$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa File: 326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa (raw, json) Hash identifier: g2V7/Odqg6xTNp3Sf8351AC7nqStdO7EU3BP8XPdgtg= Subject key identifier: E8:B8:75:FD:14:0D:01:22:97:58:E8:92:33:C2:4A:F9:CC:5E:D7:18 Certificate issuer: /CN=050C4BF608C9D558DB4A44BBED5A23D005379356 Certificate serial: 72D6CD4176012CD0032863B70CECBE18BE1E286C Authority key identifier: 05:0C:4B:F6:08:C9:D5:58:DB:4A:44:BB:ED:5A:23:D0:05:37:93:56 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa Signing time: Mon 30 Jun 2025 00:40:01 +0000 ROA not before: Mon 30 Jun 2025 00:35:01 +0000 ROA not after: Mon 29 Jun 2026 00:40:01 +0000 asID: 215147 IP address blocks: 2a09:54c3:a04e::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/050C4BF608C9D558DB4A44BBED5A23D005379356.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/050C4BF608C9D558DB4A44BBED5A23D005379356.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 02 Jul 2025 23:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d6:cd:41:76:01:2c:d0:03:28:63:b7:0c:ec:be:18:be:1e:28:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=050C4BF608C9D558DB4A44BBED5A23D005379356 Validity Not Before: Jun 30 00:35:01 2025 GMT Not After : Jun 29 00:40:01 2026 GMT Subject: CN=E8B875FD140D01229758E89233C24AF9CC5ED718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6f:6c:99:fd:e7:e9:29:da:af:c0:50:03:fe: fd:47:86:e6:20:f0:c6:78:dd:e1:49:da:33:ed:69: ca:46:33:ab:31:20:ba:a4:f4:7e:64:ba:dc:3f:fc: 6e:49:c9:c7:0e:10:99:eb:0a:4b:bc:3b:9c:db:ae: a9:dc:d1:69:04:4b:df:de:33:90:c9:33:d3:a9:79: c7:42:92:28:62:c2:0f:7e:31:07:c1:7c:56:ac:90: cc:fc:52:4a:f9:7a:24:7c:a4:75:33:65:46:8a:24: 6d:7a:c1:fa:74:fa:cc:a4:97:98:6f:6a:07:67:97: 39:11:34:97:98:ef:d0:49:bc:75:cf:f3:8a:7b:62: 0c:46:48:d6:e4:8e:34:6d:c9:0f:fb:4f:98:d7:00: 35:ae:e4:d5:a5:c5:39:ed:69:a2:8f:08:b6:4b:aa: c7:49:5e:09:6e:5e:4b:d2:3a:2b:5d:c8:3a:84:5a: d9:35:3c:d3:74:c8:d1:58:17:00:69:45:f9:fa:33: 00:dc:2e:42:e5:5c:a2:39:47:34:23:b0:1a:8b:d1: 9e:73:c8:e8:92:35:aa:8a:a4:84:8d:6c:76:93:f1: fd:47:f0:b0:e1:d1:98:e6:63:cc:f9:a9:88:55:1b: ed:d1:e0:49:bd:4d:67:7e:37:55:a3:40:a3:46:9d: 72:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B8:75:FD:14:0D:01:22:97:58:E8:92:33:C2:4A:F9:CC:5E:D7:18 X509v3 Authority Key Identifier: keyid:05:0C:4B:F6:08:C9:D5:58:DB:4A:44:BB:ED:5A:23:D0:05:37:93:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/050C4BF608C9D558DB4A44BBED5A23D005379356.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:a04e::/48 Signature Algorithm: sha256WithRSAEncryption 87:7d:64:b5:24:89:df:4d:e5:56:eb:dc:70:02:4f:08:20:14: fd:48:41:42:f6:1c:5c:48:db:fa:5a:de:e0:7b:7a:0d:41:62: 0b:10:e4:4e:cd:02:49:d0:5f:e4:a1:01:00:34:49:b6:01:f8: 40:8e:ef:6f:e6:fb:4d:b1:a6:5b:45:14:14:34:59:0a:f8:ea: bc:68:a1:ab:0f:0f:58:9d:f8:0e:7d:73:4f:6e:ac:a8:80:53: 2b:58:78:96:1f:d0:b1:f2:34:45:30:50:46:2d:28:27:33:e3: 34:12:20:ef:53:91:63:4e:83:2e:e5:95:1c:19:50:d1:79:61: c0:7d:74:35:93:7f:d1:de:2c:e4:09:eb:64:ec:86:6d:a0:ef: 61:9d:8c:cc:29:09:3c:48:57:f9:a1:48:c4:cf:37:2a:14:b2: 43:96:ff:c6:89:9c:63:e5:f1:c5:04:99:ae:32:a8:15:7f:ab: 68:df:08:06:6b:6c:a1:76:69:ed:e1:a1:16:59:a2:a7:a8:46: c8:e8:eb:4d:ae:51:df:3b:0f:cd:22:ff:d8:fb:5f:80:44:68: 26:21:5b:24:d0:50:15:28:bc:5c:3c:b8:1b:5e:a1:fa:d7:8b: 3d:3c:00:79:03:b9:b2:34:ab:eb:66:c6:e7:14:cd:6d:d1:c4: 18:bc:89:78 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUctbNQXYBLNADKGO3DOy+GL4eKGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDUwQzRCRjYwOEM5RDU1OERCNEE0NEJCRUQ1QTIzRDAw NTM3OTM1NjAeFw0yNTA2MzAwMDM1MDFaFw0yNjA2MjkwMDQwMDFaMDMxMTAvBgNV BAMTKEU4Qjg3NUZEMTQwRDAxMjI5NzU4RTg5MjMzQzI0QUY5Q0M1RUQ3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+b2yZ/efpKdqvwFAD/v1HhuYg 8MZ43eFJ2jPtacpGM6sxILqk9H5kutw//G5JyccOEJnrCku8O5zbrqnc0WkES9/e M5DJM9OpecdCkihiwg9+MQfBfFaskMz8Ukr5eiR8pHUzZUaKJG16wfp0+sykl5hv agdnlzkRNJeY79BJvHXP84p7YgxGSNbkjjRtyQ/7T5jXADWu5NWlxTntaaKPCLZL qsdJXgluXkvSOitdyDqEWtk1PNN0yNFYFwBpRfn6MwDcLkLlXKI5RzQjsBqL0Z5z yOiSNaqKpISNbHaT8f1H8LDh0ZjmY8z5qYhVG+3R4Em9TWd+N1WjQKNGnXLJAgMB AAGjggJ8MIICeDAdBgNVHQ4EFgQU6Lh1/RQNASKXWOiSM8JK+cxe1xgwHwYDVR0j BBgwFoAUBQxL9gjJ1VjbSkS77Voj0AU3k1YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzQvMDUwQzRCRjYwOEM5RDU1OERCNEE0NEJCRUQ1QTIzRDAwNTM3OTM1Ni5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMDUwQzRCRjYwOEM5RDU1OERCNEE0NEJCRUQ1QTIzRDAwNTM3 OTM1Ni5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzQvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2MTMwMzQ2NTNhM2EyZjM0MzgyZDMxMzIzODIwM2QzZTIwMzIzMTM1MzEzNDM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcAKglUw6BOMA0GCSqGSIb3DQEBCwUAA4IBAQCHfWS1JInfTeVW 69xwAk8IIBT9SEFC9hxcSNv6Wt7ge3oNQWILEOROzQJJ0F/koQEANEm2AfhAju9v 5vtNsaZbRRQUNFkK+Oq8aKGrDw9YnfgOfXNPbqyogFMrWHiWH9Cx8jRFMFBGLSgn M+M0EiDvU5FjToMu5ZUcGVDReWHAfXQ1k3/R3izkCetk7IZtoO9hnYzMKQk8SFf5 oUjEzzcqFLJDlv/GiZxj5fHFBJmuMqgVf6to3wgGa2yhdmnt4aEWWaKnqEbI6OtN rlHfOw/NIv/Y+1+ARGgmIVsk0FAVKLxcPLgbXqH614s9PAB5A7myNKvrZsbnFM1t 0cQYvIl4 -----END CERTIFICATE-----Generated at Wed Jul 2 06:04:43 2025 by rpki-client