$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa File: 326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa (raw, json) Hash identifier: 4jU7nkyEYMs7J2TXcZX9KeA/iJZf4UqQuFvWyMWdlDs= Subject key identifier: 64:C1:59:81:C8:5C:7F:F2:E1:26:64:F4:5C:FC:81:29:C0:8A:B4:A5 Certificate issuer: /CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Certificate serial: 69FD37CF4458586550A85868BB389AB67D048DB6 Authority key identifier: 1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa Signing time: Tue 09 Sep 2025 15:15:39 +0000 ROA not before: Tue 09 Sep 2025 15:10:39 +0000 ROA not after: Tue 08 Sep 2026 15:15:39 +0000 asID: 206604 IP address blocks: 2a0b:4e07:a00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 22:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:fd:37:cf:44:58:58:65:50:a8:58:68:bb:38:9a:b6:7d:04:8d:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Validity Not Before: Sep 9 15:10:39 2025 GMT Not After : Sep 8 15:15:39 2026 GMT Subject: CN=64C15981C85C7FF2E12664F45CFC8129C08AB4A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:57:74:10:03:91:07:d8:01:82:23:b6:ac:9f: 4b:45:2d:62:e8:72:82:28:bb:fc:a0:f7:7b:4d:2d: 15:70:b4:bb:99:25:10:43:cc:ad:b4:c9:16:92:38: 38:8a:21:03:31:74:9d:98:ab:03:72:1f:aa:74:47: be:34:1e:37:6a:e2:76:01:31:1f:91:ee:b5:12:21: 30:b7:59:cb:b1:90:65:db:45:68:fd:8c:00:3e:fe: b2:2a:8c:66:dc:75:ad:39:64:ba:23:78:ee:aa:64: 76:b6:d8:a2:24:92:17:ae:68:6f:91:9b:5b:6d:77: 4f:0f:c7:79:2b:96:e6:d3:11:ff:09:34:1f:09:42: c3:1b:17:20:a0:66:ff:15:08:ba:b6:a9:13:b0:5b: 9d:6c:8c:da:0f:61:8e:5f:e8:fc:bf:e6:e2:00:c1: 27:3f:39:8a:a0:ec:47:c0:77:6f:43:10:4d:07:3c: f0:db:f7:07:58:6b:e7:14:1e:50:ad:3a:e8:df:40: 50:46:3e:a2:98:3f:25:ff:c4:ab:c6:84:37:d4:f8: ea:fd:dd:a5:60:be:72:01:73:bc:89:56:12:c2:39: 4d:36:9f:4f:e0:41:2f:3c:b4:03:fa:1d:f9:76:3b: 1c:67:be:a9:fe:2c:b6:22:2f:9a:bd:cc:dd:23:6d: e5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C1:59:81:C8:5C:7F:F2:E1:26:64:F4:5C:FC:81:29:C0:8A:B4:A5 X509v3 Authority Key Identifier: keyid:1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6130303a3a2f34302d3438203d3e20323036363034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a00::/40 Signature Algorithm: sha256WithRSAEncryption 57:6c:e1:08:d8:15:6f:d5:3c:a1:df:fb:e3:bd:45:32:62:3f: d6:af:27:f1:3f:4e:69:41:51:a4:dc:b8:d7:35:2e:63:34:ac: 2e:88:51:05:ba:54:0d:e9:83:d5:ea:2e:ea:98:5b:c8:e5:ff: c9:52:5e:e7:78:8b:50:b9:18:4e:89:30:da:03:91:a5:92:7b: ee:64:d1:2a:e6:93:71:19:fb:b2:f3:00:56:56:96:30:7c:69: 36:c7:10:a1:72:94:9f:d3:54:10:b3:5d:5f:61:d9:2c:80:82: 06:13:29:f0:e9:b8:11:a4:71:97:2b:d0:c6:17:61:dc:45:1c: 89:1f:5e:9c:e8:74:36:51:dc:89:6c:b1:ae:d4:a9:b1:98:4d: 2d:4c:44:61:ff:1c:4c:14:e2:a2:67:61:e5:14:6d:95:6e:8d: 72:f4:4c:74:34:d9:f1:dc:b6:9c:a3:5f:a1:c6:27:f7:ef:99: d4:90:c3:16:d7:9e:6d:48:ee:83:f9:f6:d4:1b:86:a0:30:29: f6:3f:82:f7:81:f9:d6:bc:8b:5e:fd:8c:3f:a2:c0:f3:0b:f1: 71:95:7b:09:27:97:ee:ca:73:b5:fd:f2:17:34:25:e5:43:05: fc:f7:71:ff:89:5d:17:ac:b9:25:82:6d:26:b4:7e:ea:cb:53: dc:84:f8:b7 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUaf03z0RYWGVQqFhouziatn0EjbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3 QzYwNThFOTAeFw0yNTA5MDkxNTEwMzlaFw0yNjA5MDgxNTE1MzlaMDMxMTAvBgNV BAMTKDY0QzE1OTgxQzg1QzdGRjJFMTI2NjRGNDVDRkM4MTI5QzA4QUI0QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrV3QQA5EH2AGCI7asn0tFLWLo coIou/yg93tNLRVwtLuZJRBDzK20yRaSODiKIQMxdJ2YqwNyH6p0R740Hjdq4nYB MR+R7rUSITC3WcuxkGXbRWj9jAA+/rIqjGbcda05ZLojeO6qZHa22KIkkheuaG+R m1ttd08Px3krlubTEf8JNB8JQsMbFyCgZv8VCLq2qROwW51sjNoPYY5f6Py/5uIA wSc/OYqg7EfAd29DEE0HPPDb9wdYa+cUHlCtOujfQFBGPqKYPyX/xKvGhDfU+Or9 3aVgvnIBc7yJVhLCOU02n0/gQS88tAP6Hfl2Oxxnvqn+LLYiL5q9zN0jbeWhAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUZMFZgchcf/LhJmT0XPyBKcCKtKUwHwYDVR0j BBgwFoAUH2Xx03VmK3HpmmB1CeHuFnxgWOkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQtNWNkNC00MzM3LTg2MTUtNWIyNzdmNDFk ODhmLzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYwNThFOS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYw NThFOS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQt NWNkNC00MzM3LTg2MTUtNWIyNzdmNDFkODhmLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMwMzYzNjMwMzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAqC04HCjANBgkqhkiG9w0BAQsFAAOCAQEAV2zhCNgVb9U8od/7471F MmI/1q8n8T9OaUFRpNy41zUuYzSsLohRBbpUDemD1eou6phbyOX/yVJe53iLULkY Tokw2gORpZJ77mTRKuaTcRn7svMAVlaWMHxpNscQoXKUn9NUELNdX2HZLICCBhMp 8Om4EaRxlyvQxhdh3EUciR9enOh0NlHciWyxrtSpsZhNLUxEYf8cTBTiomdh5RRt lW6NcvRMdDTZ8dy2nKNfocYn9++Z1JDDFteebUjug/n21BuGoDAp9j+C94H51ryL Xv2MP6LA8wvxcZV7CSeX7spztf3yFzQl5UMF/Pdx/4ldF6y5JYJtJrR+6stT3IT4 tw== -----END CERTIFICATE-----Generated at Thu Oct 9 14:10:04 2025 by rpki-client