$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613230303a3a2f34302d313238203d3e20323039383734.roa File: 326130393a353463333a613230303a3a2f34302d313238203d3e20323039383734.roa (raw, json) Hash identifier: bwL4xPqc/uz8Pz2knWoJ8zvpAw8HB5XXWez7oPoDaEI= Subject key identifier: B0:5E:E7:E0:A4:51:39:CB:A4:CD:9A:D4:C9:1A:67:79:AE:6B:D6:A8 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 72824CA8150019EAABE9117A10E6DB7A68CD22D3 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613230303a3a2f34302d313238203d3e20323039383734.roa Signing time: Thu 04 Sep 2025 05:37:26 +0000 ROA not before: Thu 04 Sep 2025 05:32:26 +0000 ROA not after: Thu 03 Sep 2026 05:37:26 +0000 asID: 209874 IP address blocks: 2a09:54c3:a200::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 23:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:82:4c:a8:15:00:19:ea:ab:e9:11:7a:10:e6:db:7a:68:cd:22:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Sep 4 05:32:26 2025 GMT Not After : Sep 3 05:37:26 2026 GMT Subject: CN=B05EE7E0A45139CBA4CD9AD4C91A6779AE6BD6A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a4:58:c6:7d:56:94:b8:2f:f8:92:44:13:49: da:ee:c1:a2:c8:8c:ad:4e:7b:ad:ed:00:4b:70:dd: 41:43:3e:f7:70:6a:8a:5f:a1:fc:32:a6:79:57:0a: 0c:04:d2:f1:bc:e1:d3:1a:36:c6:04:66:6b:69:8e: be:41:37:34:70:62:4f:4e:bc:17:58:93:61:02:ee: 2a:0d:8e:5d:f4:d7:2b:5e:31:72:9b:50:92:84:66: c3:2f:98:b5:aa:08:fc:35:55:c5:f0:27:33:12:71: c6:5e:bd:5e:1e:47:f1:f8:ac:e6:b4:fa:57:78:21: 1f:1c:9a:93:1c:2c:f9:1f:f1:28:6b:6d:dd:41:75: 12:27:d5:8c:78:b8:8b:cf:f5:8b:2c:bf:ec:c5:68: 21:59:59:d7:82:64:e2:92:0d:0b:e9:74:83:ba:58: 36:2d:4a:a2:d5:28:f6:23:ae:28:19:ea:72:23:ab: c5:0e:ca:79:ff:64:4f:4b:a3:4b:26:38:62:9a:91: ee:01:65:14:41:5f:b2:23:7d:c8:29:20:85:9e:12: 0f:98:c9:e2:9c:8a:07:d7:e0:7b:22:cc:61:5b:87: dc:96:95:b8:d4:0e:cf:ab:b9:07:9f:a2:cb:3b:93: 21:bd:bc:e8:98:6f:72:97:ad:4b:7f:e2:70:77:d2: 9c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5E:E7:E0:A4:51:39:CB:A4:CD:9A:D4:C9:1A:67:79:AE:6B:D6:A8 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a613230303a3a2f34302d313238203d3e20323039383734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:a200::/40 Signature Algorithm: sha256WithRSAEncryption 0a:ce:d9:e1:14:e4:ad:9c:65:2f:fc:3c:c2:00:50:f7:28:c2: 12:5a:39:1e:03:b8:70:6a:fa:62:c3:58:f9:da:a3:16:4f:a6: 13:b2:ac:52:25:b3:71:a1:4e:db:c8:87:60:33:49:a9:69:82: b5:fb:a2:09:86:c1:ae:4a:f2:28:25:3f:69:53:73:a1:9e:af: 72:c4:de:69:1a:37:7d:11:ef:00:43:40:11:71:fd:79:01:cd: 7d:5e:65:c5:7d:ad:f2:71:95:65:96:5b:1e:8e:f2:1b:d6:0f: fa:80:17:16:b9:a7:81:7e:a2:b2:4e:fa:4c:c3:59:38:d1:b7: e1:82:41:01:ae:81:91:9e:b1:f3:9b:6f:61:7c:94:3b:9c:c2: 4c:15:7e:cf:d4:25:de:11:5b:58:9f:23:39:37:04:14:4f:f8: db:63:e9:b7:58:54:8d:42:0a:62:18:7d:8a:4c:93:12:0d:31: 7a:20:73:a7:1d:de:10:e1:72:4f:60:14:85:c7:a7:87:31:0f: 71:80:fc:4c:51:f8:06:88:86:80:1c:2d:b2:56:ff:2e:b2:e6: ff:9e:fe:98:30:02:5c:e3:4f:19:e4:be:6a:6a:a6:41:17:39: 38:d8:d1:cf:07:b7:5e:6f:f3:37:45:bd:b8:31:79:74:dc:bb: cb:68:6f:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUcoJMqBUAGeqr6RF6EObbemjNItMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNTA5MDQwNTMyMjZaFw0yNjA5MDMwNTM3MjZaMDMxMTAvBgNV BAMTKEIwNUVFN0UwQTQ1MTM5Q0JBNENEOUFENEM5MUE2Nzc5QUU2QkQ2QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJpFjGfVaUuC/4kkQTSdruwaLI jK1Oe63tAEtw3UFDPvdwaopfofwypnlXCgwE0vG84dMaNsYEZmtpjr5BNzRwYk9O vBdYk2EC7ioNjl301yteMXKbUJKEZsMvmLWqCPw1VcXwJzMSccZevV4eR/H4rOa0 +ld4IR8cmpMcLPkf8Shrbd1BdRIn1Yx4uIvP9Yssv+zFaCFZWdeCZOKSDQvpdIO6 WDYtSqLVKPYjrigZ6nIjq8UOynn/ZE9Lo0smOGKake4BZRRBX7IjfcgpIIWeEg+Y yeKcigfX4HsizGFbh9yWlbjUDs+ruQefoss7kyG9vOiYb3KXrUt/4nB30py5AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUsF7n4KRROcukzZrUyRpnea5r1qgwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2MTMyMzAzMDNhM2EyZjM0MzAyZDMxMzIzODIwM2QzZTIwMzIzMDM5MzgzNzM0 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAOBAIAAjAIAwYAKglUw6IwDQYJKoZIhvcNAQELBQADggEBAArO2eEU5K2cZS/8 PMIAUPcowhJaOR4DuHBq+mLDWPnaoxZPphOyrFIls3GhTtvIh2AzSalpgrX7ogmG wa5K8iglP2lTc6Ger3LE3mkaN30R7wBDQBFx/XkBzX1eZcV9rfJxlWWWWx6O8hvW D/qAFxa5p4F+orJO+kzDWTjRt+GCQQGugZGesfObb2F8lDucwkwVfs/UJd4RW1if Izk3BBRP+Ntj6bdYVI1CCmIYfYpMkxINMXogc6cd3hDhck9gFIXHp4cxD3GA/ExR +AaIhoAcLbJW/y6y5v+e/pgwAlzjTxnkvmpqpkEXOTjY0c8Ht15v8zdFvbgxeXTc u8tobys= -----END CERTIFICATE-----Generated at Tue Sep 9 08:15:50 2025 by rpki-client