$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613130303a3a2f34382d313238203d3e20323135313437.roa File: 326130393a353463333a613130303a3a2f34382d313238203d3e20323135313437.roa (raw, json) Hash identifier: 5vA7kcahmkhnv7Pjx7uA7TrGRG+XVrMF+mKhb2vEG5U= Subject key identifier: 13:BC:1E:B3:35:17:50:E2:47:6C:AC:F2:79:DF:92:8C:E1:E5:FC:7A Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 1BC6C412BCEC8A246E9F4E1016C34F4F537AF575 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613130303a3a2f34382d313238203d3e20323135313437.roa Signing time: Wed 30 Jul 2025 05:56:17 +0000 ROA not before: Wed 30 Jul 2025 05:51:17 +0000 ROA not after: Wed 29 Jul 2026 05:56:17 +0000 asID: 215147 IP address blocks: 2a09:54c3:a100::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Aug 2025 04:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c6:c4:12:bc:ec:8a:24:6e:9f:4e:10:16:c3:4f:4f:53:7a:f5:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Jul 30 05:51:17 2025 GMT Not After : Jul 29 05:56:17 2026 GMT Subject: CN=13BC1EB3351750E2476CACF279DF928CE1E5FC7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:85:79:0e:c4:58:8f:52:60:06:0a:b2:af:0d: 57:b9:d3:3b:d3:86:ca:3e:3d:69:81:ac:ed:c7:06: 5b:ff:95:f6:f7:a6:7f:ae:58:0e:fe:93:0c:05:29: e4:e4:23:d2:ec:14:60:6b:47:e9:7e:ee:1a:52:61: e0:fa:d4:c0:28:be:6a:63:6c:ea:6b:00:8a:7a:20: 7c:cc:25:6a:43:7e:67:d7:5f:79:86:c1:ab:dd:16: 42:29:c2:f9:a3:9e:52:a4:82:27:95:ba:c4:e0:e2: e7:a7:1b:01:53:a3:34:ab:7e:ce:ed:69:36:fa:0e: 0d:03:0c:9d:7e:7e:ef:32:e1:40:18:14:42:db:93: e9:a9:3a:50:d3:36:ae:37:7f:77:a6:a2:c2:ad:8f: c7:71:ab:f1:15:4b:7b:c1:3e:51:e1:b6:81:2f:08: aa:c7:82:6b:18:f3:24:c0:52:b6:24:15:0c:f8:14: 30:2a:fa:cf:77:45:ff:37:65:07:e6:ab:27:d4:15: 8c:d4:49:2a:f4:5a:15:50:e8:2e:2e:bc:b2:93:89: a0:80:f9:48:ac:30:a9:a6:3a:b0:09:7a:be:ac:c8: 32:32:32:fe:74:ee:91:01:44:6d:e9:db:82:3d:46: 58:4e:74:13:31:11:32:c6:76:85:44:96:97:2a:5e: a0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:BC:1E:B3:35:17:50:E2:47:6C:AC:F2:79:DF:92:8C:E1:E5:FC:7A X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613130303a3a2f34382d313238203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:a100::/48 Signature Algorithm: sha256WithRSAEncryption 1f:4d:8d:88:e6:3b:91:7e:f1:10:60:0f:65:18:45:11:56:8d: 79:03:6f:fb:3f:76:62:86:b6:d6:c1:05:3e:3d:05:a7:5b:63: 77:2a:3a:bc:54:39:4a:1b:ce:98:ae:9e:d6:84:fa:87:3b:00: 8f:ca:4f:27:88:dc:85:88:07:36:6b:a7:90:9a:14:bb:b6:16: e6:b0:43:8b:fe:13:93:4d:ff:a9:18:9e:0d:7a:39:f8:f4:a1: aa:5b:7e:05:1a:fd:c7:9d:c9:13:7e:46:ba:01:2c:1d:9e:20: a6:09:e3:94:de:fd:5b:aa:30:d2:a9:8f:e1:b9:5d:c1:41:ea: ec:e3:4c:2a:a7:4c:79:9c:b4:13:d7:93:94:11:a1:6b:1d:3a: 51:16:54:4e:21:ac:c2:cb:62:c3:21:e6:a1:11:60:c0:85:95: 7f:46:d5:0e:3b:14:59:3c:a7:4b:56:5c:92:07:7d:47:35:51: 54:d2:4b:ba:56:cf:8d:4a:d4:94:9e:1d:eb:3c:3f:8c:1f:0f: 77:8d:47:69:bb:c8:c7:e4:da:49:c3:d0:73:ed:3c:a6:f2:6c: f5:62:1e:4d:36:52:9c:fe:1f:17:37:2a:3d:48:38:0d:bd:81: fa:8e:44:7c:bf:4b:70:ca:18:38:0a:7a:6f:98:17:b2:f3:a5: 3c:0d:df:fb -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUG8bEErzsiiRun04QFsNPT1N69XUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA3MzAwNTUxMTdaFw0yNjA3MjkwNTU2MTdaMDMxMTAvBgNV BAMTKDEzQkMxRUIzMzUxNzUwRTI0NzZDQUNGMjc5REY5MjhDRTFFNUZDN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGhXkOxFiPUmAGCrKvDVe50zvT hso+PWmBrO3HBlv/lfb3pn+uWA7+kwwFKeTkI9LsFGBrR+l+7hpSYeD61MAovmpj bOprAIp6IHzMJWpDfmfXX3mGwavdFkIpwvmjnlKkgieVusTg4uenGwFTozSrfs7t aTb6Dg0DDJ1+fu8y4UAYFELbk+mpOlDTNq43f3emosKtj8dxq/EVS3vBPlHhtoEv CKrHgmsY8yTAUrYkFQz4FDAq+s93Rf83ZQfmqyfUFYzUSSr0WhVQ6C4uvLKTiaCA +UisMKmmOrAJer6syDIyMv507pEBRG3p24I9RlhOdBMxETLGdoVElpcqXqCFAgMB AAGjggJ8MIICeDAdBgNVHQ4EFgQUE7weszUXUOJHbKzyed+SjOHl/HowHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2MTMxMzAzMDNhM2EyZjM0MzgyZDMxMzIzODIwM2QzZTIwMzIzMTM1MzEzNDM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcAKglUw6EAMA0GCSqGSIb3DQEBCwUAA4IBAQAfTY2I5juRfvEQ YA9lGEURVo15A2/7P3ZihrbWwQU+PQWnW2N3Kjq8VDlKG86Yrp7WhPqHOwCPyk8n iNyFiAc2a6eQmhS7thbmsEOL/hOTTf+pGJ4Nejn49KGqW34FGv3HnckTfka6ASwd niCmCeOU3v1bqjDSqY/huV3BQers40wqp0x5nLQT15OUEaFrHTpRFlROIazCy2LD IeahEWDAhZV/RtUOOxRZPKdLVlySB31HNVFU0ku6Vs+NStSUnh3rPD+MHw93jUdp u8jH5NpJw9Bz7Tym8mz1Yh5NNlKc/h8XNyo9SDgNvYH6jkR8v0twyhg4CnpvmBey 86U8Dd/7 -----END CERTIFICATE-----Generated at Wed Aug 20 20:14:49 2025 by rpki-client