$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3a2f33322d3438203d3e20323135303835.roa File: 326130363a396634313a3a2f33322d3438203d3e20323135303835.roa (raw, json) Hash identifier: Wzsm4f2LA5za568wbkiJepokvyBzVpcjorefCVCiEbM= Subject key identifier: 2B:9B:92:61:5C:16:67:90:EC:B4:83:A3:93:9B:D0:C9:EE:E6:D7:45 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 62F2982A7BC559484E8C6E558F608A955721C83E Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3a2f33322d3438203d3e20323135303835.roa Signing time: Thu 03 Jul 2025 18:46:32 +0000 ROA not before: Thu 03 Jul 2025 18:41:32 +0000 ROA not after: Thu 02 Jul 2026 18:46:32 +0000 asID: 215085 IP address blocks: 2a06:9f41::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f2:98:2a:7b:c5:59:48:4e:8c:6e:55:8f:60:8a:95:57:21:c8:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Jul 3 18:41:32 2025 GMT Not After : Jul 2 18:46:32 2026 GMT Subject: CN=2B9B92615C166790ECB483A3939BD0C9EEE6D745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5e:1e:78:84:ab:b2:e0:63:b2:7d:5d:b6:74: 5c:c7:6f:24:78:4b:3b:ca:fd:3e:f2:62:54:1d:5b: c0:71:43:8f:e7:c7:72:11:96:6c:45:37:22:ef:89: 5e:a7:26:dc:38:65:e7:dc:45:a9:b8:7e:02:9e:fa: e9:19:5a:db:02:37:71:b8:2b:75:f1:08:c4:f1:c2: 45:d6:47:9a:57:ee:d4:82:c5:be:31:67:e6:a6:2c: d5:c8:35:a2:02:27:99:db:48:40:09:b5:49:65:1d: 1e:47:4e:45:a8:e1:67:77:5a:4c:2a:47:5f:65:f4: 11:c6:5e:9c:ab:25:43:ff:71:76:f3:13:3d:6a:ce: 19:61:8a:68:22:c0:85:a3:47:eb:fa:75:d2:2e:fb: 68:14:ab:c6:c7:c4:12:ee:b2:2c:55:f2:67:e6:20: 10:c4:47:b0:86:2c:f6:0c:e4:f2:fa:79:39:4e:cc: 87:d8:5e:49:9c:d8:2e:0c:fd:e3:c5:54:42:5c:d4: c8:2e:96:07:ab:19:ef:87:08:2c:fb:6c:07:ed:cc: 76:0b:40:b2:68:89:61:1d:0a:50:7b:66:06:dc:69: 42:9b:95:2b:ef:f3:ef:40:41:db:73:e0:cf:86:b9: 3b:a5:76:57:9e:ee:43:b8:5c:2f:3b:6c:13:4f:47: 22:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9B:92:61:5C:16:67:90:EC:B4:83:A3:93:9B:D0:C9:EE:E6:D7:45 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3a2f33322d3438203d3e20323135303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41::/32 Signature Algorithm: sha256WithRSAEncryption 80:4f:9b:93:bb:f3:36:80:b6:bf:55:23:8b:95:4a:b3:da:5b: eb:b3:a9:b5:30:8c:0b:f3:a5:8b:7e:1b:6c:7d:08:05:6d:22: 66:f7:03:8a:8a:3b:8a:a4:ef:7c:b2:51:b7:76:49:d1:21:37: 07:00:d3:7e:3b:ae:43:94:6e:f3:3d:90:ea:bb:65:4c:eb:61: ef:74:dc:da:df:22:db:e7:f9:91:5f:c1:fe:a2:9b:59:4b:c1: 96:d6:7d:76:75:ce:be:26:40:e3:b8:9c:9e:20:9b:f2:27:7e: ca:9b:3e:54:ce:3d:5c:08:91:b9:f3:61:16:08:9f:0c:43:c0: 99:de:0a:88:66:b8:6f:42:c5:67:33:d7:ca:f8:8f:cc:d4:15: b0:4b:5f:1e:f5:b5:ac:56:5e:8d:38:7f:1b:11:25:9c:2e:84: 89:9b:c7:12:69:b1:3d:a4:4a:22:18:7e:88:07:86:46:16:f9: 4e:ea:9a:68:39:12:7c:90:e3:46:25:54:52:dc:aa:c8:cb:5e: 87:94:06:a4:12:f1:4f:97:da:66:08:c3:c5:bb:f3:59:80:2b: 3d:75:c7:07:9e:36:d5:21:a2:80:a3:86:c3:e6:4c:40:59:d5: c9:30:53:ac:c8:ec:ea:84:55:0b:ac:b5:75:50:15:f8:25:2c: 1d:62:b2:e2 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUYvKYKnvFWUhOjG5Vj2CKlVchyD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNTA3MDMxODQxMzJaFw0yNjA3MDIxODQ2MzJaMDMxMTAvBgNV BAMTKDJCOUI5MjYxNUMxNjY3OTBFQ0I0ODNBMzkzOUJEMEM5RUVFNkQ3NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtXh54hKuy4GOyfV22dFzHbyR4 SzvK/T7yYlQdW8BxQ4/nx3IRlmxFNyLviV6nJtw4ZefcRam4fgKe+ukZWtsCN3G4 K3XxCMTxwkXWR5pX7tSCxb4xZ+amLNXINaICJ5nbSEAJtUllHR5HTkWo4Wd3Wkwq R19l9BHGXpyrJUP/cXbzEz1qzhlhimgiwIWjR+v6ddIu+2gUq8bHxBLusixV8mfm IBDER7CGLPYM5PL6eTlOzIfYXkmc2C4M/ePFVEJc1MgulgerGe+HCCz7bAftzHYL QLJoiWEdClB7ZgbcaUKblSvv8+9AQdtz4M+GuTuldlee7kO4XC87bBNPRyIlAgMB AAGjggJuMIICajAdBgNVHQ4EFgQUK5uSYVwWZ5DstIOjk5vQye7m10UwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMTM1MzAzODM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgafQTANBgkqhkiG9w0BAQsFAAOCAQEAgE+bk7vzNoC2v1Uji5VKs9pb67OptTCM C/Oli34bbH0IBW0iZvcDioo7iqTvfLJRt3ZJ0SE3BwDTfjuuQ5Ru8z2Q6rtlTOth 73Tc2t8i2+f5kV/B/qKbWUvBltZ9dnXOviZA47icniCb8id+yps+VM49XAiRufNh FgifDEPAmd4KiGa4b0LFZzPXyviPzNQVsEtfHvW1rFZejTh/GxElnC6EiZvHEmmx PaRKIhh+iAeGRhb5TuqaaDkSfJDjRiVUUtyqyMteh5QGpBLxT5faZgjDxbvzWYAr PXXHB5421SGigKOGw+ZMQFnVyTBTrMjs6oRVC6y1dVAV+CUsHWKy4g== -----END CERTIFICATE-----Generated at Sat Jul 5 09:07:12 2025 by rpki-client