$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa File: 326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa (raw, json) Hash identifier: GH83eDe//hcaMVN87KsBg/jtnZ6QkAS9lVFTAdZjD+s= Subject key identifier: B5:9C:09:35:0B:ED:06:4D:D3:52:DE:30:4A:90:85:BE:F9:1E:01:60 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 2C8B4C09E16014956D21E20E578C7F2CE909AA21 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa Signing time: Thu 03 Jul 2025 19:40:42 +0000 ROA not before: Thu 03 Jul 2025 19:35:42 +0000 ROA not after: Thu 02 Jul 2026 19:40:42 +0000 asID: 215147 IP address blocks: 2a09:54c3:a04e::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:8b:4c:09:e1:60:14:95:6d:21:e2:0e:57:8c:7f:2c:e9:09:aa:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Jul 3 19:35:42 2025 GMT Not After : Jul 2 19:40:42 2026 GMT Subject: CN=B59C09350BED064DD352DE304A9085BEF91E0160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:58:66:4e:d2:1d:f8:8c:f4:2b:e3:0d:9c:46: 3a:f2:7b:c6:d4:e5:11:45:d3:97:cc:13:71:60:90: 99:e7:48:4a:47:9f:7a:a7:dd:62:c5:0f:8f:f1:b6: ba:39:c0:b4:9a:31:2c:41:dd:3c:37:9b:e6:38:b2: 88:55:c6:fc:25:ce:7e:85:2c:7c:8a:3d:87:51:27: ed:2f:d7:b4:93:e6:ab:11:5e:0a:e5:87:02:24:33: e0:c2:42:6b:1c:c1:a6:1f:a8:73:4b:ca:a3:52:eb: cb:c6:0d:ec:2e:32:99:d7:55:f2:40:de:06:67:6c: 37:71:20:6b:02:18:21:82:32:67:30:b4:e5:1a:29: 4f:0e:c6:37:9a:36:a0:c0:df:e5:6a:3e:53:38:55: 0c:f7:09:77:37:15:62:1e:fa:69:be:63:7c:44:29: f7:f9:49:da:a4:f5:64:90:bd:1d:2e:ee:2f:97:5b: 1c:fd:ef:3b:8f:55:1c:90:36:33:ab:a4:c9:72:d1: 31:8a:57:ac:50:0d:80:0c:ed:3b:23:cb:39:71:01: 8d:ff:a6:a4:40:db:3c:66:5d:45:8a:26:97:84:33: ef:d6:32:8c:54:79:e6:84:25:27:ed:1c:ec:5e:8e: c1:dd:ae:8e:17:d5:c9:3b:11:2f:e9:e1:f8:cb:72: 42:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:9C:09:35:0B:ED:06:4D:D3:52:DE:30:4A:90:85:BE:F9:1E:01:60 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:a04e::/48 Signature Algorithm: sha256WithRSAEncryption 8e:7a:7d:59:17:bf:dc:0e:ef:f7:dd:da:5a:b0:f0:91:82:43: b6:e0:d5:19:3c:58:c9:78:73:1e:ad:1e:29:83:25:d0:3a:fa: 09:a1:f4:4b:46:f4:d0:b0:da:b6:4d:f6:0c:9e:c0:15:4a:4f: b0:02:28:02:bf:60:76:e0:7a:4a:d3:4b:5c:78:0e:40:7f:72: f9:e1:c7:6b:9b:95:ac:18:95:18:a3:ca:6a:e0:67:2e:61:c9: f6:01:d2:09:ef:5c:5b:b7:64:95:aa:19:99:3a:ae:de:90:1d: 5d:5f:a1:7b:61:72:8a:1a:db:58:3d:cb:ae:59:2a:b1:3a:42: 0e:df:94:6e:a1:67:01:21:b6:a0:fe:6d:d0:81:48:13:65:64: 19:ae:a7:14:86:6a:f9:49:17:c0:2f:0b:c8:f8:fd:d5:82:4d: f0:76:2c:0f:b0:ac:b8:0b:4d:d4:a7:78:6b:68:62:40:b3:3c: ba:2d:bf:d3:44:7d:19:0f:72:5a:87:eb:f0:e2:08:d1:22:c5: f2:22:81:c2:09:c4:39:b8:e0:ff:06:b7:0c:e0:fd:dd:63:49: 53:a1:62:8e:be:e4:20:93:d2:ab:17:0a:ab:9f:be:3b:82:08: 6b:f6:cc:ca:5a:af:be:a3:8f:93:fb:41:fa:4f:38:1a:33:66: e7:af:55:3c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIULItMCeFgFJVtIeIOV4x/LOkJqiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA3MDMxOTM1NDJaFw0yNjA3MDIxOTQwNDJaMDMxMTAvBgNV BAMTKEI1OUMwOTM1MEJFRDA2NEREMzUyREUzMDRBOTA4NUJFRjkxRTAxNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmWGZO0h34jPQr4w2cRjrye8bU 5RFF05fME3FgkJnnSEpHn3qn3WLFD4/xtro5wLSaMSxB3Tw3m+Y4sohVxvwlzn6F LHyKPYdRJ+0v17ST5qsRXgrlhwIkM+DCQmscwaYfqHNLyqNS68vGDewuMpnXVfJA 3gZnbDdxIGsCGCGCMmcwtOUaKU8OxjeaNqDA3+VqPlM4VQz3CXc3FWIe+mm+Y3xE Kff5Sdqk9WSQvR0u7i+XWxz97zuPVRyQNjOrpMly0TGKV6xQDYAM7TsjyzlxAY3/ pqRA2zxmXUWKJpeEM+/WMoxUeeaEJSftHOxejsHdro4X1ck7ES/p4fjLckIvAgMB AAGjggJ8MIICeDAdBgNVHQ4EFgQUtZwJNQvtBk3TUt4wSpCFvvkeAWAwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2MTMwMzQ2NTNhM2EyZjM0MzgyZDMxMzIzODIwM2QzZTIwMzIzMTM1MzEzNDM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcAKglUw6BOMA0GCSqGSIb3DQEBCwUAA4IBAQCOen1ZF7/cDu/3 3dpasPCRgkO24NUZPFjJeHMerR4pgyXQOvoJofRLRvTQsNq2TfYMnsAVSk+wAigC v2B24HpK00tceA5Af3L54cdrm5WsGJUYo8pq4GcuYcn2AdIJ71xbt2SVqhmZOq7e kB1dX6F7YXKKGttYPcuuWSqxOkIO35RuoWcBIbag/m3QgUgTZWQZrqcUhmr5SRfA LwvI+P3Vgk3wdiwPsKy4C03Up3hraGJAszy6Lb/TRH0ZD3Jah+vw4gjRIsXyIoHC CcQ5uOD/BrcM4P3dY0lToWKOvuQgk9KrFwqrn747gghr9szKWq++o4+T+0H6Tzga M2bnr1U8 -----END CERTIFICATE-----Generated at Sat Jul 5 13:21:16 2025 by rpki-client