$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386630303a3a2f34302d3438203d3e20323135343030.roa File: 326130363a313238333a386630303a3a2f34302d3438203d3e20323135343030.roa (raw, json) Hash identifier: vL69GiNyTYYwFZpGgx32SlQ/WSepnbtpAqumAaaHZAU= Subject key identifier: 4D:D0:20:CD:03:59:51:40:FE:F1:C5:C1:FE:33:AC:17:83:56:4A:94 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 0CC3401C55B346D55ED7E70BE5C199D014CD80C0 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386630303a3a2f34302d3438203d3e20323135343030.roa Signing time: Sat 07 Jun 2025 18:13:41 +0000 ROA not before: Sat 07 Jun 2025 18:08:41 +0000 ROA not after: Sat 06 Jun 2026 18:13:41 +0000 asID: 215400 IP address blocks: 2a06:1283:8f00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 10:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c3:40:1c:55:b3:46:d5:5e:d7:e7:0b:e5:c1:99:d0:14:cd:80:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Jun 7 18:08:41 2025 GMT Not After : Jun 6 18:13:41 2026 GMT Subject: CN=4DD020CD03595140FEF1C5C1FE33AC1783564A94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:66:32:34:19:a2:c0:cb:95:8c:b5:76:36:19: 00:85:03:ad:82:56:06:58:dd:9e:53:1e:02:0c:42: 5e:49:8a:1f:6e:59:c0:a3:93:b0:bf:ad:b9:93:bf: 85:46:bb:ed:eb:96:a0:09:ea:60:66:8a:02:80:47: 50:71:4f:c3:49:d1:38:c8:3f:65:7f:c8:33:d2:cd: 48:04:f2:2f:6a:e5:0b:a5:3f:8c:be:24:27:f7:8c: 71:9a:e9:df:35:2c:43:9f:41:c1:cc:0a:09:60:22: 2d:05:a7:2e:d4:7b:8e:31:64:61:0d:fb:97:bb:d2: cc:5f:f9:ff:ac:69:a2:42:94:aa:2b:29:1a:0e:23: 08:0a:79:58:2c:50:1b:3f:82:25:6f:b3:7a:2d:ad: 70:19:b2:10:df:6f:cb:39:b3:14:60:c9:fd:44:c6: 54:ad:ad:e9:3f:1d:92:a6:f0:f7:1a:80:49:61:f0: 70:56:89:0c:a5:e9:16:3c:18:8c:52:22:77:60:4d: 40:2a:4a:30:c4:db:9a:a6:06:f7:ec:b8:9d:46:0c: 9f:ac:05:2b:22:7b:ae:08:17:0b:59:42:e9:23:04: 93:99:b0:48:d3:4e:99:fd:6b:cd:1e:2a:c3:22:43: f1:71:02:07:ae:41:df:f4:9c:48:f3:ec:b5:69:d3: ed:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D0:20:CD:03:59:51:40:FE:F1:C5:C1:FE:33:AC:17:83:56:4A:94 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386630303a3a2f34302d3438203d3e20323135343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8f00::/40 Signature Algorithm: sha256WithRSAEncryption 80:2c:f9:bb:68:13:93:a7:f3:7c:4c:cf:40:3b:ee:15:2a:98: 9b:48:bf:25:5c:23:08:76:02:64:87:72:16:01:e1:8e:37:9a: 9a:c2:fc:80:9b:5e:91:5a:ff:bf:56:6a:51:bf:54:e4:f5:73: c6:64:41:2b:13:79:f4:03:9d:1a:f6:21:12:4c:51:5b:31:85: 02:52:f0:48:be:c8:a8:f8:c2:27:fb:ea:3b:5f:dd:4f:57:50: fa:a4:78:ae:08:11:dd:ee:96:25:23:a3:6c:b2:59:26:aa:55: 08:2e:01:53:e2:da:09:3b:de:fe:0c:47:bc:91:5a:5d:c1:15: 4b:ce:66:f9:64:df:96:97:1a:91:68:c6:0e:14:3e:73:8b:90: da:5a:36:37:f8:dd:27:ed:10:cd:3e:aa:8e:11:c2:f5:bb:22: 0e:96:2b:67:0c:ed:dd:c5:c5:f7:c0:4d:6c:bb:37:a6:cf:d0: a2:64:da:ce:a2:15:05:39:39:05:56:dc:7c:4b:5d:c7:ef:b8: 70:0c:75:8d:66:66:49:e6:be:7f:1b:6b:38:3f:8f:b6:8f:5d: 4f:1b:f5:5f:cc:11:e1:9a:62:8a:0f:db:27:41:dc:aa:00:1d: f2:c6:e6:93:e4:d4:be:f7:12:cd:14:d6:ee:86:2d:ae:db:cc: 4d:88:6f:a8 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUDMNAHFWzRtVe1+cL5cGZ0BTNgMAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNTA2MDcxODA4NDFaFw0yNjA2MDYxODEzNDFaMDMxMTAvBgNV BAMTKDRERDAyMENEMDM1OTUxNDBGRUYxQzVDMUZFMzNBQzE3ODM1NjRBOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChZjI0GaLAy5WMtXY2GQCFA62C VgZY3Z5THgIMQl5Jih9uWcCjk7C/rbmTv4VGu+3rlqAJ6mBmigKAR1BxT8NJ0TjI P2V/yDPSzUgE8i9q5QulP4y+JCf3jHGa6d81LEOfQcHMCglgIi0Fpy7Ue44xZGEN +5e70sxf+f+saaJClKorKRoOIwgKeVgsUBs/giVvs3otrXAZshDfb8s5sxRgyf1E xlStrek/HZKm8PcagElh8HBWiQyl6RY8GIxSIndgTUAqSjDE25qmBvfsuJ1GDJ+s BSsie64IFwtZQukjBJOZsEjTTpn9a80eKsMiQ/FxAgeuQd/0nEjz7LVp0+0JAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUTdAgzQNZUUD+8cXB/jOsF4NWSpQwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjYzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM1MzQzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgYSg48wDQYJKoZIhvcNAQELBQADggEBAIAs +btoE5On83xMz0A77hUqmJtIvyVcIwh2AmSHchYB4Y43mprC/ICbXpFa/79WalG/ VOT1c8ZkQSsTefQDnRr2IRJMUVsxhQJS8Ei+yKj4wif76jtf3U9XUPqkeK4IEd3u liUjo2yyWSaqVQguAVPi2gk73v4MR7yRWl3BFUvOZvlk35aXGpFoxg4UPnOLkNpa Njf43SftEM0+qo4RwvW7Ig6WK2cM7d3FxffATWy7N6bP0KJk2s6iFQU5OQVW3HxL XcfvuHAMdY1mZknmvn8bazg/j7aPXU8b9V/MEeGaYooP2ydB3KoAHfLG5pPk1L73 Es0U1u6GLa7bzE2Ib6g= -----END CERTIFICATE-----Generated at Sun Jun 8 04:01:50 2025 by rpki-client