$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6166303a3a2f34342d3438203d3e20323035393431.roa File: 326130623a346530373a6166303a3a2f34342d3438203d3e20323035393431.roa (raw, json) Hash identifier: gAvnfENqTOZFeuxWI4M0Ew85ko6QLJBDxbZGFA8uVI0= Subject key identifier: 9F:44:E6:1B:38:5B:95:B2:57:46:44:1D:E3:0C:7B:B5:87:37:EA:62 Certificate issuer: /CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Certificate serial: 3158CB55973E6F0E9D72996A36DA5F7D98EEB572 Authority key identifier: 1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6166303a3a2f34342d3438203d3e20323035393431.roa Signing time: Wed 10 Sep 2025 15:52:21 +0000 ROA not before: Wed 10 Sep 2025 15:47:21 +0000 ROA not after: Wed 09 Sep 2026 15:52:21 +0000 asID: 205941 IP address blocks: 2a0b:4e07:af0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 18:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:58:cb:55:97:3e:6f:0e:9d:72:99:6a:36:da:5f:7d:98:ee:b5:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F65F1D375662B71E99A607509E1EE167C6058E9 Validity Not Before: Sep 10 15:47:21 2025 GMT Not After : Sep 9 15:52:21 2026 GMT Subject: CN=9F44E61B385B95B25746441DE30C7BB58737EA62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:55:b6:3b:96:88:bc:e0:0b:7b:ce:1e:d1:04: 8c:82:72:4a:78:1e:00:a4:6f:5f:66:e0:20:ba:21: 3e:ff:de:28:8b:bb:77:90:fa:be:2a:54:1b:82:f7: b5:c5:fd:d3:d9:e3:ee:3f:59:7a:bc:db:97:15:04: 66:86:c6:ae:89:de:0b:81:27:c9:b5:d1:d2:7b:a1: 75:7b:3a:2d:17:a3:6b:d9:ed:02:82:57:0f:4b:cf: d0:28:f7:20:ec:f9:6f:0d:c8:99:d1:de:9a:52:da: 86:c0:fd:7b:e4:db:cd:1a:de:2a:28:16:b6:9e:52: 6e:52:46:d0:8e:d9:57:37:64:bd:06:95:45:ae:3e: d9:86:62:74:eb:8d:af:29:29:d6:52:d1:7c:fa:0b: 19:f8:47:e4:8c:6e:8f:95:46:00:45:5d:70:be:4e: 88:f6:40:ff:94:42:aa:53:5a:f5:0b:fd:49:1d:ea: 47:65:1a:8f:2f:7c:78:a8:ba:76:b8:57:4a:ab:ec: c5:50:33:8d:61:83:9e:8b:96:31:07:18:f0:df:8c: c6:65:f6:5c:34:ef:be:a9:48:5a:9c:b8:fb:36:bf: d5:d2:01:c2:4f:aa:98:9e:03:76:da:58:e9:a4:50: 5b:2d:6f:b5:e8:2b:1b:2f:5b:55:c9:e9:1f:13:2b: df:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:44:E6:1B:38:5B:95:B2:57:46:44:1D:E3:0C:7B:B5:87:37:EA:62 X509v3 Authority Key Identifier: keyid:1F:65:F1:D3:75:66:2B:71:E9:9A:60:75:09:E1:EE:16:7C:60:58:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/1F65F1D375662B71E99A607509E1EE167C6058E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/1F65F1D375662B71E99A607509E1EE167C6058E9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/40d66d4d-5cd4-4337-8615-5b277f41d88f/1/326130623a346530373a6166303a3a2f34342d3438203d3e20323035393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:af0::/44 Signature Algorithm: sha256WithRSAEncryption 52:c4:b9:4e:b4:3a:b8:d9:68:b4:1f:6b:40:a0:80:40:29:db: ee:34:7c:ef:e2:91:7a:16:da:80:54:84:09:29:b2:17:43:78: ca:73:91:0e:bf:fe:fe:b3:3c:4b:13:b5:c2:fb:90:f7:1f:da: 62:73:fc:ce:06:4c:51:39:0c:bf:9c:a6:11:6f:18:ce:b5:5b: 30:fc:48:90:53:80:d4:0a:52:b6:c4:21:16:a5:d4:34:cb:e1: ff:8c:3e:14:03:d3:b4:00:75:4f:5b:34:80:c9:fc:9c:fd:15: 68:45:ef:39:e3:d2:53:7d:00:bf:66:86:4e:90:48:24:ef:24: 7d:78:5f:58:1e:76:fe:a3:bc:e7:eb:d9:a2:1c:71:3a:41:bb: 2d:af:59:77:19:01:42:1f:40:5d:bc:05:56:ed:c4:b8:9c:ac: 29:db:65:1e:4d:35:da:f7:6c:23:2e:93:77:ac:8b:d2:71:e7: 55:e1:e0:0d:ee:48:74:68:e3:86:8e:59:5a:00:e3:76:e6:97: 1a:6a:77:a7:5b:b1:67:ff:b8:44:5a:6b:1f:5b:02:88:26:84: ed:c2:ca:2a:16:0d:3c:16:90:07:f1:64:76:07:14:f2:95:53: e1:03:5d:03:2f:df:b1:b8:d3:cc:8b:85:ae:7c:bd:73:3f:63: f4:0f:d8:72 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUMVjLVZc+bw6dcplqNtpffZjutXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3 QzYwNThFOTAeFw0yNTA5MTAxNTQ3MjFaFw0yNjA5MDkxNTUyMjFaMDMxMTAvBgNV BAMTKDlGNDRFNjFCMzg1Qjk1QjI1NzQ2NDQxREUzMEM3QkI1ODczN0VBNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMVbY7loi84At7zh7RBIyCckp4 HgCkb19m4CC6IT7/3iiLu3eQ+r4qVBuC97XF/dPZ4+4/WXq825cVBGaGxq6J3guB J8m10dJ7oXV7Oi0Xo2vZ7QKCVw9Lz9Ao9yDs+W8NyJnR3ppS2obA/Xvk280a3ioo FraeUm5SRtCO2Vc3ZL0GlUWuPtmGYnTrja8pKdZS0Xz6Cxn4R+SMbo+VRgBFXXC+ Toj2QP+UQqpTWvUL/Ukd6kdlGo8vfHiouna4V0qr7MVQM41hg56LljEHGPDfjMZl 9lw0776pSFqcuPs2v9XSAcJPqpieA3baWOmkUFstb7XoKxsvW1XJ6R8TK9+LAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUn0TmGzhblbJXRkQd4wx7tYc36mIwHwYDVR0j BBgwFoAUH2Xx03VmK3HpmmB1CeHuFnxgWOkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQtNWNkNC00MzM3LTg2MTUtNWIyNzdmNDFk ODhmLzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYwNThFOS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvMUY2NUYxRDM3NTY2MkI3MUU5OUE2MDc1MDlFMUVFMTY3QzYw NThFOS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDBkNjZkNGQt NWNkNC00MzM3LTg2MTUtNWIyNzdmNDFkODhmLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTY2MzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMwMzUzOTM0MzEucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqC04HCvAwDQYJKoZIhvcNAQELBQADggEBAFLEuU60OrjZaLQfa0Cg gEAp2+40fO/ikXoW2oBUhAkpshdDeMpzkQ6//v6zPEsTtcL7kPcf2mJz/M4GTFE5 DL+cphFvGM61WzD8SJBTgNQKUrbEIRal1DTL4f+MPhQD07QAdU9bNIDJ/Jz9FWhF 7znj0lN9AL9mhk6QSCTvJH14X1gedv6jvOfr2aIccTpBuy2vWXcZAUIfQF28BVbt xLicrCnbZR5NNdr3bCMuk3esi9Jx51Xh4A3uSHRo44aOWVoA43bmlxpqd6dbsWf/ uERaax9bAogmhO3CyioWDTwWkAfxZHYHFPKVU+EDXQMv37G408yLha58vXM/Y/QP 2HI= -----END CERTIFICATE-----Generated at Thu Oct 9 07:45:11 2025 by rpki-client