$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930303a3a2f34302d313238203d3e20323133343133.roa File: 326130363a313238333a383930303a3a2f34302d313238203d3e20323133343133.roa (raw, json) Hash identifier: w6mEbr64LdAB6p4ChAQnVfiw39Sxb+bv0QiR3+vbqY0= Subject key identifier: 5F:DF:0B:89:DC:D7:51:17:AE:7D:40:62:95:26:4B:36:6A:91:B8:BF Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 14917B5BB70BBA7862857CDEA33E6146DCB9E054 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930303a3a2f34302d313238203d3e20323133343133.roa Signing time: Mon 06 Oct 2025 20:53:46 +0000 ROA not before: Mon 06 Oct 2025 20:48:46 +0000 ROA not after: Mon 05 Oct 2026 20:53:46 +0000 asID: 213413 IP address blocks: 2a06:1283:8900::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 15:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:91:7b:5b:b7:0b:ba:78:62:85:7c:de:a3:3e:61:46:dc:b9:e0:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Oct 6 20:48:46 2025 GMT Not After : Oct 5 20:53:46 2026 GMT Subject: CN=5FDF0B89DCD75117AE7D406295264B366A91B8BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a0:38:90:03:c1:42:c8:72:14:1c:71:17:ed: f5:5c:2e:88:a7:c8:85:b9:3e:02:6b:d2:74:64:07: 3c:eb:12:fe:3e:a4:0b:f8:78:f0:df:be:c2:a5:5f: 66:29:6b:a1:b5:0d:a2:a1:3e:fb:f6:93:75:11:ab: 09:5d:c6:85:90:49:d2:fd:37:a7:82:02:f8:f0:08: 65:c6:ac:20:29:3c:2f:e7:59:03:37:69:fb:76:04: 06:6f:05:5f:27:5f:0b:d8:dd:53:f0:21:6b:ef:47: 9b:43:a2:5d:ac:a7:7b:96:a2:49:ad:d6:60:a5:83: f9:dd:0d:b7:f0:31:01:7c:4a:b7:a8:93:de:45:e2: 00:d0:2c:8e:c3:98:2e:c6:2b:d3:17:b6:60:a9:48: 11:8b:a1:e2:62:bc:a2:bc:6e:d0:0d:6a:db:df:5a: f2:67:b6:bd:0f:85:e8:31:38:28:f2:69:84:81:d5: 6e:69:57:4d:9b:a9:84:ea:a0:63:3d:4e:5d:f1:4b: 9d:ba:74:04:59:aa:5e:d4:60:e3:ac:5b:37:46:1b: 3f:47:a2:cd:4e:71:d4:98:33:d8:83:9d:e3:be:e3: 6a:0f:7f:a0:b4:1b:17:41:26:e3:9d:0d:68:af:85: 61:86:4b:19:8a:3c:a9:a4:52:5e:4f:4e:ef:c3:2f: 4d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DF:0B:89:DC:D7:51:17:AE:7D:40:62:95:26:4B:36:6A:91:B8:BF X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930303a3a2f34302d313238203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8900::/40 Signature Algorithm: sha256WithRSAEncryption a3:c6:39:77:ab:97:dd:f2:72:bd:48:4a:b1:80:df:34:2e:5d: 3d:c1:43:e7:c0:9d:4d:b4:3b:75:0d:bb:f9:b7:9f:ae:da:98: 95:fc:3d:2c:04:0e:93:d6:ca:eb:f6:38:3e:b7:b5:72:3c:fe: 8a:6e:a4:b7:6b:d6:f9:b1:11:da:42:7d:77:01:de:f6:30:57: 49:fb:7b:53:20:e5:48:ca:5a:97:0c:6a:7f:1b:48:ff:ef:b5: 0b:66:b7:df:5f:56:9c:9a:9c:b9:5f:b0:74:11:8f:5f:da:cd: 0d:03:a4:10:14:65:bc:03:3d:6b:74:86:08:22:62:7c:fb:75: ea:9e:7e:b9:64:ec:b3:6c:8b:2e:6b:24:70:b8:e7:4c:a3:2a: 5d:b9:0c:97:64:bc:13:5c:a9:cd:d6:37:c0:bf:34:e3:03:83: c7:cc:32:0d:ff:39:d8:00:92:eb:8c:4b:c2:0a:52:8d:0f:97: 4a:20:5e:f5:fc:f3:c7:78:2a:65:fc:e2:eb:eb:8b:ce:94:7c: a1:98:48:a1:16:65:e9:f5:31:c7:9f:8a:36:d4:1e:25:c8:f4: f8:3e:93:40:f9:4e:de:68:b0:af:7b:9e:7e:e2:9f:4d:14:1b: 08:11:c7:3e:f5:d9:35:fb:bc:c8:5f:18:4d:70:f5:62:d5:62: 97:97:04:4d -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUFJF7W7cLunhihXzeoz5hRty54FQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTEwMDYyMDQ4NDZaFw0yNjEwMDUyMDUzNDZaMDMxMTAvBgNV BAMTKDVGREYwQjg5RENENzUxMTdBRTdENDA2Mjk1MjY0QjM2NkE5MUI4QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5oDiQA8FCyHIUHHEX7fVcLoin yIW5PgJr0nRkBzzrEv4+pAv4ePDfvsKlX2Ypa6G1DaKhPvv2k3URqwldxoWQSdL9 N6eCAvjwCGXGrCApPC/nWQM3aft2BAZvBV8nXwvY3VPwIWvvR5tDol2sp3uWokmt 1mClg/ndDbfwMQF8Sreok95F4gDQLI7DmC7GK9MXtmCpSBGLoeJivKK8btANatvf WvJntr0PhegxOCjyaYSB1W5pV02bqYTqoGM9Tl3xS526dARZql7UYOOsWzdGGz9H os1OcdSYM9iDneO+42oPf6C0GxdBJuOdDWivhWGGSxmKPKmkUl5PTu/DL01PAgMB AAGjggKGMIICgjAdBgNVHQ4EFgQUX98LidzXUReufUBilSZLNmqRuL8wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzkzMDMwM2EzYTJmMzQzMDJkMzEzMjM4MjAzZDNlMjAz MjMxMzMzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYB BQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqBhKDiTANBgkqhkiG9w0BAQsFAAOCAQEA o8Y5d6uX3fJyvUhKsYDfNC5dPcFD58CdTbQ7dQ27+befrtqYlfw9LAQOk9bK6/Y4 Pre1cjz+im6kt2vW+bER2kJ9dwHe9jBXSft7UyDlSMpalwxqfxtI/++1C2a3319W nJqcuV+wdBGPX9rNDQOkEBRlvAM9a3SGCCJifPt16p5+uWTss2yLLmskcLjnTKMq XbkMl2S8E1ypzdY3wL804wODx8wyDf852ACS64xLwgpSjQ+XSiBe9fzzx3gqZfzi 6+uLzpR8oZhIoRZl6fUxx5+KNtQeJcj0+D6TQPlO3miwr3uefuKfTRQbCBHHPvXZ Nfu8yF8YTXD1YtVil5cETQ== -----END CERTIFICATE-----Generated at Thu Oct 9 06:01:53 2025 by rpki-client