$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230323a3a2f34382d313238203d3e20323037363935.roa File: 326130363a313238333a386230323a3a2f34382d313238203d3e20323037363935.roa (raw, json) Hash identifier: C58CzcueBZLGi3BZhVC1snl3/HIsG8jd8UxQItY5XqQ= Subject key identifier: 4E:2A:BF:9E:AB:95:FA:D8:FF:6F:A2:A6:8B:1C:E5:7C:AE:A0:2A:85 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 49EFA900238324C63E7E2D3E5AB669530625DA1A Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230323a3a2f34382d313238203d3e20323037363935.roa Signing time: Fri 04 Jul 2025 16:48:01 +0000 ROA not before: Fri 04 Jul 2025 16:43:01 +0000 ROA not after: Fri 03 Jul 2026 16:48:01 +0000 asID: 207695 IP address blocks: 2a06:1283:8b02::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ef:a9:00:23:83:24:c6:3e:7e:2d:3e:5a:b6:69:53:06:25:da:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 4 16:43:01 2025 GMT Not After : Jul 3 16:48:01 2026 GMT Subject: CN=4E2ABF9EAB95FAD8FF6FA2A68B1CE57CAEA02A85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6b:13:2b:f8:8c:5d:ec:e2:e4:4b:e8:d7:e9: 0c:2e:57:22:d7:5b:ea:50:39:94:0d:df:66:75:21: 79:b1:2b:c4:65:19:f2:3c:16:be:e1:55:48:3c:54: 81:72:21:79:5b:39:5f:fc:d4:2d:12:29:e5:d1:06: fc:56:70:a7:09:a6:07:ac:b4:7d:cf:4a:9b:f7:95: 7a:1f:33:3a:48:f0:4a:ca:0c:a4:cb:40:dd:5b:7f: 54:9a:53:06:aa:46:69:e7:06:e9:eb:e3:1e:44:23: 05:34:bf:31:a3:b0:61:0b:01:66:42:f4:11:ad:c9: 57:29:a6:25:c6:c2:d0:97:8d:8e:14:48:2f:f6:85: de:13:e5:53:6c:dc:52:1c:78:78:dc:fe:c5:50:9f: f2:7c:c2:3b:ef:f4:f5:aa:36:90:c9:cf:85:a0:c4: 88:d3:75:78:73:ad:2b:e5:f8:8e:f1:71:69:0c:a3: 64:53:4c:44:d0:3d:7e:26:17:85:42:ed:80:40:bf: fe:86:4f:95:63:37:c1:1f:f5:9b:56:1b:64:44:7c: 99:e4:4d:c3:24:0f:3d:2f:d8:e2:5b:29:0e:ff:cc: 75:02:bb:d0:29:63:bd:ea:59:40:09:8b:b0:75:6c: 35:02:da:30:09:d3:23:a6:78:f8:9b:d3:87:ef:bc: 30:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2A:BF:9E:AB:95:FA:D8:FF:6F:A2:A6:8B:1C:E5:7C:AE:A0:2A:85 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230323a3a2f34382d313238203d3e20323037363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b02::/48 Signature Algorithm: sha256WithRSAEncryption 22:cc:2e:49:ca:23:87:7a:f0:be:48:60:73:fc:ca:6e:a3:39: 62:cb:59:c4:07:c7:07:77:80:92:00:a1:e2:b0:77:fb:03:b9: cd:01:19:4e:9d:c1:aa:88:35:5b:b0:d9:d7:58:14:50:3b:bb: aa:a7:ce:21:1e:e5:3d:9e:18:fc:f3:8f:a4:2d:bf:94:95:da: 60:6a:e2:b7:ee:78:f9:a8:62:58:61:2c:3d:4c:c5:1b:b9:d3: 18:82:b3:42:1b:ee:7b:92:cc:47:ac:b5:04:cb:49:ae:02:ed: 47:8a:ac:73:80:ce:4f:f0:30:49:4c:d5:94:14:6c:42:7e:20: d8:8f:3a:02:b4:50:04:f1:ec:4a:80:3f:7d:34:3a:d2:c4:65: 1f:5a:d4:ab:68:bd:01:1d:f3:d5:36:63:37:d8:a0:fd:b1:34: f9:d3:ef:a5:37:35:c4:9b:96:88:54:5f:22:2d:bd:7f:40:dd: e7:c3:8b:71:3f:cd:23:10:7c:db:7e:dd:bf:d5:26:50:ce:61: a9:c9:e1:e8:24:75:21:81:a7:3e:27:62:23:ff:78:11:6f:43: 98:8d:01:68:43:70:23:e3:7d:84:c9:cf:26:85:df:3e:b3:1d: 68:7d:11:90:34:3b:79:6d:1c:3f:85:41:f1:17:47:e4:37:e8: 30:df:c1:fe -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUSe+pACODJMY+fi0+WrZpUwYl2howDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MDQxNjQzMDFaFw0yNjA3MDMxNjQ4MDFaMDMxMTAvBgNV BAMTKDRFMkFCRjlFQUI5NUZBRDhGRjZGQTJBNjhCMUNFNTdDQUVBMDJBODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7axMr+Ixd7OLkS+jX6QwuVyLX W+pQOZQN32Z1IXmxK8RlGfI8Fr7hVUg8VIFyIXlbOV/81C0SKeXRBvxWcKcJpges tH3PSpv3lXofMzpI8ErKDKTLQN1bf1SaUwaqRmnnBunr4x5EIwU0vzGjsGELAWZC 9BGtyVcppiXGwtCXjY4USC/2hd4T5VNs3FIceHjc/sVQn/J8wjvv9PWqNpDJz4Wg xIjTdXhzrSvl+I7xcWkMo2RTTETQPX4mF4VC7YBAv/6GT5VjN8Ef9ZtWG2REfJnk TcMkDz0v2OJbKQ7/zHUCu9ApY73qWUAJi7B1bDUC2jAJ0yOmePib04fvvDDdAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUTiq/nquV+tj/b6KmixzlfK6gKoUwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDMyM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMwMzczNjM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiwIwDQYJKoZIhvcNAQELBQADggEB ACLMLknKI4d68L5IYHP8ym6jOWLLWcQHxwd3gJIAoeKwd/sDuc0BGU6dwaqINVuw 2ddYFFA7u6qnziEe5T2eGPzzj6Qtv5SV2mBq4rfuePmoYlhhLD1MxRu50xiCs0Ib 7nuSzEestQTLSa4C7UeKrHOAzk/wMElM1ZQUbEJ+INiPOgK0UATx7EqAP300OtLE ZR9a1KtovQEd89U2YzfYoP2xNPnT76U3NcSblohUXyItvX9A3efDi3E/zSMQfNt+ 3b/VJlDOYanJ4egkdSGBpz4nYiP/eBFvQ5iNAWhDcCPjfYTJzyaF3z6zHWh9EZA0 O3ltHD+FQfEXR+Q36DDfwf4= -----END CERTIFICATE-----Generated at Sat Jul 5 15:54:28 2025 by rpki-client