$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930313a3a2f34382d313238203d3e20323134323035.roa File: 326130363a313238333a383930313a3a2f34382d313238203d3e20323134323035.roa (raw, json) Hash identifier: ZxaQKtSoKlgJmO3J3XqDtpxRpsMoDdJh04xqfrfCdBY= Subject key identifier: 50:8F:75:82:C1:9E:7B:43:C1:D3:5C:C0:A4:9A:88:7E:9F:64:AA:AC Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 150E596991F26D75AD1DB2E7CE0E9849C537FD94 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930313a3a2f34382d313238203d3e20323134323035.roa Signing time: Mon 06 Oct 2025 21:23:22 +0000 ROA not before: Mon 06 Oct 2025 21:18:22 +0000 ROA not after: Mon 05 Oct 2026 21:23:22 +0000 asID: 214205 IP address blocks: 2a06:1283:8901::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 15:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:0e:59:69:91:f2:6d:75:ad:1d:b2:e7:ce:0e:98:49:c5:37:fd:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Oct 6 21:18:22 2025 GMT Not After : Oct 5 21:23:22 2026 GMT Subject: CN=508F7582C19E7B43C1D35CC0A49A887E9F64AAAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3d:b8:a0:12:0a:ed:11:c6:41:5a:5f:03:92: 4e:c5:e2:e9:41:97:99:02:b7:72:5c:29:ef:74:78: 45:e9:d2:85:d8:3f:3f:82:76:1c:c3:37:c4:8d:42: 3b:6b:de:ae:c9:d1:1d:80:1e:47:6f:52:12:5f:a8: 70:9b:57:b9:f7:96:8c:63:bf:c7:52:15:e0:c7:b1: 5d:54:54:60:a0:7a:12:f2:56:1c:50:6b:a4:64:59: f6:66:3d:0f:dc:b7:70:95:e9:ed:56:27:10:9e:69: 91:77:bd:99:6a:9d:8d:bc:1c:62:36:9c:bb:78:4b: d6:96:d8:7c:c5:76:f7:9f:76:2d:0e:41:fa:5b:a9: 9c:1c:50:61:cf:9a:c1:c4:fa:e7:74:ae:d4:37:df: 86:13:28:f8:d1:f5:f0:6c:f9:f6:90:4a:c9:7b:3c: b8:66:0e:b5:42:56:9f:91:17:25:10:b6:53:a5:15: 08:9d:04:8b:bd:59:53:8d:f1:db:94:ff:7c:9f:d9: fe:d9:79:44:1a:ce:96:1b:53:03:ea:c1:09:7b:fd: 1d:9a:1b:af:98:09:6f:ec:24:a9:0d:1b:5c:2a:e7: c0:3d:4a:7c:f2:be:91:52:22:ad:13:6b:29:21:2d: fc:a6:35:9a:0e:24:e8:ae:91:d4:ae:3c:66:81:f9: 89:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:8F:75:82:C1:9E:7B:43:C1:D3:5C:C0:A4:9A:88:7E:9F:64:AA:AC X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930313a3a2f34382d313238203d3e20323134323035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8901::/48 Signature Algorithm: sha256WithRSAEncryption 73:11:8c:af:92:c0:39:06:9d:a9:a8:45:6f:a1:84:cd:25:a5: 4d:00:c6:ac:b7:bc:93:5c:ad:a5:41:91:16:50:06:58:fc:b6: b3:44:94:74:be:fb:3b:cf:06:f7:97:ac:04:65:d2:f6:b6:2b: 93:4c:20:a2:b1:08:a4:8c:a1:99:da:0b:dd:e5:86:cf:10:54: b1:f0:11:a3:15:8c:8f:2a:39:ae:cf:90:f1:86:6e:b5:0d:93: b7:a6:64:06:a5:a6:11:6c:8e:10:90:42:83:54:09:a1:07:ef: c7:0b:ad:fe:ec:7b:44:cc:25:3c:87:d0:31:38:00:1e:f7:d4: 6b:d4:cf:7a:18:b7:ac:ec:b1:f6:be:85:ff:a5:da:ad:e1:4c: 37:ed:f6:9a:68:27:b1:27:18:2b:53:f3:e4:5c:c9:13:45:af: 6c:34:32:03:34:38:ba:c5:77:b8:0a:18:49:56:1a:3c:aa:66: 0a:e0:c4:1e:0f:fa:ee:bf:78:ea:db:b2:4f:d1:37:29:f3:e1: 47:e6:33:4f:0f:6e:9c:e0:b5:ff:92:78:0a:6f:63:b8:16:77: 96:35:e6:ab:31:83:67:57:54:d0:ed:b8:f6:5e:40:3b:7e:78: 06:d5:e7:b8:0b:05:cc:ec:4b:d2:a4:b4:ca:6f:0b:3d:24:fd: 02:c8:0b:f9 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUFQ5ZaZHybXWtHbLnzg6YScU3/ZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTEwMDYyMTE4MjJaFw0yNjEwMDUyMTIzMjJaMDMxMTAvBgNV BAMTKDUwOEY3NTgyQzE5RTdCNDNDMUQzNUNDMEE0OUE4ODdFOUY2NEFBQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCPbigEgrtEcZBWl8Dkk7F4ulB l5kCt3JcKe90eEXp0oXYPz+CdhzDN8SNQjtr3q7J0R2AHkdvUhJfqHCbV7n3loxj v8dSFeDHsV1UVGCgehLyVhxQa6RkWfZmPQ/ct3CV6e1WJxCeaZF3vZlqnY28HGI2 nLt4S9aW2HzFdvefdi0OQfpbqZwcUGHPmsHE+ud0rtQ334YTKPjR9fBs+faQSsl7 PLhmDrVCVp+RFyUQtlOlFQidBIu9WVON8duU/3yf2f7ZeUQazpYbUwPqwQl7/R2a G6+YCW/sJKkNG1wq58A9SnzyvpFSIq0TaykhLfymNZoOJOiukdSuPGaB+YmJAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUUI91gsGee0PB01zApJqIfp9kqqwwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzkzMDMxM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzQzMjMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiQEwDQYJKoZIhvcNAQELBQADggEB AHMRjK+SwDkGnamoRW+hhM0lpU0Axqy3vJNcraVBkRZQBlj8trNElHS++zvPBveX rARl0va2K5NMIKKxCKSMoZnaC93lhs8QVLHwEaMVjI8qOa7PkPGGbrUNk7emZAal phFsjhCQQoNUCaEH78cLrf7se0TMJTyH0DE4AB731GvUz3oYt6zssfa+hf+l2q3h TDft9ppoJ7EnGCtT8+RcyRNFr2w0MgM0OLrFd7gKGElWGjyqZgrgxB4P+u6/eOrb sk/RNynz4UfmM08Pbpzgtf+SeApvY7gWd5Y15qsxg2dXVNDtuPZeQDt+eAbV57gL BczsS9KktMpvCz0k/QLIC/k= -----END CERTIFICATE-----Generated at Thu Oct 9 06:01:53 2025 by rpki-client