$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930323a3a2f34382d313238203d3e20323132373730.roa File: 326130363a313238333a383930323a3a2f34382d313238203d3e20323132373730.roa (raw, json) Hash identifier: 1Mq7zwNWFVrFO4xAnw5YP+F5xNQQ0SyBjbZkZrxTF84= Subject key identifier: 6B:DF:A2:AE:41:79:7E:99:3A:D5:C8:CD:2E:A5:C8:4B:D9:40:21:D0 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 0AF24CD88279D112D2FD6B3DF1159B60CEFCB2E5 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930323a3a2f34382d313238203d3e20323132373730.roa Signing time: Mon 06 Oct 2025 21:28:03 +0000 ROA not before: Mon 06 Oct 2025 21:23:03 +0000 ROA not after: Mon 05 Oct 2026 21:28:03 +0000 asID: 212770 IP address blocks: 2a06:1283:8902::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 15:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f2:4c:d8:82:79:d1:12:d2:fd:6b:3d:f1:15:9b:60:ce:fc:b2:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Oct 6 21:23:03 2025 GMT Not After : Oct 5 21:28:03 2026 GMT Subject: CN=6BDFA2AE41797E993AD5C8CD2EA5C84BD94021D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:4e:06:38:22:59:c4:43:aa:22:17:78:25:5e: 7d:31:89:78:6f:7a:37:32:e5:6b:62:27:17:71:9e: da:28:bd:a9:09:29:e2:e2:4a:29:f3:a6:36:2a:32: 07:2f:19:89:7d:6b:ce:e2:66:b1:e4:93:66:36:c4: 16:27:50:c6:9a:52:27:2b:d7:f3:03:95:51:5d:5a: ca:08:11:aa:88:3e:f8:64:f3:da:a2:88:ff:3b:f8: 01:72:5a:00:c5:b4:30:47:37:bf:83:fc:56:66:ec: 9f:5e:c3:6e:0f:1e:2c:5b:55:e1:2b:05:e4:22:37: 58:82:ee:df:01:41:e4:a2:8e:33:00:9c:5f:54:21: ca:3e:c3:b8:5a:b4:12:e4:9c:69:77:38:94:6d:e8: 07:b4:04:4e:01:d7:0b:4c:4b:d2:e5:ab:4f:41:ec: 72:11:ab:0e:17:14:8c:48:f5:4a:ea:69:9c:eb:11: d7:f1:5d:d8:57:b1:0f:63:d7:5f:e2:7c:55:8e:52: 2b:2f:f6:ce:14:d1:aa:70:bd:b8:99:f6:6d:a3:5a: 10:b2:e4:d1:73:ff:de:c0:39:12:0f:1a:52:3b:8d: 7c:11:54:08:fb:3e:0c:ed:a9:0c:c9:2c:b2:91:90: e9:2d:1d:47:43:38:c4:7f:18:23:9a:bf:e9:35:21: 63:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DF:A2:AE:41:79:7E:99:3A:D5:C8:CD:2E:A5:C8:4B:D9:40:21:D0 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930323a3a2f34382d313238203d3e20323132373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8902::/48 Signature Algorithm: sha256WithRSAEncryption 8a:56:99:7b:c3:44:a8:e9:4e:7e:97:47:1a:0b:fd:b8:60:6e: a0:a5:04:3c:da:e7:b8:e3:aa:a7:f6:24:cf:7b:2f:4f:6c:4f: a8:37:08:ff:9d:b0:83:98:7e:ce:8c:e7:4e:21:a8:1f:9f:d1: 17:a1:40:66:19:d5:9e:72:23:e5:64:bf:76:b1:97:56:b4:eb: c2:ef:26:fe:ba:0b:53:80:d9:51:f8:3a:b1:01:a5:7e:8b:fe: a2:7f:5e:52:68:b5:5f:5c:68:92:5e:98:38:9d:be:6f:2e:3b: 1b:3f:17:2f:92:c1:03:ed:94:bf:0b:95:70:ee:4d:30:48:6e: b8:62:46:31:d8:64:36:ad:f8:73:f5:50:e7:bb:26:19:a4:f2: a6:e7:1e:52:cf:20:9e:a9:5d:b6:20:fa:24:59:f2:04:4f:e9: f9:f7:c5:80:be:ea:dc:f3:bb:61:44:9b:e7:6f:8e:d8:70:62: 85:cc:45:e0:62:ad:bd:ce:77:41:e9:1c:c9:09:b6:e3:de:63: a5:2a:a1:5c:f2:e7:80:27:6f:e6:ab:5f:df:32:f8:ce:86:e1: 4b:bc:fb:36:b9:38:13:9b:12:0a:37:65:cd:22:c6:2e:59:b4: 50:03:fe:cc:f0:22:e7:dd:c9:a4:1b:69:35:33:07:e0:d6:d4: e8:b2:76:b6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUCvJM2IJ50RLS/Ws98RWbYM78suUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTEwMDYyMTIzMDNaFw0yNjEwMDUyMTI4MDNaMDMxMTAvBgNV BAMTKDZCREZBMkFFNDE3OTdFOTkzQUQ1QzhDRDJFQTVDODRCRDk0MDIxRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvTgY4IlnEQ6oiF3glXn0xiXhv ejcy5WtiJxdxntoovakJKeLiSinzpjYqMgcvGYl9a87iZrHkk2Y2xBYnUMaaUicr 1/MDlVFdWsoIEaqIPvhk89qiiP87+AFyWgDFtDBHN7+D/FZm7J9ew24PHixbVeEr BeQiN1iC7t8BQeSijjMAnF9UIco+w7hatBLknGl3OJRt6Ae0BE4B1wtMS9Llq09B 7HIRqw4XFIxI9UrqaZzrEdfxXdhXsQ9j11/ifFWOUisv9s4U0apwvbiZ9m2jWhCy 5NFz/97AORIPGlI7jXwRVAj7PgztqQzJLLKRkOktHUdDOMR/GCOav+k1IWMzAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUa9+irkF5fpk61cjNLqXIS9lAIdAwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzkzMDMyM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzIzNzM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiQIwDQYJKoZIhvcNAQELBQADggEB AIpWmXvDRKjpTn6XRxoL/bhgbqClBDza57jjqqf2JM97L09sT6g3CP+dsIOYfs6M 504hqB+f0RehQGYZ1Z5yI+Vkv3axl1a068LvJv66C1OA2VH4OrEBpX6L/qJ/XlJo tV9caJJemDidvm8uOxs/Fy+SwQPtlL8LlXDuTTBIbrhiRjHYZDat+HP1UOe7Jhmk 8qbnHlLPIJ6pXbYg+iRZ8gRP6fn3xYC+6tzzu2FEm+dvjthwYoXMReBirb3Od0Hp HMkJtuPeY6UqoVzy54Anb+arX98y+M6G4Uu8+za5OBObEgo3Zc0ixi5ZtFAD/szw IufdyaQbaTUzB+DW1OiydrY= -----END CERTIFICATE-----Generated at Thu Oct 9 06:01:54 2025 by rpki-client