$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a3a2f33322d3438203d3e20323135313437.roa File: 326130393a353463333a3a2f33322d3438203d3e20323135313437.roa (raw, json) Hash identifier: rX6vzQXSWJ20GAfFX6iU0A83kyXpBvMmAZasVOxzLts= Subject key identifier: C8:C4:84:25:A7:E6:52:90:3F:95:17:44:71:40:4D:80:AA:80:A1:3B Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 3146212579C0CA93532A0CC62E07CFD7F8B317C5 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a3a2f33322d3438203d3e20323135313437.roa Signing time: Thu 03 Jul 2025 19:40:41 +0000 ROA not before: Thu 03 Jul 2025 19:35:41 +0000 ROA not after: Thu 02 Jul 2026 19:40:41 +0000 asID: 215147 IP address blocks: 2a09:54c3::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:46:21:25:79:c0:ca:93:53:2a:0c:c6:2e:07:cf:d7:f8:b3:17:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Jul 3 19:35:41 2025 GMT Not After : Jul 2 19:40:41 2026 GMT Subject: CN=C8C48425A7E652903F95174471404D80AA80A13B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:85:98:3e:a5:39:49:7b:f9:35:4e:6e:47:a3: 8b:c7:16:5d:30:eb:03:06:7b:1b:c4:51:f7:a4:7a: 0a:b3:8f:33:39:f4:20:6a:72:ee:98:0b:5e:10:70: 43:86:98:81:56:0b:a7:0c:c6:1e:67:df:06:75:0d: 64:b2:9b:8e:ee:e4:ff:66:09:4e:45:b2:a8:ae:ef: da:a7:2c:ed:b8:a0:2e:ef:85:de:f5:94:65:96:4a: db:16:74:94:dd:f5:d3:a3:25:11:9f:dc:17:9d:89: 89:a7:7c:02:33:ad:d8:8f:3f:ea:4f:24:75:40:f9: 18:48:19:1c:c7:98:79:c9:08:e4:91:8a:76:fe:57: 99:f0:90:4e:3f:9c:34:bf:e8:c0:c5:2d:26:15:79: 37:53:30:4b:f6:8e:f1:87:d7:36:18:38:e6:64:6f: 7d:fa:40:84:17:35:b7:12:36:0b:d9:05:38:b6:fc: 16:c1:4f:89:49:33:b5:26:a5:24:93:28:f1:8f:00: ca:18:35:a8:0c:1d:57:f7:7f:82:ad:95:32:e7:bc: 06:bf:be:62:76:30:cc:8f:f2:2d:ca:c0:c0:9a:86: 28:1e:69:75:f2:59:38:39:4b:d1:f3:8e:7e:37:7e: 6b:16:64:60:19:87:be:61:a4:cc:33:74:1c:7b:76: 1b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C4:84:25:A7:E6:52:90:3F:95:17:44:71:40:4D:80:AA:80:A1:3B X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a3a2f33322d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3::/32 Signature Algorithm: sha256WithRSAEncryption 4d:40:b4:91:61:14:c8:71:03:f7:6a:b1:a6:7b:8b:0e:35:a2: b0:7d:1f:26:e3:a1:9b:99:e0:86:2e:a4:07:7f:99:85:48:e4: 12:f5:65:5b:fc:63:f8:b2:00:49:d3:8b:28:a0:12:c4:83:43: 7c:68:97:4e:41:28:89:59:45:6c:e0:c1:c4:59:85:b1:f6:a2: b4:c7:26:74:a6:d6:7a:76:0b:60:a5:5f:34:92:83:aa:e4:8b: b5:dd:4e:3d:55:21:df:a6:95:20:ac:30:16:09:94:20:32:28: 63:fc:de:96:ea:93:b4:f4:e9:c2:61:9c:36:75:65:6b:47:91: 97:16:ae:2b:af:80:8a:f1:40:82:e3:10:00:d1:b5:1a:bc:f7: f2:d5:c3:d7:f5:b7:93:7c:63:b7:e1:9c:a6:dd:94:47:ed:22: fa:31:18:08:93:77:95:c1:d2:3b:23:e1:08:9d:24:fb:1b:d2: 65:ba:cb:ef:fa:45:94:fa:b1:24:b0:e3:15:1b:7a:88:d9:50: 00:09:1f:4d:ae:06:b0:79:30:a7:4b:33:16:fd:1a:2e:d4:ea: ca:6c:0f:0e:8e:5c:44:a1:0b:e1:44:be:2d:ff:af:c1:da:d5: 99:b1:c2:95:93:a4:28:5f:c1:7e:1b:a1:38:40:ca:ad:97:f7: 83:9a:18:e8 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUMUYhJXnAypNTKgzGLgfP1/izF8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA3MDMxOTM1NDFaFw0yNjA3MDIxOTQwNDFaMDMxMTAvBgNV BAMTKEM4QzQ4NDI1QTdFNjUyOTAzRjk1MTc0NDcxNDA0RDgwQUE4MEExM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCchZg+pTlJe/k1Tm5Ho4vHFl0w 6wMGexvEUfekegqzjzM59CBqcu6YC14QcEOGmIFWC6cMxh5n3wZ1DWSym47u5P9m CU5Fsqiu79qnLO24oC7vhd71lGWWStsWdJTd9dOjJRGf3BediYmnfAIzrdiPP+pP JHVA+RhIGRzHmHnJCOSRinb+V5nwkE4/nDS/6MDFLSYVeTdTMEv2jvGH1zYYOOZk b336QIQXNbcSNgvZBTi2/BbBT4lJM7UmpSSTKPGPAMoYNagMHVf3f4KtlTLnvAa/ vmJ2MMyP8i3KwMCahigeaXXyWTg5S9Hzjn43fmsWZGAZh75hpMwzdBx7dhvrAgMB AAGjggJuMIICajAdBgNVHQ4EFgQUyMSEJafmUpA/lRdEcUBNgKqAoTswHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMTM1MzEzNDM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KglUwzANBgkqhkiG9w0BAQsFAAOCAQEATUC0kWEUyHED92qxpnuLDjWisH0fJuOh m5nghi6kB3+ZhUjkEvVlW/xj+LIASdOLKKASxINDfGiXTkEoiVlFbODBxFmFsfai tMcmdKbWenYLYKVfNJKDquSLtd1OPVUh36aVIKwwFgmUIDIoY/zeluqTtPTpwmGc NnVla0eRlxauK6+AivFAguMQANG1Grz38tXD1/W3k3xjt+Gcpt2UR+0i+jEYCJN3 lcHSOyPhCJ0k+xvSZbrL7/pFlPqxJLDjFRt6iNlQAAkfTa4GsHkwp0szFv0aLtTq ymwPDo5cRKEL4US+Lf+vwdrVmbHClZOkKF/BfhuhOEDKrZf3g5oY6A== -----END CERTIFICATE-----Generated at Sat Jul 5 13:10:21 2025 by rpki-client