$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a626434303a3a2f34322d313238203d3e20323130373936.roa File: 326130363a313238333a626434303a3a2f34322d313238203d3e20323130373936.roa (raw, json) Hash identifier: NS2/G+GE49Imka70FRvnrWigl/cu3jsnXcP9mUuT9+I= Subject key identifier: AC:C8:E5:2A:DC:33:8D:9D:01:4E:D8:42:F5:8B:31:F0:88:38:03:5E Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 6613722E5E7E0FFAC6B0F4C95B7F3A47B5573568 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a626434303a3a2f34322d313238203d3e20323130373936.roa Signing time: Tue 30 Sep 2025 12:37:45 +0000 ROA not before: Tue 30 Sep 2025 12:32:45 +0000 ROA not after: Tue 29 Sep 2026 12:37:45 +0000 asID: 210796 IP address blocks: 2a06:1283:bd40::/42 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 15:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:13:72:2e:5e:7e:0f:fa:c6:b0:f4:c9:5b:7f:3a:47:b5:57:35:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Sep 30 12:32:45 2025 GMT Not After : Sep 29 12:37:45 2026 GMT Subject: CN=ACC8E52ADC338D9D014ED842F58B31F08838035E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:03:83:db:d3:22:ad:83:ee:b6:42:78:d4:d1: af:cb:39:6e:d8:68:4a:43:57:8c:9c:1f:ec:72:4e: f0:f8:94:53:63:4c:f3:34:ad:a1:a8:b7:a8:f0:80: 5a:95:ee:3b:dc:0c:0c:2b:92:fd:2c:21:47:8a:a5: 6a:d8:e0:67:de:88:03:38:f0:4d:0d:8d:fc:c5:56: 95:f4:17:26:15:92:93:1a:9e:70:5a:ac:fe:76:c0: 3f:aa:a7:2a:68:4e:fb:11:e3:32:3b:ec:02:71:87: 43:6d:ea:2d:ab:d0:e1:71:79:24:ad:e7:65:a5:3e: c5:c3:53:e6:61:bb:9b:81:8e:f8:6c:41:52:36:1e: 3c:5b:5d:00:3b:e6:f7:33:7f:d0:1e:54:ce:2a:dc: 4a:c3:67:27:2e:af:b2:3c:3a:07:ed:7c:bf:e2:39: 7f:00:e0:68:25:95:df:79:31:67:e2:36:e4:26:f1: df:ab:e5:a7:10:9f:01:99:c0:4d:23:13:2d:d5:cf: b7:26:6f:98:4d:87:11:ba:eb:3b:e6:38:dd:d2:fe: bb:68:3f:6a:2e:3b:38:a9:23:21:2a:c9:6b:dc:14: 6c:e7:1e:e8:5a:97:6e:7b:2f:79:70:dc:a7:c3:be: 7f:c1:2a:e2:79:de:88:5c:e6:f8:79:68:89:d0:b7: b8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C8:E5:2A:DC:33:8D:9D:01:4E:D8:42:F5:8B:31:F0:88:38:03:5E X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a626434303a3a2f34322d313238203d3e20323130373936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:bd40::/42 Signature Algorithm: sha256WithRSAEncryption 6b:ae:a6:bc:ed:04:79:ba:96:18:ed:c5:fc:4b:d6:92:21:25: 5a:5c:d8:24:3d:52:bc:0a:44:a0:e3:9b:6b:97:19:71:ef:32: e1:c8:e9:e3:6d:08:3b:15:8a:57:5a:b5:ca:db:07:84:9c:26: 7a:c6:62:72:cf:2e:f3:e5:a1:98:69:d8:a8:73:33:3e:0c:8b: cb:3e:9d:55:b4:52:80:db:47:ca:19:b3:0a:3f:ad:cd:ab:da: 91:7f:f5:c5:62:c2:c9:55:05:e3:96:06:dc:1e:0e:8c:1d:fa: 9c:c9:bb:2d:33:1e:69:74:55:f9:db:0f:03:cf:52:46:c4:b9: 4b:79:ab:7e:ed:2b:ef:ca:d2:2d:99:57:d9:0a:19:f6:08:09: e4:80:7b:20:9c:04:36:b3:62:c9:65:9a:f8:05:1b:1c:c9:bb: 36:0d:b8:fe:b9:2c:b6:34:4b:a7:a4:0b:b5:a8:97:f8:1e:5a: a7:89:4c:21:ee:10:0c:06:4f:b1:dc:81:93:df:9f:3c:d1:d1: 82:41:b0:03:02:b5:ed:89:d3:59:cf:80:dc:bb:a8:8a:8d:05: 29:25:04:bc:a0:54:2c:40:80:d0:92:3f:30:00:56:9f:c4:ee: fc:83:70:7b:89:25:74:db:8a:5e:3f:24:bf:7c:78:e3:07:44: f5:db:91:d6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUZhNyLl5+D/rGsPTJW386R7VXNWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA5MzAxMjMyNDVaFw0yNjA5MjkxMjM3NDVaMDMxMTAvBgNV BAMTKEFDQzhFNTJBREMzMzhEOUQwMTRFRDg0MkY1OEIzMUYwODgzODAzNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsA4Pb0yKtg+62QnjU0a/LOW7Y aEpDV4ycH+xyTvD4lFNjTPM0raGot6jwgFqV7jvcDAwrkv0sIUeKpWrY4GfeiAM4 8E0NjfzFVpX0FyYVkpMannBarP52wD+qpypoTvsR4zI77AJxh0Nt6i2r0OFxeSSt 52WlPsXDU+Zhu5uBjvhsQVI2HjxbXQA75vczf9AeVM4q3ErDZycur7I8OgftfL/i OX8A4Gglld95MWfiNuQm8d+r5acQnwGZwE0jEy3Vz7cmb5hNhxG66zvmON3S/rto P2ouOzipIyEqyWvcFGznHuhal257L3lw3KfDvn/BKuJ53ohc5vh5aInQt7hlAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUrMjlKtwzjZ0BTthC9Ysx8Ig4A14wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTYyNjQzNDMwM2EzYTJmMzQzMjJkMzEzMjM4MjAzZDNlMjAz MjMxMzAzNzM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwYqBhKDvUAwDQYJKoZIhvcNAQELBQADggEB AGuuprztBHm6lhjtxfxL1pIhJVpc2CQ9UrwKRKDjm2uXGXHvMuHI6eNtCDsVilda tcrbB4ScJnrGYnLPLvPloZhp2KhzMz4Mi8s+nVW0UoDbR8oZswo/rc2r2pF/9cVi wslVBeOWBtweDowd+pzJuy0zHml0VfnbDwPPUkbEuUt5q37tK+/K0i2ZV9kKGfYI CeSAeyCcBDazYsllmvgFGxzJuzYNuP65LLY0S6ekC7Wol/geWqeJTCHuEAwGT7Hc gZPfnzzR0YJBsAMCte2J01nPgNy7qIqNBSklBLygVCxAgNCSPzAAVp/E7vyDcHuJ JXTbil4/JL98eOMHRPXbkdY= -----END CERTIFICATE-----Generated at Thu Oct 9 06:00:23 2025 by rpki-client