$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6132303a3a2f34382d3438203d3e20323036363034.roa File: 326130623a346530373a6132303a3a2f34382d3438203d3e20323036363034.roa (raw, json) Hash identifier: fAVGGvo5eHWXK3AVuspQpE/puwyP/UfOh1Bo/8nqzkc= Subject key identifier: BE:0F:03:19:2F:DC:7D:3D:58:73:CA:DA:53:29:8E:D2:AB:7B:20:1D Certificate issuer: /CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Certificate serial: 405DB5E8A87254726D46C1970BE9F414DD8519AF Authority key identifier: 1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6132303a3a2f34382d3438203d3e20323036363034.roa Signing time: Thu 18 Sep 2025 15:43:58 +0000 ROA not before: Thu 18 Sep 2025 15:38:58 +0000 ROA not after: Thu 17 Sep 2026 15:43:58 +0000 asID: 206604 IP address blocks: 2a0b:4e07:a20::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 22:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:5d:b5:e8:a8:72:54:72:6d:46:c1:97:0b:e9:f4:14:dd:85:19:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Validity Not Before: Sep 18 15:38:58 2025 GMT Not After : Sep 17 15:43:58 2026 GMT Subject: CN=BE0F03192FDC7D3D5873CADA53298ED2AB7B201D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:24:f1:d2:80:95:51:68:03:d7:88:17:1c: 96:03:00:72:e6:60:37:be:2a:4c:b0:69:fd:04:ee: 2c:7f:cd:31:40:56:9d:93:c6:cc:ab:80:87:57:c0: 90:7b:fc:3e:3e:74:6a:cf:4c:be:0c:15:2f:72:34: db:62:8e:93:fc:7b:ca:6e:17:40:31:7b:60:6e:b4: da:64:44:44:b5:e8:50:10:17:aa:b9:cb:c3:63:6b: 59:69:e1:39:ca:75:ac:35:00:de:71:7c:6b:e6:3f: 00:13:06:2a:0f:ac:4d:72:37:47:d5:97:bc:b6:05: bb:13:cc:76:88:d9:b1:ff:81:ab:00:86:7b:8f:9c: ba:74:f2:a0:7e:9d:2e:6f:04:a1:13:91:60:d0:56: 0e:44:ee:f9:7d:a6:58:d5:52:76:41:1e:1d:57:93: 1b:17:2f:ac:0b:12:0b:74:00:a2:99:ea:c3:7a:bf: 0f:87:04:83:a6:df:3d:60:4e:ee:58:24:71:f7:1e: c6:88:a9:7f:68:a9:25:5a:67:86:33:af:da:da:da: d0:2d:e2:7c:e0:21:c4:b6:1f:dd:97:1d:27:67:d4: 4a:ef:9b:71:79:95:fe:4b:17:c7:35:6c:99:9c:b5: 74:9c:be:30:b4:c3:93:8f:7b:2a:36:e8:96:8c:71: 08:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0F:03:19:2F:DC:7D:3D:58:73:CA:DA:53:29:8E:D2:AB:7B:20:1D X509v3 Authority Key Identifier: keyid:1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6132303a3a2f34382d3438203d3e20323036363034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a20::/48 Signature Algorithm: sha256WithRSAEncryption 1c:b6:1c:6d:1b:7f:30:66:37:15:91:b4:83:2d:a8:9a:66:8a: 6b:20:32:fe:49:e8:9a:18:b8:eb:9d:c7:79:0b:dd:45:7a:a4: 71:84:92:69:a5:db:fc:b1:9d:30:3a:c6:30:19:39:9c:2c:fe: 67:69:c1:69:f5:75:8e:0f:36:5e:65:fb:8a:30:40:80:f8:5c: 07:2d:60:15:3a:1c:55:3f:4b:97:19:e9:e6:1f:3e:7c:0d:84: 30:a9:19:70:b7:e8:e3:51:86:1e:c0:17:d2:14:e0:47:43:f2: 8b:11:16:54:fe:e1:89:7b:c9:bd:cf:da:fd:54:cf:04:c6:a3: b7:db:e3:2d:06:1c:dd:17:5c:ab:f4:3b:96:15:0d:4e:a3:42: 1d:05:40:be:ab:48:36:52:bf:b4:28:da:3e:32:eb:51:06:6e: e1:4f:ed:82:fe:af:11:d3:5a:6f:25:06:3c:fe:ed:01:34:74: db:b3:f7:5a:6c:bf:5c:e5:bf:01:7b:01:46:ff:27:2d:18:b5: 11:29:f1:0f:7e:05:53:68:fe:de:48:ad:f3:63:71:e9:9e:43: ec:2e:d7:e9:f2:68:65:72:31:1f:89:c8:a8:75:cb:2f:c6:35: 92:92:d0:c3:ba:52:81:0f:35:96:33:4b:9c:ff:fd:53:35:0c: c1:55:d4:b3 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUQF216KhyVHJtRsGXC+n0FN2FGa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3 QzYwNThFOTAeFw0yNTA5MTgxNTM4NThaFw0yNjA5MTcxNTQzNThaMDMxMTAvBgNV BAMTKEJFMEYwMzE5MkZEQzdEM0Q1ODczQ0FEQTUzMjk4RUQyQUI3QjIwMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC77yTx0oCVUWgD14gXHJYDAHLm YDe+Kkywaf0E7ix/zTFAVp2TxsyrgIdXwJB7/D4+dGrPTL4MFS9yNNtijpP8e8pu F0Axe2ButNpkRES16FAQF6q5y8Nja1lp4TnKdaw1AN5xfGvmPwATBioPrE1yN0fV l7y2BbsTzHaI2bH/gasAhnuPnLp08qB+nS5vBKETkWDQVg5E7vl9pljVUnZBHh1X kxsXL6wLEgt0AKKZ6sN6vw+HBIOm3z1gTu5YJHH3HsaIqX9oqSVaZ4Yzr9ra2tAt 4nzgIcS2H92XHSdn1Ervm3F5lf5LF8c1bJmctXScvjC0w5OPeyo26JaMcQjFAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUvg8DGS/cfT1Yc8raUymO0qt7IB0wHwYDVR0j BBgwFoAUH2Xx03VmK3HpmmB1CeHuFnxgWOkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQtNWNkNC00MzM3LTg2MTUtNWIyNzdmNDFk ODhmLzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYwNThFOS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYw NThFOS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQt NWNkNC00MzM3LTg2MTUtNWIyNzdmNDFkODhmLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTMyMzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMwMzYzNjMwMzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqC04HCiAwDQYJKoZIhvcNAQELBQADggEBABy2HG0bfzBmNxWRtIMt qJpmimsgMv5J6JoYuOudx3kL3UV6pHGEkmml2/yxnTA6xjAZOZws/mdpwWn1dY4P Nl5l+4owQID4XActYBU6HFU/S5cZ6eYfPnwNhDCpGXC36ONRhh7AF9IU4EdD8osR FlT+4Yl7yb3P2v1UzwTGo7fb4y0GHN0XXKv0O5YVDU6jQh0FQL6rSDZSv7Qo2j4y 61EGbuFP7YL+rxHTWm8lBjz+7QE0dNuz91psv1zlvwF7AUb/Jy0YtREp8Q9+BVNo /t5IrfNjcemeQ+wu1+nyaGVyMR+JyKh1yy/GNZKS0MO6UoEPNZYzS5z//VM1DMFV 1LM= -----END CERTIFICATE-----Generated at Thu Oct 9 14:07:24 2025 by rpki-client