$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230313a3a2f34382d313238203d3e20323037363935.roa File: 326130363a313238333a386230313a3a2f34382d313238203d3e20323037363935.roa (raw, json) Hash identifier: 6vaetUt7c9H+9aVn0u2KQRLHDuQZ528YxlkFqIwRrOU= Subject key identifier: D1:06:0A:DE:4D:DA:B6:3A:C5:DD:03:46:F4:AA:76:08:60:19:D2:07 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 7495B24BEF6A7302BDA6E7ECC718D87B0AB4197B Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230313a3a2f34382d313238203d3e20323037363935.roa Signing time: Fri 04 Jul 2025 16:48:00 +0000 ROA not before: Fri 04 Jul 2025 16:43:00 +0000 ROA not after: Fri 03 Jul 2026 16:48:00 +0000 asID: 207695 IP address blocks: 2a06:1283:8b01::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:95:b2:4b:ef:6a:73:02:bd:a6:e7:ec:c7:18:d8:7b:0a:b4:19:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 4 16:43:00 2025 GMT Not After : Jul 3 16:48:00 2026 GMT Subject: CN=D1060ADE4DDAB63AC5DD0346F4AA76086019D207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b7:5d:0d:43:6b:33:a3:47:35:ff:d8:5a:b1: f6:4e:ef:77:c6:69:4e:1e:b3:9d:d9:48:f0:dc:1a: e6:fd:13:21:15:52:a4:a3:9d:3f:c5:9b:71:b1:7c: 14:8b:30:b4:c1:8f:fc:c4:3f:f1:b1:2c:08:ad:d0: 17:3b:1a:9b:18:44:bb:16:44:a8:f7:0b:74:39:d4: e8:c4:64:6e:6a:bf:b8:5e:df:f3:88:d7:6f:99:a6: ab:3a:11:42:a7:a0:83:bf:09:db:45:9e:8a:cc:e7: de:f1:c9:71:15:94:f3:98:f3:7b:47:cc:15:67:28: 19:b0:5f:80:d5:93:62:1e:8c:d9:10:62:c8:b9:43: b9:18:5d:9c:b3:a8:e1:d8:fe:5f:6b:73:d2:fc:15: ad:34:7e:f7:1c:d2:ec:3c:3f:1a:27:70:b4:52:fe: 12:ad:9d:8a:99:e5:a0:d5:00:78:55:39:ee:e5:a7: e9:dd:10:90:97:8d:c1:98:d1:9c:54:6a:7c:0f:b4: 27:f4:fe:50:65:88:d2:11:00:21:8a:62:51:f7:d2: 7f:6a:5f:1b:cb:81:07:16:d0:85:dc:43:68:c3:07: 25:28:b7:72:36:38:f5:7b:e5:65:38:2f:bb:8a:eb: a3:cb:d1:fd:29:c6:ce:fc:69:b9:f3:5d:98:ca:1e: d5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:06:0A:DE:4D:DA:B6:3A:C5:DD:03:46:F4:AA:76:08:60:19:D2:07 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230313a3a2f34382d313238203d3e20323037363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b01::/48 Signature Algorithm: sha256WithRSAEncryption 39:c4:81:8f:11:29:25:16:4c:0c:e3:8a:86:b7:a5:c5:5e:8f: dc:f6:7e:59:01:20:d1:e7:27:bb:a6:06:72:d3:35:04:ce:50: 60:62:ac:0a:4c:a0:a9:17:87:ab:a9:8d:01:ad:91:71:fa:2a: ec:14:5f:07:ca:18:62:a2:fb:a1:2a:3c:74:9e:62:89:6e:a6: cf:42:30:03:31:ce:1c:84:d3:7b:1f:29:f7:8d:d4:5f:76:41: 6d:6c:0c:ae:ce:94:92:d1:54:d3:62:e0:14:04:b8:f7:64:8c: 6d:15:ad:2d:a1:5c:75:6f:e9:88:bd:75:22:9b:34:96:02:d4: 63:10:f7:74:00:44:a2:53:31:21:24:77:62:e3:ab:76:83:a5: af:dc:b2:59:65:f2:ba:e7:9d:6f:cf:13:66:62:07:6a:68:c0: 4f:6b:74:c4:ea:c9:e7:98:ca:09:d7:3a:62:27:42:71:e7:4a: 82:74:6c:94:87:c3:8b:f9:16:f6:0e:4d:8c:66:46:4a:40:dd: 6c:ab:21:68:58:03:3e:21:c7:2f:d7:78:36:12:3c:60:25:f9: fd:2d:af:4c:3a:f8:52:54:e2:eb:6a:8b:a6:99:03:9f:ef:91: 0b:d9:a6:f4:97:1c:00:87:2d:99:aa:af:0d:ff:df:39:4d:85: e5:05:58:22 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUdJWyS+9qcwK9pufsxxjYewq0GXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MDQxNjQzMDBaFw0yNjA3MDMxNjQ4MDBaMDMxMTAvBgNV BAMTKEQxMDYwQURFNEREQUI2M0FDNUREMDM0NkY0QUE3NjA4NjAxOUQyMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrt10NQ2szo0c1/9hasfZO73fG aU4es53ZSPDcGub9EyEVUqSjnT/Fm3GxfBSLMLTBj/zEP/GxLAit0Bc7GpsYRLsW RKj3C3Q51OjEZG5qv7he3/OI12+Zpqs6EUKnoIO/CdtFnorM597xyXEVlPOY83tH zBVnKBmwX4DVk2IejNkQYsi5Q7kYXZyzqOHY/l9rc9L8Fa00fvcc0uw8PxoncLRS /hKtnYqZ5aDVAHhVOe7lp+ndEJCXjcGY0ZxUanwPtCf0/lBliNIRACGKYlH30n9q XxvLgQcW0IXcQ2jDByUot3I2OPV75WU4L7uK66PL0f0pxs78abnzXZjKHtUdAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQU0QYK3k3atjrF3QNG9Kp2CGAZ0gcwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDMxM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMwMzczNjM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiwEwDQYJKoZIhvcNAQELBQADggEB ADnEgY8RKSUWTAzjioa3pcVej9z2flkBINHnJ7umBnLTNQTOUGBirApMoKkXh6up jQGtkXH6KuwUXwfKGGKi+6EqPHSeYolups9CMAMxzhyE03sfKfeN1F92QW1sDK7O lJLRVNNi4BQEuPdkjG0VrS2hXHVv6Yi9dSKbNJYC1GMQ93QARKJTMSEkd2Ljq3aD pa/cslll8rrnnW/PE2ZiB2powE9rdMTqyeeYygnXOmInQnHnSoJ0bJSHw4v5FvYO TYxmRkpA3WyrIWhYAz4hxy/XeDYSPGAl+f0tr0w6+FJU4utqi6aZA5/vkQvZpvSX HACHLZmqrw3/3zlNheUFWCI= -----END CERTIFICATE-----Generated at Sat Jul 5 15:51:29 2025 by rpki-client