$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/5/326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa File: 326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa (raw, json) Hash identifier: uF8QCN8jX1S8vPb+j6CiYDy604ujJKGOHIcdENgsozA= Subject key identifier: 5E:9A:50:C8:97:B3:11:83:3A:DB:68:6C:04:66:62:5A:9B:F2:79:3D Certificate issuer: /CN=7C4E2571D39535EB83B4BDD4E4668A2D2C177631 Certificate serial: 1339485D0A13FA57BB978F42C563B3ABB29FED75 Authority key identifier: 7C:4E:25:71:D3:95:35:EB:83:B4:BD:D4:E4:66:8A:2D:2C:17:76:31 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/7C4E2571D39535EB83B4BDD4E4668A2D2C177631.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/5/326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa Signing time: Fri 04 Jul 2025 10:19:18 +0000 ROA not before: Fri 04 Jul 2025 10:14:18 +0000 ROA not after: Fri 03 Jul 2026 10:19:18 +0000 asID: 214393 IP address blocks: 2a0a:6044:8ff0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/5/7C4E2571D39535EB83B4BDD4E4668A2D2C177631.crl rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/5/7C4E2571D39535EB83B4BDD4E4668A2D2C177631.mft rsync://krill.47272.net/repo/HYEHOST/5/7C4E2571D39535EB83B4BDD4E4668A2D2C177631.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 21:20:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:39:48:5d:0a:13:fa:57:bb:97:8f:42:c5:63:b3:ab:b2:9f:ed:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4E2571D39535EB83B4BDD4E4668A2D2C177631 Validity Not Before: Jul 4 10:14:18 2025 GMT Not After : Jul 3 10:19:18 2026 GMT Subject: CN=5E9A50C897B311833ADB686C0466625A9BF2793D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:79:a2:e1:f9:58:f2:c1:21:f0:da:a1:8e:20: d3:35:40:f9:0e:d1:50:25:6b:3e:e4:0b:81:c8:bb: 40:d6:37:7c:d9:c8:e6:f6:a3:ae:cb:b4:31:0d:3a: ab:81:6b:2c:be:55:55:43:ac:f9:93:5a:aa:0c:e6: 06:a5:7b:45:66:00:2f:a1:d1:46:60:02:78:c4:b6: 84:bf:e4:c3:d6:61:f7:86:7f:ac:59:a0:34:8b:d3: 1d:92:2d:a7:13:fc:7e:05:d8:0f:24:1d:31:08:33: 85:86:ea:5e:8c:76:8c:d0:a1:42:9d:9d:68:42:74: 33:a0:5d:62:fc:2e:d2:b7:aa:70:29:3f:88:dc:78: c8:c7:61:4f:fc:d1:1b:6f:48:4a:5e:14:84:bf:f7: 17:ec:d1:c0:8f:8a:00:a6:fc:6e:e4:ce:56:7c:fd: b5:94:51:d7:64:66:84:9b:92:7e:4f:f1:33:60:dc: c2:78:2d:25:c1:cf:8b:0a:ad:6f:e5:7d:bb:63:3c: 47:da:79:26:28:b6:a2:a7:bf:bb:ee:8a:a3:c0:86: cc:0e:93:f5:31:ac:b0:28:41:53:28:59:7c:37:69: ef:1d:a1:ca:f9:6b:0d:a7:4e:ed:a3:22:6e:66:6a: 22:6b:e0:52:b2:e8:b7:e2:d1:6e:d9:56:01:7b:96: a9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9A:50:C8:97:B3:11:83:3A:DB:68:6C:04:66:62:5A:9B:F2:79:3D X509v3 Authority Key Identifier: keyid:7C:4E:25:71:D3:95:35:EB:83:B4:BD:D4:E4:66:8A:2D:2C:17:76:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/5/7C4E2571D39535EB83B4BDD4E4668A2D2C177631.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/7C4E2571D39535EB83B4BDD4E4668A2D2C177631.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/5/326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:8ff0::/44 Signature Algorithm: sha256WithRSAEncryption 56:08:d8:75:a0:40:d4:fc:d5:66:de:f4:ac:c6:54:e1:7a:bc: e1:8c:bb:bd:af:fd:20:87:b8:be:90:fa:e7:a2:3e:a3:c3:90: 25:82:f3:3a:3b:74:a7:a1:f7:71:82:1b:fb:cf:00:4e:76:c9: 6a:a7:b6:88:43:a0:56:93:2e:9b:9f:71:41:b6:fa:56:46:c9: 57:15:fc:15:bc:66:75:37:6d:eb:60:de:7e:87:1f:7a:88:58: 24:01:2e:24:3d:2a:df:9e:5d:a9:1f:93:a3:e5:75:57:3c:ac: 36:c1:11:d7:29:69:37:2b:c5:2a:33:a1:02:4e:a4:21:9b:83: 6b:a8:ca:0c:4f:a2:a2:a7:c0:ac:79:13:58:43:15:b0:6d:08: a0:a8:dc:3f:1f:e5:61:3e:0a:99:c5:8b:8c:98:d4:fe:65:06: ea:1c:81:2e:69:57:66:c3:65:57:08:e8:bf:58:31:c7:5b:c4: f1:15:9e:c2:ac:e3:1a:a2:dd:37:66:4b:8d:f3:24:f7:72:89: a8:3c:d8:94:6e:19:22:e6:80:da:7e:77:68:40:a8:2a:1f:34: c6:40:14:b0:a5:96:36:59:c9:14:bc:15:dd:78:41:b7:6c:46: ca:82:ab:f4:68:c7:61:69:bd:c1:12:56:da:21:ab:3d:8c:4a: 53:d4:2f:5f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUEzlIXQoT+le7l49CxWOzq7Kf7XUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0RTI1NzFEMzk1MzVFQjgzQjRCREQ0RTQ2NjhBMkQy QzE3NzYzMTAeFw0yNTA3MDQxMDE0MThaFw0yNjA3MDMxMDE5MThaMDMxMTAvBgNV BAMTKDVFOUE1MEM4OTdCMzExODMzQURCNjg2QzA0NjY2MjVBOUJGMjc5M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIeaLh+VjywSHw2qGOINM1QPkO 0VAlaz7kC4HIu0DWN3zZyOb2o67LtDENOquBayy+VVVDrPmTWqoM5gale0VmAC+h 0UZgAnjEtoS/5MPWYfeGf6xZoDSL0x2SLacT/H4F2A8kHTEIM4WG6l6MdozQoUKd nWhCdDOgXWL8LtK3qnApP4jceMjHYU/80RtvSEpeFIS/9xfs0cCPigCm/G7kzlZ8 /bWUUddkZoSbkn5P8TNg3MJ4LSXBz4sKrW/lfbtjPEfaeSYotqKnv7vuiqPAhswO k/UxrLAoQVMoWXw3ae8docr5aw2nTu2jIm5maiJr4FKy6Lfi0W7ZVgF7lqnXAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUXppQyJezEYM622hsBGZiWpvyeT0wHwYDVR0j BBgwFoAUfE4lcdOVNeuDtL3U5GaKLSwXdjEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDkxYTQzYmMtNzZlYy00YWJlLWJhN2QtZTczZTkwZDY2 MmNiLzUvN0M0RTI1NzFEMzk1MzVFQjgzQjRCREQ0RTQ2NjhBMkQyQzE3NzYzMS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS83QzRFMjU3MUQzOTUzNUVCODNCNEJERDRF NDY2OEEyRDJDMTc3NjMxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80OTFhNDNiYy03NmVjLTRhYmUtYmE3ZC1lNzNlOTBkNjYyY2IvNS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM4NjY2NjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzMzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgpgRI/wMA0GCSqGSIb3DQEBCwUAA4IBAQBW CNh1oEDU/NVm3vSsxlTherzhjLu9r/0gh7i+kPrnoj6jw5AlgvM6O3Snofdxghv7 zwBOdslqp7aIQ6BWky6bn3FBtvpWRslXFfwVvGZ1N23rYN5+hx96iFgkAS4kPSrf nl2pH5Oj5XVXPKw2wRHXKWk3K8UqM6ECTqQhm4NrqMoMT6Kip8CseRNYQxWwbQig qNw/H+VhPgqZxYuMmNT+ZQbqHIEuaVdmw2VXCOi/WDHHW8TxFZ7CrOMaot03ZkuN 8yT3comoPNiUbhki5oDafndoQKgqHzTGQBSwpZY2WckUvBXdeEG3bEbKgqv0aMdh ab3BElbaIas9jEpT1C9f -----END CERTIFICATE-----Generated at Sat Jul 5 11:51:08 2025 by rpki-client