$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa File: 326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa (raw, json) Hash identifier: zh/0wPRro0Lk1m44hGThxyXQVvLxur06EBEe3Ht0Czk= Subject key identifier: B0:5F:7F:D0:2F:E4:2A:26:7D:6F:6E:62:8F:3E:EB:D6:F0:90:0A:8B Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 68EBB11DE4777B9D200E3844B19415CF85ECDC48 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa Signing time: Fri 04 Jul 2025 16:48:01 +0000 ROA not before: Fri 04 Jul 2025 16:43:01 +0000 ROA not after: Fri 03 Jul 2026 16:48:01 +0000 asID: 211066 IP address blocks: 2a06:1283:8e00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:eb:b1:1d:e4:77:7b:9d:20:0e:38:44:b1:94:15:cf:85:ec:dc:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 4 16:43:01 2025 GMT Not After : Jul 3 16:48:01 2026 GMT Subject: CN=B05F7FD02FE42A267D6F6E628F3EEBD6F0900A8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6c:64:51:f0:a3:ad:6f:a8:7b:34:c6:d9:34: fc:8b:54:7b:a3:f1:a9:e6:de:9b:18:6f:2d:2e:7b: f1:fe:4d:21:5e:37:d5:06:ed:26:44:a8:32:79:2f: 92:bd:c6:3f:39:51:35:a5:3d:5d:4c:26:64:cf:aa: 9b:c0:1a:b1:08:57:ab:a8:33:b7:36:f0:08:03:a5: 80:95:66:cf:28:39:be:b8:cc:aa:35:f4:4a:5b:85: 82:6d:96:a1:4f:be:f2:58:d5:91:1c:5b:56:ba:28: b3:a5:5c:ce:91:8b:50:05:44:1d:24:cc:f8:7b:25: c7:fb:e8:f4:ca:12:7c:65:4e:8e:8c:83:e4:d6:f5: ff:36:45:92:f8:39:b2:fd:ba:5d:7b:9f:9d:c0:4a: fc:e3:cb:6c:99:86:5c:e8:a3:c1:69:36:e9:92:a5: 45:30:38:f6:69:ae:78:33:5d:89:6a:c9:10:e0:5a: 67:f8:69:74:42:92:cb:24:f9:18:0d:07:86:67:0a: f4:e9:66:cc:e1:0f:84:e1:16:41:06:74:e7:70:48: 6e:66:d9:b5:90:da:03:15:22:d2:7e:e0:84:90:45: 6f:49:47:86:b6:b9:af:f5:b6:08:a3:72:b4:12:ef: c4:38:27:c7:ff:8b:ec:64:43:39:11:02:f8:79:41: 22:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5F:7F:D0:2F:E4:2A:26:7D:6F:6E:62:8F:3E:EB:D6:F0:90:0A:8B X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8e00::/40 Signature Algorithm: sha256WithRSAEncryption b2:f4:8b:38:cc:fd:34:81:dd:9b:fc:3f:18:a4:89:d0:7c:a4: 91:db:6a:5a:22:0a:41:6f:7a:a8:d8:7b:80:8e:ac:5f:8f:4a: 8f:b2:7b:9a:09:19:93:dd:c3:9c:87:db:80:69:e6:95:61:a4: c0:2f:7d:ca:97:fa:7d:27:8c:a5:9e:94:eb:95:cf:43:00:aa: 1e:af:8a:9a:11:e1:03:3b:b6:fd:4f:3a:51:40:02:ef:7c:d5: 82:b7:bf:4e:e4:cc:30:e7:f9:d3:dd:47:0d:ee:7e:1b:4c:04: 04:ca:d8:fb:70:14:8e:ed:ef:34:c8:6c:04:59:13:ab:73:39: 6d:50:36:2f:a7:91:11:d4:94:f1:18:72:fb:09:90:50:7d:dd: 92:db:a7:7a:37:6f:10:27:cf:19:f7:7d:52:96:ce:79:16:5e: 5b:1f:9b:34:68:72:9c:f0:ec:13:18:14:27:bf:ed:82:ea:30: 37:d0:65:3f:83:f2:a1:9f:1f:91:51:78:ae:f7:14:09:42:70: 86:b7:22:66:7c:0a:df:88:36:2f:6b:c5:80:4a:ae:73:b2:cc: 1a:d9:74:57:d3:7b:1d:85:05:98:7b:00:e5:ff:19:3e:68:0f: bc:b0:31:3a:f9:f8:4e:a4:b2:3f:f8:6e:9f:f1:35:42:3c:54: 62:2d:85:74 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUaOuxHeR3e50gDjhEsZQVz4Xs3EgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MDQxNjQzMDFaFw0yNjA3MDMxNjQ4MDFaMDMxMTAvBgNV BAMTKEIwNUY3RkQwMkZFNDJBMjY3RDZGNkU2MjhGM0VFQkQ2RjA5MDBBOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtbGRR8KOtb6h7NMbZNPyLVHuj 8anm3psYby0ue/H+TSFeN9UG7SZEqDJ5L5K9xj85UTWlPV1MJmTPqpvAGrEIV6uo M7c28AgDpYCVZs8oOb64zKo19EpbhYJtlqFPvvJY1ZEcW1a6KLOlXM6Ri1AFRB0k zPh7Jcf76PTKEnxlTo6Mg+TW9f82RZL4ObL9ul17n53ASvzjy2yZhlzoo8FpNumS pUUwOPZprngzXYlqyRDgWmf4aXRCkssk+RgNB4ZnCvTpZszhD4ThFkEGdOdwSG5m 2bWQ2gMVItJ+4ISQRW9JR4a2ua/1tgijcrQS78Q4J8f/i+xkQzkRAvh5QSL9AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUsF9/0C/kKiZ9b25ijz7r1vCQCoswHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjUzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTMxMzAzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgYSg44wDQYJKoZIhvcNAQELBQADggEBALL0 izjM/TSB3Zv8PxikidB8pJHbaloiCkFveqjYe4COrF+PSo+ye5oJGZPdw5yH24Bp 5pVhpMAvfcqX+n0njKWelOuVz0MAqh6vipoR4QM7tv1POlFAAu981YK3v07kzDDn +dPdRw3ufhtMBATK2PtwFI7t7zTIbARZE6tzOW1QNi+nkRHUlPEYcvsJkFB93ZLb p3o3bxAnzxn3fVKWznkWXlsfmzRocpzw7BMYFCe/7YLqMDfQZT+D8qGfH5FReK73 FAlCcIa3ImZ8Ct+INi9rxYBKrnOyzBrZdFfTex2FBZh7AOX/GT5oD7ywMTr5+E6k sj/4bp/xNUI8VGIthXQ= -----END CERTIFICATE-----Generated at Sat Jul 5 15:42:51 2025 by rpki-client