$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386430303a3a2f34302d313238203d3e20323135313336.roa File: 326130363a313238333a386430303a3a2f34302d313238203d3e20323135313336.roa (raw, json) Hash identifier: Us4SYEZ87W/cYsY9JNhseT6YHmH9HqiIKrkdBOpnc/8= Subject key identifier: FF:E5:80:D4:FA:06:BA:5A:F9:7D:8B:87:66:42:D3:66:2C:4E:BC:D3 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 025E63DF1BE30AB9EB6F2D7B07DE1D4F5B7ECA11 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386430303a3a2f34302d313238203d3e20323135313336.roa Signing time: Tue 09 Sep 2025 18:35:02 +0000 ROA not before: Tue 09 Sep 2025 18:30:02 +0000 ROA not after: Tue 08 Sep 2026 18:35:02 +0000 asID: 215136 IP address blocks: 2a06:1283:8d00::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 15:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:5e:63:df:1b:e3:0a:b9:eb:6f:2d:7b:07:de:1d:4f:5b:7e:ca:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Sep 9 18:30:02 2025 GMT Not After : Sep 8 18:35:02 2026 GMT Subject: CN=FFE580D4FA06BA5AF97D8B876642D3662C4EBCD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a3:63:f2:85:8e:be:18:54:8e:7b:e7:14:69: dc:f2:bc:2e:b7:f7:a2:f7:d2:ea:71:2e:7b:a1:be: 83:4b:da:61:34:7c:d1:d2:f8:0c:d0:6e:83:c8:2c: 2b:25:d3:5d:4c:f6:e2:55:96:77:83:5d:ad:76:dd: 7e:e0:8b:0c:88:57:4f:6c:03:1d:aa:79:bc:d2:cd: 65:5a:93:61:f2:e4:f3:f6:a9:ad:89:c4:c9:2c:36: 76:42:60:e2:fd:ee:13:24:0b:ab:62:a8:35:95:28: fd:ee:05:f9:77:ea:44:5b:b3:ca:53:0e:41:c5:3f: 27:81:1f:c8:12:83:93:2b:da:52:e1:9f:a0:1b:6c: c6:39:d1:a9:34:c3:23:1a:22:e9:53:8b:09:5d:b0: 9a:66:65:61:71:75:4e:cd:d2:c3:ef:d8:3c:e3:e2: af:e1:6b:a7:70:37:59:2f:fa:fc:3f:47:ed:b5:a8: bd:12:95:8c:d5:d0:d3:f8:a1:f9:3e:c5:b7:97:97: a2:21:18:78:4d:40:eb:b2:90:26:02:ac:91:1f:00: 64:84:8e:6e:4d:86:55:bd:5c:30:cd:66:1b:78:a8: 60:14:cf:de:c6:2d:35:d6:53:46:17:e7:fc:86:d1: f8:ee:31:b5:e6:cb:d3:15:d9:e0:be:ad:d5:c5:18: 65:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E5:80:D4:FA:06:BA:5A:F9:7D:8B:87:66:42:D3:66:2C:4E:BC:D3 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386430303a3a2f34302d313238203d3e20323135313336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8d00::/40 Signature Algorithm: sha256WithRSAEncryption 34:d7:2e:9e:93:d2:f7:de:d4:6c:d8:50:5c:7a:65:b6:ec:00: 91:ab:1c:c6:e3:71:1f:66:85:1d:55:40:20:12:57:ae:a8:62: 1c:e2:60:00:e9:ab:cb:52:61:1c:a6:b8:35:b7:f0:3d:35:72: 2f:80:f1:19:68:37:50:15:85:66:d1:6b:03:b2:8e:07:3a:78: 79:68:4d:68:85:09:81:9a:85:36:ca:cd:b9:1b:d6:bc:8a:15: df:12:33:e1:f0:83:b8:b4:60:6e:ee:6e:fa:ec:09:2b:88:80: 29:37:64:24:06:7c:4d:0c:e9:ee:19:c4:2e:c3:a7:ef:d3:5a: 59:35:22:41:fa:1a:ab:ec:9e:8b:d0:3f:8c:7f:dc:46:7e:6e: 82:e5:16:64:ad:82:bd:b5:ed:c1:ed:ca:48:5c:2e:50:fa:30: 96:9b:67:07:0c:26:95:0d:a1:7e:74:8b:6e:de:4a:29:eb:aa: c8:46:ab:45:f4:45:01:c5:3a:3e:b9:f0:c4:5d:0f:b3:05:23: 6e:0f:d5:fa:45:11:da:36:e9:45:4f:43:46:57:fc:23:b9:69: cd:16:e4:71:7f:6d:53:d0:f0:ee:2a:97:34:20:70:c9:61:8c: 08:85:16:af:f1:7c:c0:9a:4d:c1:0b:c5:c9:14:50:20:30:c5: cf:b0:74:84 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUAl5j3xvjCrnrby17B94dT1t+yhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA5MDkxODMwMDJaFw0yNjA5MDgxODM1MDJaMDMxMTAvBgNV BAMTKEZGRTU4MEQ0RkEwNkJBNUFGOTdEOEI4NzY2NDJEMzY2MkM0RUJDRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvo2PyhY6+GFSOe+cUadzyvC63 96L30upxLnuhvoNL2mE0fNHS+AzQboPILCsl011M9uJVlneDXa123X7giwyIV09s Ax2qebzSzWVak2Hy5PP2qa2JxMksNnZCYOL97hMkC6tiqDWVKP3uBfl36kRbs8pT DkHFPyeBH8gSg5Mr2lLhn6AbbMY50ak0wyMaIulTiwldsJpmZWFxdU7N0sPv2Dzj 4q/ha6dwN1kv+vw/R+21qL0SlYzV0NP4ofk+xbeXl6IhGHhNQOuykCYCrJEfAGSE jm5NhlW9XDDNZht4qGAUz97GLTXWU0YX5/yG0fjuMbXmy9MV2eC+rdXFGGX7AgMB AAGjggKGMIICgjAdBgNVHQ4EFgQU/+WA1PoGulr5fYuHZkLTZixOvNMwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjQzMDMwM2EzYTJmMzQzMDJkMzEzMjM4MjAzZDNlMjAz MjMxMzUzMTMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYB BQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqBhKDjTANBgkqhkiG9w0BAQsFAAOCAQEA NNcunpPS997UbNhQXHpltuwAkascxuNxH2aFHVVAIBJXrqhiHOJgAOmry1JhHKa4 NbfwPTVyL4DxGWg3UBWFZtFrA7KOBzp4eWhNaIUJgZqFNsrNuRvWvIoV3xIz4fCD uLRgbu5u+uwJK4iAKTdkJAZ8TQzp7hnELsOn79NaWTUiQfoaq+yei9A/jH/cRn5u guUWZK2CvbXtwe3KSFwuUPowlptnBwwmlQ2hfnSLbt5KKeuqyEarRfRFAcU6Prnw xF0PswUjbg/V+kUR2jbpRU9DRlf8I7lpzRbkcX9tU9Dw7iqXNCBwyWGMCIUWr/F8 wJpNwQvFyRRQIDDFz7B0hA== -----END CERTIFICATE-----Generated at Thu Oct 9 06:01:54 2025 by rpki-client