$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa File: 326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa (raw, json) Hash identifier: N9MolD8dDj/dBd/n3Fw4ld40S7jRH9ie9KMXOnILBv8= Subject key identifier: 97:56:25:03:A2:25:88:03:C0:06:2A:1B:AE:3B:73:AA:E6:98:71:3A Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 57B4AD45E1C97009573858D39103FF463E8C39EA Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa Signing time: Fri 04 Jul 2025 16:48:01 +0000 ROA not before: Fri 04 Jul 2025 16:43:01 +0000 ROA not after: Fri 03 Jul 2026 16:48:01 +0000 asID: 216296 IP address blocks: 2a06:1283:8b03::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b4:ad:45:e1:c9:70:09:57:38:58:d3:91:03:ff:46:3e:8c:39:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 4 16:43:01 2025 GMT Not After : Jul 3 16:48:01 2026 GMT Subject: CN=97562503A2258803C0062A1BAE3B73AAE698713A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e2:18:52:1a:44:ea:5b:52:64:3d:85:c2:10: 42:5d:f4:55:3e:fa:57:5c:ff:d9:a6:81:f0:dd:79: 06:4f:0d:93:61:87:a6:85:ec:7a:20:7b:82:45:2d: 33:da:1e:8f:19:c0:e4:e6:3f:49:46:40:93:79:12: dd:83:60:6f:91:c6:a6:41:8c:cd:f0:be:28:f6:51: 16:61:9f:a1:a3:4f:18:86:52:d0:ca:3d:f0:63:fb: 54:c3:ec:1d:cb:ce:9c:7e:ab:d6:ba:fa:12:c0:76: 3d:e7:52:6a:7a:7e:d7:1a:56:c7:f1:c3:aa:cd:9b: b7:ff:90:e2:f4:c0:88:a9:cb:40:60:c3:0b:0d:7b: 29:76:04:41:ca:c9:ff:a1:b6:52:ef:07:ea:be:b0: b8:05:9b:c2:e0:34:30:ec:c3:57:7a:33:5c:10:61: 0a:88:8f:10:b8:04:61:d3:d6:02:7f:85:cb:58:62: 82:c8:f0:5d:5a:80:ce:06:81:aa:cc:40:a1:b2:42: be:29:48:da:de:14:ba:a7:c5:6b:a6:3e:a3:45:ee: b0:1c:02:39:7d:06:40:cd:3f:49:91:1b:ee:5b:cb: c7:4f:a2:36:92:c4:53:5c:01:ed:7b:c2:bb:1c:9a: 1c:ef:11:5c:32:de:6b:d3:d2:46:5e:88:82:3e:16: 70:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:56:25:03:A2:25:88:03:C0:06:2A:1B:AE:3B:73:AA:E6:98:71:3A X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b03::/48 Signature Algorithm: sha256WithRSAEncryption 31:22:7f:4a:93:fc:43:b8:87:a2:0c:75:3e:f1:8d:8e:d1:9e: d7:6e:45:7a:e3:58:3c:81:94:2a:03:50:7a:99:69:89:db:ce: 15:31:80:6c:40:19:ba:54:53:e6:27:6c:f3:18:73:b4:af:c9: ab:42:5f:fb:2d:51:9e:3c:06:35:dd:e8:02:c6:94:60:8c:11: 5c:b5:4f:24:ea:56:7f:f3:08:c0:98:4f:f8:4c:9a:01:07:3b: 01:a0:e5:7a:de:10:82:06:a8:f1:62:db:02:bd:94:f6:4e:f9: 24:fe:71:61:3f:ed:1d:27:33:f4:9d:20:12:3c:fa:85:c4:be: a3:7e:08:30:d0:f0:72:bc:08:e2:9d:49:59:fe:c0:55:32:6f: 1c:76:d1:76:c6:3d:04:12:05:25:0c:d5:9b:f1:c6:b9:c9:91: ec:12:31:34:e1:0d:f9:b8:b4:61:20:3a:f3:c3:e0:69:17:23: 23:0c:09:ad:88:f7:62:a9:b1:26:95:4e:a5:e7:4f:82:57:4c: 95:fc:12:48:47:e0:f7:85:4e:d2:e9:a4:20:7e:db:70:6e:7b: ba:21:8e:bc:27:26:95:d3:cb:ef:79:a3:fd:1a:a8:eb:ca:9f: 72:7a:03:d8:c5:40:0c:82:e6:64:2f:6a:4e:2e:28:9a:53:45: 45:4e:df:ae -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUV7StReHJcAlXOFjTkQP/Rj6MOeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MDQxNjQzMDFaFw0yNjA3MDMxNjQ4MDFaMDMxMTAvBgNV BAMTKDk3NTYyNTAzQTIyNTg4MDNDMDA2MkExQkFFM0I3M0FBRTY5ODcxM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD24hhSGkTqW1JkPYXCEEJd9FU+ +ldc/9mmgfDdeQZPDZNhh6aF7Hoge4JFLTPaHo8ZwOTmP0lGQJN5Et2DYG+RxqZB jM3wvij2URZhn6GjTxiGUtDKPfBj+1TD7B3Lzpx+q9a6+hLAdj3nUmp6ftcaVsfx w6rNm7f/kOL0wIipy0BgwwsNeyl2BEHKyf+htlLvB+q+sLgFm8LgNDDsw1d6M1wQ YQqIjxC4BGHT1gJ/hctYYoLI8F1agM4GgarMQKGyQr4pSNreFLqnxWumPqNF7rAc Ajl9BkDNP0mRG+5by8dPojaSxFNcAe17wrscmhzvEVwy3mvT0kZeiII+FnDzAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUl1YlA6IliAPABiobrjtzquaYcTowHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDMzM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzYzMjM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiwMwDQYJKoZIhvcNAQELBQADggEB ADEif0qT/EO4h6IMdT7xjY7RntduRXrjWDyBlCoDUHqZaYnbzhUxgGxAGbpUU+Yn bPMYc7SvyatCX/stUZ48BjXd6ALGlGCMEVy1TyTqVn/zCMCYT/hMmgEHOwGg5Xre EIIGqPFi2wK9lPZO+ST+cWE/7R0nM/SdIBI8+oXEvqN+CDDQ8HK8COKdSVn+wFUy bxx20XbGPQQSBSUM1ZvxxrnJkewSMTThDfm4tGEgOvPD4GkXIyMMCa2I92KpsSaV TqXnT4JXTJX8EkhH4PeFTtLppCB+23Bue7ohjrwnJpXTy+95o/0aqOvKn3J6A9jF QAyC5mQvak4uKJpTRUVO364= -----END CERTIFICATE-----Generated at Sat Jul 5 15:47:31 2025 by rpki-client