$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613130323a3a2f34382d313238203d3e20323135313437.roa File: 326130393a353463333a613130323a3a2f34382d313238203d3e20323135313437.roa (raw, json) Hash identifier: vs9kXuBMMWCplaNsRIcMMGKaCF4FLRTK4Bq5jqpLQYc= Subject key identifier: 72:2A:36:53:2E:DD:B1:F1:3F:1E:6A:C2:1C:08:C3:D3:8F:35:CA:CA Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 06A5230245DE2446E2E7DD05CB5662969FEE29A0 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613130323a3a2f34382d313238203d3e20323135313437.roa Signing time: Wed 27 Aug 2025 10:46:39 +0000 ROA not before: Wed 27 Aug 2025 10:41:39 +0000 ROA not after: Wed 26 Aug 2026 10:46:39 +0000 asID: 215147 IP address blocks: 2a09:54c3:a102::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Sep 2025 23:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:a5:23:02:45:de:24:46:e2:e7:dd:05:cb:56:62:96:9f:ee:29:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Aug 27 10:41:39 2025 GMT Not After : Aug 26 10:46:39 2026 GMT Subject: CN=722A36532EDDB1F13F1E6AC21C08C3D38F35CACA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f7:fc:4c:88:e8:f7:06:a7:3d:67:af:b2:ee: 91:85:79:ef:d2:3a:8f:c9:c1:d4:cb:9c:36:45:46: b8:c6:b1:d7:4c:50:41:60:64:aa:44:86:08:ea:53: 5c:d4:db:2b:b5:b4:16:5f:d3:4a:3a:71:33:67:26: dd:cf:7a:97:8c:0e:1f:f8:13:da:00:53:3e:12:58: f1:29:73:cd:c2:7b:3f:b4:a4:7a:68:37:31:be:58: bb:91:95:d8:8a:38:dd:9b:64:7c:3b:1d:53:ee:8c: 46:f1:cf:fc:2f:0f:02:7e:06:62:11:a3:67:39:f2: 12:72:3d:2d:14:40:4c:12:d9:97:23:e5:21:dc:a5: 95:7c:a5:10:d0:46:05:d1:7b:f0:7f:4e:2e:a8:12: b7:a0:42:b4:4b:83:ce:ee:c4:4b:75:9c:51:12:ce: 30:e5:f1:dc:06:7c:73:fb:5d:19:99:27:53:ee:8c: ac:f5:33:e6:5b:28:58:3e:8c:aa:62:2a:6d:c4:6c: 78:0f:3b:e7:dc:b9:89:18:a3:8c:e4:25:93:97:03: d5:47:7c:e2:8e:9c:ad:11:a8:f9:64:c8:a9:1f:3c: d9:d1:84:8b:07:1c:97:5c:c8:1e:dd:09:fc:22:3e: 06:0e:43:34:3d:40:85:77:0e:4a:8d:7d:b2:a1:24: 8a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2A:36:53:2E:DD:B1:F1:3F:1E:6A:C2:1C:08:C3:D3:8F:35:CA:CA X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613130323a3a2f34382d313238203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:a102::/48 Signature Algorithm: sha256WithRSAEncryption a7:4f:b5:f4:69:73:c7:4b:24:3b:29:e1:bc:8a:17:eb:c3:13: 16:a6:39:6f:17:9a:b4:92:39:60:f8:d4:d6:5c:32:3c:48:1a: fb:ea:0b:60:01:ce:bb:15:20:df:36:bd:80:db:aa:14:b6:99: 4a:c4:a3:ff:f4:d4:6f:36:49:97:c4:c2:78:7c:22:32:6d:2d: 2e:cd:2e:83:b8:a3:81:27:8c:37:c9:7a:97:42:40:c1:78:c6: 24:63:97:b0:1a:d8:d6:1d:99:ac:3a:2e:a5:01:d0:e9:ef:68: f0:46:a5:98:88:97:c3:83:ee:69:e2:74:66:25:dd:b1:2b:70: c0:35:b5:e1:b5:1f:ef:d2:dc:93:da:49:3d:3d:ca:6a:f2:9f: 04:ab:f5:19:f3:93:6b:8c:54:87:c3:aa:93:d3:05:20:5c:90: 5c:08:27:ba:dd:69:6a:1e:c2:b6:1d:ad:b9:00:22:fd:dd:96: 75:fc:7b:77:e6:95:17:c8:5c:ff:4e:77:27:db:01:5e:5e:7d: d1:ec:f9:5b:ad:42:ca:6b:70:79:17:3f:53:ef:e4:54:be:d9: a9:e3:f8:36:6b:47:b8:bf:72:d6:84:1a:45:ae:0c:28:36:cd: ed:b8:e4:77:29:d8:17:b5:9e:b5:95:9b:17:3a:f4:23:ea:ae: 1e:7f:d3:7a -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUBqUjAkXeJEbi590Fy1Zilp/uKaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA4MjcxMDQxMzlaFw0yNjA4MjYxMDQ2MzlaMDMxMTAvBgNV BAMTKDcyMkEzNjUzMkVEREIxRjEzRjFFNkFDMjFDMDhDM0QzOEYzNUNBQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd9/xMiOj3Bqc9Z6+y7pGFee/S Oo/JwdTLnDZFRrjGsddMUEFgZKpEhgjqU1zU2yu1tBZf00o6cTNnJt3PepeMDh/4 E9oAUz4SWPEpc83Cez+0pHpoNzG+WLuRldiKON2bZHw7HVPujEbxz/wvDwJ+BmIR o2c58hJyPS0UQEwS2Zcj5SHcpZV8pRDQRgXRe/B/Ti6oEregQrRLg87uxEt1nFES zjDl8dwGfHP7XRmZJ1PujKz1M+ZbKFg+jKpiKm3EbHgPO+fcuYkYo4zkJZOXA9VH fOKOnK0RqPlkyKkfPNnRhIsHHJdcyB7dCfwiPgYOQzQ9QIV3DkqNfbKhJIopAgMB AAGjggJ8MIICeDAdBgNVHQ4EFgQUcio2Uy7dsfE/HmrCHAjD0481ysowHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2MTMxMzAzMjNhM2EyZjM0MzgyZDMxMzIzODIwM2QzZTIwMzIzMTM1MzEzNDM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcAKglUw6ECMA0GCSqGSIb3DQEBCwUAA4IBAQCnT7X0aXPHSyQ7 KeG8ihfrwxMWpjlvF5q0kjlg+NTWXDI8SBr76gtgAc67FSDfNr2A26oUtplKxKP/ 9NRvNkmXxMJ4fCIybS0uzS6DuKOBJ4w3yXqXQkDBeMYkY5ewGtjWHZmsOi6lAdDp 72jwRqWYiJfDg+5p4nRmJd2xK3DANbXhtR/v0tyT2kk9Pcpq8p8Eq/UZ85NrjFSH w6qT0wUgXJBcCCe63WlqHsK2Ha25ACL93ZZ1/Ht35pUXyFz/Tncn2wFeXn3R7Plb rULKa3B5Fz9T7+RUvtmp4/g2a0e4v3LWhBpFrgwoNs3tuOR3KdgXtZ61lZsXOvQj 6q4ef9N6 -----END CERTIFICATE-----Generated at Fri Sep 19 13:37:37 2025 by rpki-client