:db:53:1f:38:0a:a9:fd:93:9a:67:eb:35:7c:48:bd:e9:fa: 56:e4:d8:b8:6d:1e:1a:2f:48:b4:f0:35:aa:a9:78:12:77:94: 06:ec:e2:83:98:77:f5:0b:55:66:08:c4:ce:5f:9f:a6:f4:8d: 10:75:65:9e:ff:ba:d0:92:1b:c4:94:14:cc:f5:fb:c1:10:50: c5:f0:25:b8:fd:1d:51:5b:5a:2e:d0:b1:46:0d:32:61:b9:df: 94:0d:2a:0c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUJ/IvpbmHUJKmULlX6N94do8utS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNTA5MjUxODExMTBaFw0yNjA5MjQxODE2MTBaMDMxMTAvBgNV BAMTKDE0MzAyMEZGMTc3MDA0OEEwNjg0MERENzQ3OEMwMjk4Qjc5OEVDMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC451+8kMF/ajNrUtPJQVFIeW4h ShM2y1VhC4L8sLyHXahYr3YIlcfkYiwJVrnkDjNtVjvP/nCTwWXFh5g0XGnzdGSo 6NVzHsh1sK9f4Hilxr759knq9iHFHL/ElgV67e5wxL8FzpklIFXygnz8l1R69iy8 t9lnltF/iwHHSzED/V6s4CKDID2SjdS0UWT3tBJ34N4q5VLXmxNv5i/onqNbwe4J 1jI9v4OjctQuIPk5ZGuZKvf0F8Xnml69sV8uyTQ74Esf9s4FGBBgK04xUUVNT1NI VrZBsoQSymqkOOhHOKQKJDaYhHH9TniJCSJuQ6BsboIdl9lLQh0YyRlzxpVFAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUFDAg/xdwBIoGhA3XR4wCmLeY7BYwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2EzNjM5MzYzOTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMyMzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGn0FpaTANBgkqhkiG9w0BAQsFAAOCAQEALvwh9cH0C/mbgk9A +TpchQrpuQYBgmhJSViVBTlk49bTzxRDNlK6SyKx9F/5gOJosq5o0BpN9fGz5e0q vpUjtv5uQYkGta8RzaHrW+NUBVmkiZZ9Fzxr/beMj8+ancPBP04B0zN0p/SSi4Vy i8oDIuddRqu78AQARS6LSkiH7eG5AVy8AL5+ngEE8Vp+GaV54Pi3t7DOqJcbOL2I qD0ICQlFidtTHzgKqf2TmmfrNXxIven6VuTYuG0eGi9ItPA1qql4EneUBuzig5h3 9QtVZgjEzl+fpvSNEHVlnv+60JIbxJQUzPX7wRBQxfAluP0dUVtaLtCxRg0yYbnf lA0qDA== -----END CERTIFICATE-----Generated at Thu Oct 9 01:28:04 2025 by rpki-client