$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a393030303a3a2f33362d3438203d3e20323131303636.roa File: 326130393a353463333a393030303a3a2f33362d3438203d3e20323131303636.roa (raw, json) Hash identifier: xreaSsj1MwZ82lmTtkcSGJaQcTRS3sQKh+9ELDbqOW0= Subject key identifier: 40:59:99:56:92:09:88:95:F4:E7:37:EF:60:06:2A:B8:40:76:83:C1 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 6A7B09B4E1CC4527D0AF3AEF51037142C757AC99 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a393030303a3a2f33362d3438203d3e20323131303636.roa Signing time: Thu 03 Jul 2025 19:40:41 +0000 ROA not before: Thu 03 Jul 2025 19:35:41 +0000 ROA not after: Thu 02 Jul 2026 19:40:41 +0000 asID: 211066 IP address blocks: 2a09:54c3:9000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:7b:09:b4:e1:cc:45:27:d0:af:3a:ef:51:03:71:42:c7:57:ac:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Jul 3 19:35:41 2025 GMT Not After : Jul 2 19:40:41 2026 GMT Subject: CN=4059995692098895F4E737EF60062AB8407683C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:34:d7:b2:4f:5f:46:ab:ab:5b:6d:e0:ef:27: 52:bf:35:ea:5d:d2:9c:e4:54:b6:ee:aa:4e:9d:fc: be:81:5f:33:c9:78:6d:3d:12:ef:2f:cc:11:ab:4f: 56:14:b8:6f:4b:39:a4:d1:89:10:0b:c3:8f:80:86: 6d:b2:65:da:6e:6d:de:5e:3d:a8:e2:67:2f:78:c9: eb:0c:5a:fe:07:96:6e:60:43:50:32:84:8a:45:7d: ea:51:7c:e9:50:06:89:db:6a:8d:63:c3:0e:2b:6a: 73:48:f9:04:36:dc:cc:eb:85:1b:f4:3f:47:98:c4: 75:4a:21:e0:ec:b5:62:fe:c2:5b:20:a0:59:e7:df: 8a:4f:1c:18:f2:80:84:7b:bd:9d:3a:a9:4b:01:fd: 7b:65:4f:2c:50:26:5a:2b:de:f8:21:44:eb:eb:44: f5:72:ab:66:08:29:3a:5b:15:ed:55:b4:ae:89:50: 1c:1b:65:63:f3:f0:f5:9a:55:2a:64:1b:49:05:c6: f3:78:91:dc:e4:cf:a0:fb:77:a5:1a:cf:71:a9:5e: 92:9a:6b:c5:26:85:ad:52:e0:07:4a:19:23:30:c0: a2:d7:2e:35:3a:9a:8a:58:93:a1:c4:b4:20:68:f7: 99:d6:b7:b6:65:d8:fc:71:97:61:9e:2d:4e:6b:23: d6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:59:99:56:92:09:88:95:F4:E7:37:EF:60:06:2A:B8:40:76:83:C1 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a393030303a3a2f33362d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:9000::/36 Signature Algorithm: sha256WithRSAEncryption 55:38:b8:a5:4a:18:24:c1:a0:cb:f9:70:58:5e:be:92:e6:25: 33:e6:4f:22:75:7e:51:1b:62:d1:ee:55:9a:34:4d:e9:23:46: 57:76:f7:c4:b1:79:da:9c:00:fb:af:9b:6c:3a:bd:0a:02:6e: 35:a2:91:d1:62:48:60:76:58:59:43:ef:93:a0:25:9c:c0:02: 0d:82:e3:de:85:2b:49:78:64:f0:8b:68:a6:1d:6f:05:c5:f9: 57:d8:2e:8d:3f:02:55:19:15:30:83:ff:24:1f:8f:0b:11:b4: ce:3a:a7:a5:b1:db:c7:17:07:30:ba:d8:17:a1:98:c6:df:97: 21:95:48:8f:25:a9:e3:05:ae:81:24:d2:58:28:65:bb:1f:c2: 5c:d2:46:18:d2:78:3b:f7:8d:73:bd:a9:12:46:92:5a:ea:3c: 92:f2:74:7b:21:3e:c3:a8:3c:e8:1f:60:a8:e9:14:f5:7d:cc: fe:65:7a:25:55:4c:e8:0e:f3:90:df:55:4b:88:6e:a7:49:a7: 49:f3:53:a2:c3:b5:5a:be:e3:38:bd:7c:89:09:2b:df:75:f6: 3e:0b:7f:ad:88:ae:3c:7e:82:da:26:e6:3d:4d:fc:f1:44:38: 30:bb:09:d1:ab:34:b6:02:79:3e:10:40:82:86:76:45:35:eb: eb:77:fb:dd -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUansJtOHMRSfQrzrvUQNxQsdXrJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA3MDMxOTM1NDFaFw0yNjA3MDIxOTQwNDFaMDMxMTAvBgNV BAMTKDQwNTk5OTU2OTIwOTg4OTVGNEU3MzdFRjYwMDYyQUI4NDA3NjgzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkNNeyT19Gq6tbbeDvJ1K/Nepd 0pzkVLbuqk6d/L6BXzPJeG09Eu8vzBGrT1YUuG9LOaTRiRALw4+Ahm2yZdpubd5e PajiZy94yesMWv4Hlm5gQ1AyhIpFfepRfOlQBonbao1jww4ranNI+QQ23MzrhRv0 P0eYxHVKIeDstWL+wlsgoFnn34pPHBjygIR7vZ06qUsB/XtlTyxQJlor3vghROvr RPVyq2YIKTpbFe1VtK6JUBwbZWPz8PWaVSpkG0kFxvN4kdzkz6D7d6Uaz3GpXpKa a8Umha1S4AdKGSMwwKLXLjU6mopYk6HEtCBo95nWt7Zl2Pxxl2GeLU5rI9Z3AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUQFmZVpIJiJX05zfvYAYquEB2g8EwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzOTMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMyMzEzMTMwMzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMOQMA0GCSqGSIb3DQEBCwUAA4IBAQBVOLilShgkwaDL+XBY Xr6S5iUz5k8idX5RG2LR7lWaNE3pI0ZXdvfEsXnanAD7r5tsOr0KAm41opHRYkhg dlhZQ++ToCWcwAINguPehStJeGTwi2imHW8FxflX2C6NPwJVGRUwg/8kH48LEbTO OqelsdvHFwcwutgXoZjG35chlUiPJanjBa6BJNJYKGW7H8Jc0kYY0ng7941zvakS RpJa6jyS8nR7IT7DqDzoH2Co6RT1fcz+ZXolVUzoDvOQ31VLiG6nSadJ81Oiw7Va vuM4vXyJCSvfdfY+C3+tiK48foLaJuY9TfzxRDgwuwnRqzS2Ank+EECChnZFNevr d/vd -----END CERTIFICATE-----Generated at Sat Jul 5 13:20:28 2025 by rpki-client