$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa File: 326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa (raw, json) Hash identifier: UqjWSUv2XiZdDsdQ0uOndREGc/szQ2JnxQlbZ2ADckI= Subject key identifier: 91:5E:93:56:42:CB:CA:B5:E1:EE:18:93:ED:1F:17:3C:EF:28:71:A5 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 2948ECA16F523D206D6F94115CF1146F83FDADA2 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa Signing time: Thu 03 Jul 2025 18:46:32 +0000 ROA not before: Thu 03 Jul 2025 18:41:32 +0000 ROA not after: Thu 02 Jul 2026 18:46:32 +0000 asID: 207682 IP address blocks: 2a06:9f41:a900::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:48:ec:a1:6f:52:3d:20:6d:6f:94:11:5c:f1:14:6f:83:fd:ad:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Jul 3 18:41:32 2025 GMT Not After : Jul 2 18:46:32 2026 GMT Subject: CN=915E935642CBCAB5E1EE1893ED1F173CEF2871A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d6:47:8c:42:2f:3e:9c:88:bc:09:c9:12:fc: 24:56:17:38:84:e9:70:7f:43:fc:b8:85:d5:57:1d: 07:04:3c:f7:ea:a8:f4:da:8d:c3:32:3a:e2:6a:22: 56:09:f4:01:41:16:d3:3a:c2:88:b9:f2:ef:b5:e7: 9b:27:ca:1d:0e:cc:c9:bf:5a:01:41:1e:a8:87:cb: 70:21:75:f3:a8:d3:cd:39:35:e8:b6:98:fd:61:5f: 17:ee:43:ab:3c:46:b0:19:69:f6:22:62:71:e8:21: f7:8d:40:9a:8d:bb:71:d8:59:99:f0:f8:37:c7:61: 98:a1:7a:d9:4e:ae:0a:f8:b9:ed:a4:af:be:7d:3c: 02:d9:2e:8f:17:75:cb:0b:73:d1:cc:56:9c:35:91: 70:fe:7e:db:9e:e9:cd:bc:23:59:d4:1b:ef:a4:39: 86:29:e5:e9:61:48:2c:a5:79:27:90:5f:cd:22:6c: 9e:7f:e3:25:dc:9a:58:c4:f1:87:b4:a4:88:b3:54: fa:53:0e:87:06:41:fb:28:d3:11:de:d2:0b:1e:fa: db:ba:fb:73:e5:36:02:d5:46:1d:a5:b2:3c:97:5c: 9e:4c:b9:c0:f9:bf:76:f4:3c:b5:7d:e5:99:b8:e1: 78:36:70:aa:19:6d:45:bc:af:b8:f8:03:0d:12:97: 4f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5E:93:56:42:CB:CA:B5:E1:EE:18:93:ED:1F:17:3C:EF:28:71:A5 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:a900::/48 Signature Algorithm: sha256WithRSAEncryption 91:ab:b1:10:3a:8f:0a:fb:d1:d2:a7:f1:cf:5e:0f:25:3d:b0: 0a:46:ec:48:a0:60:52:06:1b:f1:6a:7a:ff:2e:9a:02:cd:f7: 6c:c6:ca:c9:d1:f3:90:dc:88:af:75:41:9c:f9:8b:b3:aa:e2: 3c:4d:ef:9b:c5:25:be:61:33:dd:36:5a:dc:ef:14:39:77:3a: a8:bb:9e:18:3b:49:71:f3:f7:0a:28:1e:d6:57:77:a9:91:05: 03:df:dc:2a:eb:d2:0a:af:04:ed:56:db:6a:fe:db:f8:4f:a0: 7f:90:00:83:49:a4:4e:e5:3b:0c:f6:37:a5:79:3a:53:9e:65: 9b:c3:dd:d4:2b:6a:8a:84:bf:d7:6d:98:7f:e4:25:ca:94:64: 6f:3d:75:6f:af:8b:36:48:0e:4d:2a:89:e7:0e:e3:ab:f8:da: 19:c9:71:25:b2:b5:5e:16:23:66:20:d7:3b:c4:66:db:3f:86: 56:f8:6b:4f:98:ee:2c:55:29:18:7f:50:e3:02:8a:f2:d4:17: de:8b:64:11:7e:e2:54:d1:f3:7c:68:20:1e:f2:ef:32:c7:04: ce:59:9d:e8:81:07:4f:e5:1e:a6:d2:3a:f7:51:20:36:6e:cd: 70:1d:0e:00:dd:74:ab:69:14:3d:12:1c:1f:47:79:06:55:89: 18:ba:90:fc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUKUjsoW9SPSBtb5QRXPEUb4P9raIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNTA3MDMxODQxMzJaFw0yNjA3MDIxODQ2MzJaMDMxMTAvBgNV BAMTKDkxNUU5MzU2NDJDQkNBQjVFMUVFMTg5M0VEMUYxNzNDRUYyODcxQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU1keMQi8+nIi8CckS/CRWFziE 6XB/Q/y4hdVXHQcEPPfqqPTajcMyOuJqIlYJ9AFBFtM6woi58u+155snyh0OzMm/ WgFBHqiHy3AhdfOo0805Nei2mP1hXxfuQ6s8RrAZafYiYnHoIfeNQJqNu3HYWZnw +DfHYZihetlOrgr4ue2kr759PALZLo8XdcsLc9HMVpw1kXD+ftue6c28I1nUG++k OYYp5elhSCyleSeQX80ibJ5/4yXcmljE8Ye0pIizVPpTDocGQfso0xHe0gse+tu6 +3PlNgLVRh2lsjyXXJ5MucD5v3b0PLV95Zm44Xg2cKoZbUW8r7j4Aw0Sl081AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUkV6TVkLLyrXh7hiT7R8XPO8ocaUwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2E2MTM5MzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNzM2MzgzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGn0GpADANBgkqhkiG9w0BAQsFAAOCAQEAkauxEDqPCvvR0qfx z14PJT2wCkbsSKBgUgYb8Wp6/y6aAs33bMbKydHzkNyIr3VBnPmLs6riPE3vm8Ul vmEz3TZa3O8UOXc6qLueGDtJcfP3Cige1ld3qZEFA9/cKuvSCq8E7Vbbav7b+E+g f5AAg0mkTuU7DPY3pXk6U55lm8Pd1CtqioS/122Yf+QlypRkbz11b6+LNkgOTSqJ 5w7jq/jaGclxJbK1XhYjZiDXO8Rm2z+GVvhrT5juLFUpGH9Q4wKK8tQX3otkEX7i VNHzfGggHvLvMscEzlmd6IEHT+UeptI691EgNm7NcB0OAN10q2kUPRIcH0d5BlWJ GLqQ/A== -----END CERTIFICATE-----Generated at Sat Jul 5 09:10:44 2025 by rpki-client