$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa File: 326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa (raw, json) Hash identifier: HTS/ralW17W7pd9ogD55n1iySkhik1sPp/mEd7cNjPA= Subject key identifier: 04:A5:1D:4A:8C:E1:64:67:BB:18:2A:56:BA:F7:59:1F:6D:5E:FC:6D Certificate issuer: /CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Certificate serial: 2DBDBB6AB758246E50F019B477C38B7C07600C6D Authority key identifier: 1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa Signing time: Tue 09 Sep 2025 15:16:21 +0000 ROA not before: Tue 09 Sep 2025 15:11:21 +0000 ROA not after: Tue 08 Sep 2026 15:16:21 +0000 asID: 213413 IP address blocks: 2a0b:4e07:a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 22:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:bd:bb:6a:b7:58:24:6e:50:f0:19:b4:77:c3:8b:7c:07:60:0c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Validity Not Before: Sep 9 15:11:21 2025 GMT Not After : Sep 8 15:16:21 2026 GMT Subject: CN=04A51D4A8CE16467BB182A56BAF7591F6D5EFC6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fb:6e:ab:46:bc:4c:fd:60:f2:cc:13:9c:d4: 7a:46:b8:bb:a9:5f:1e:b8:09:80:0d:6b:33:92:cc: a5:66:88:27:c4:27:96:c7:b2:66:f6:e0:65:e1:4f: d3:03:24:d9:23:de:de:e1:68:41:5e:4b:fa:bb:62: 79:99:83:82:f7:e7:78:c6:7c:7e:b8:7a:39:31:c5: 93:0e:16:77:81:b9:fc:b2:ed:d3:c2:6e:f5:28:d2: 89:c0:29:b9:15:17:cb:15:1b:91:e8:5c:e1:10:b2: 9b:45:6e:2d:3b:83:d7:2a:92:45:22:b6:87:d6:fd: f0:29:82:cd:c0:3a:a6:57:37:5f:cf:be:46:f0:8f: 2b:d0:48:4b:f4:da:e1:62:ac:f3:c3:c4:9b:7a:59: db:dc:e4:78:2f:01:bd:4a:c4:26:9c:6e:8c:5b:24: f3:ff:b2:df:a7:bd:7e:de:41:4d:e8:0e:33:aa:55: 63:2a:32:35:ff:24:f7:21:f5:5a:bf:f1:a1:4e:47: 4f:11:c5:cd:d7:ba:30:4c:9a:be:d8:9b:54:70:1e: eb:4d:d5:38:c7:94:2c:b6:2c:c6:38:23:78:70:4d: d5:eb:92:2f:3c:9a:88:14:41:23:f6:93:96:99:99: 12:d0:e5:26:15:fa:83:9a:c7:fe:4a:9d:de:b2:b2: 49:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A5:1D:4A:8C:E1:64:67:BB:18:2A:56:BA:F7:59:1F:6D:5E:FC:6D X509v3 Authority Key Identifier: keyid:1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a80::/48 Signature Algorithm: sha256WithRSAEncryption 5d:13:86:70:10:06:2a:c9:69:09:78:32:b2:9e:cf:bd:b2:ea: b0:0c:46:60:2c:91:06:61:db:ad:42:c3:34:75:10:ac:ba:13: 7b:0c:af:7d:06:73:fc:01:e0:92:7d:e3:6a:05:01:fb:a5:44: 73:f8:50:63:bb:ef:35:dc:ad:18:f1:a1:d4:e5:17:d3:a8:e0: d8:42:98:6f:5f:5d:96:33:2d:92:72:c8:85:33:c6:4f:0e:eb: 00:9a:85:1d:14:30:bb:1a:5d:9b:71:75:ea:18:56:dd:6a:27: 9d:7f:36:cb:01:4e:2d:b5:08:cf:a6:0d:bf:9f:b1:02:72:12: 96:6b:75:70:86:f4:2d:d7:e2:e3:b1:d6:41:b7:c4:d4:b4:cf: 92:61:db:e3:f9:84:02:8c:e1:93:a9:b5:8e:1d:be:87:44:02: 06:50:9f:37:47:70:d7:a9:b6:1d:53:bb:c6:a8:6b:33:ab:6f: 4b:4e:a0:96:cd:aa:12:87:bd:87:89:40:61:79:56:06:df:f2: 95:93:a3:9d:a2:88:68:c3:e9:c1:2e:80:58:fb:6b:44:82:82: 61:34:a0:dc:7a:7b:53:c2:d9:1e:0c:6f:d3:42:54:18:42:60: 60:e7:33:ec:28:a7:ae:f8:6a:43:a4:6b:ce:10:af:5e:52:c8: 37:86:cd:fa -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIULb27ardYJG5Q8Bm0d8OLfAdgDG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3 QzYwNThFOTAeFw0yNTA5MDkxNTExMjFaFw0yNjA5MDgxNTE2MjFaMDMxMTAvBgNV BAMTKDA0QTUxRDRBOENFMTY0NjdCQjE4MkE1NkJBRjc1OTFGNkQ1RUZDNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU+26rRrxM/WDyzBOc1HpGuLup Xx64CYANazOSzKVmiCfEJ5bHsmb24GXhT9MDJNkj3t7haEFeS/q7YnmZg4L353jG fH64ejkxxZMOFneBufyy7dPCbvUo0onAKbkVF8sVG5HoXOEQsptFbi07g9cqkkUi tofW/fApgs3AOqZXN1/PvkbwjyvQSEv02uFirPPDxJt6Wdvc5HgvAb1KxCacboxb JPP/st+nvX7eQU3oDjOqVWMqMjX/JPch9Vq/8aFOR08Rxc3XujBMmr7Ym1RwHutN 1TjHlCy2LMY4I3hwTdXrki88mogUQSP2k5aZmRLQ5SYV+oOax/5Knd6ysknBAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUBKUdSozhZGe7GCpWuvdZH21e/G0wHwYDVR0j BBgwFoAUH2Xx03VmK3HpmmB1CeHuFnxgWOkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQtNWNkNC00MzM3LTg2MTUtNWIyNzdmNDFk ODhmLzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYwNThFOS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYw NThFOS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQt NWNkNC00MzM3LTg2MTUtNWIyNzdmNDFkODhmLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTM4MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzMzNDMxMzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqC04HCoAwDQYJKoZIhvcNAQELBQADggEBAF0ThnAQBirJaQl4MrKe z72y6rAMRmAskQZh261CwzR1EKy6E3sMr30Gc/wB4JJ942oFAfulRHP4UGO77zXc rRjxodTlF9Oo4NhCmG9fXZYzLZJyyIUzxk8O6wCahR0UMLsaXZtxdeoYVt1qJ51/ NssBTi21CM+mDb+fsQJyEpZrdXCG9C3X4uOx1kG3xNS0z5Jh2+P5hAKM4ZOptY4d vodEAgZQnzdHcNepth1Tu8aoazOrb0tOoJbNqhKHvYeJQGF5Vgbf8pWTo52iiGjD 6cEugFj7a0SCgmE0oNx6e1PC2R4Mb9NCVBhCYGDnM+wop674akOka84Qr15SyDeG zfo= -----END CERTIFICATE-----Generated at Thu Oct 9 14:09:02 2025 by rpki-client