$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa File: 326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa (raw, json) Hash identifier: +z0Qc7b7Pm0YyOUO4LNkttIVrmFKBrkfbPc/zfrDGTk= Subject key identifier: 51:53:57:C2:91:95:51:A7:5B:61:8D:FD:7E:65:8D:7B:C6:91:84:B6 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 1D375B46F15246808DF2ABDE9A1CD95CAAFC56A5 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa Signing time: Fri 04 Jul 2025 16:48:00 +0000 ROA not before: Fri 04 Jul 2025 16:43:00 +0000 ROA not after: Fri 03 Jul 2026 16:48:00 +0000 asID: 215147 IP address blocks: 2a06:1283:c110::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:37:5b:46:f1:52:46:80:8d:f2:ab:de:9a:1c:d9:5c:aa:fc:56:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 4 16:43:00 2025 GMT Not After : Jul 3 16:48:00 2026 GMT Subject: CN=515357C2919551A75B618DFD7E658D7BC69184B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:14:db:ba:bb:ea:8e:14:fd:f0:19:56:15:74: 89:fa:e8:ac:8e:f3:fd:f0:45:b4:b7:bb:01:65:9f: ab:1d:74:6e:51:2e:07:75:06:21:47:fb:45:b9:b4: 06:85:ca:32:81:2b:46:b3:16:68:dd:c0:85:08:36: 7c:f7:76:71:a8:8e:92:74:b6:33:7a:54:59:f4:fb: 40:b5:02:3d:cd:ad:52:40:3b:ad:d2:aa:03:87:2d: 25:24:5a:ce:92:a6:ce:42:2f:0c:1c:ea:17:a6:6d: 11:df:ea:0a:ec:89:ff:dd:a8:c1:c2:d4:64:c8:fa: 26:cd:7d:1c:4f:58:bf:17:88:36:c2:af:87:0c:5a: a7:42:02:50:f7:78:29:8e:85:d8:8f:e8:1c:d8:15: dc:54:92:f1:30:0a:69:0b:56:60:63:a6:fd:ef:5f: 56:f0:83:17:a3:a1:dd:0d:21:7e:b1:5b:37:8b:83: f9:e5:c9:fc:35:9d:66:32:ba:71:51:b9:8d:68:f9: 74:ba:11:62:83:7a:0c:e3:1c:ad:95:05:c4:7f:c2: f4:84:5e:c2:57:10:85:c1:19:39:9d:e3:45:c5:fd: a2:da:b2:d8:fd:fe:f5:4c:8f:56:c4:0e:6c:e4:96: 3b:9a:a2:64:af:77:b0:9d:6e:88:bf:06:f3:42:25: aa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:53:57:C2:91:95:51:A7:5B:61:8D:FD:7E:65:8D:7B:C6:91:84:B6 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c110::/44 Signature Algorithm: sha256WithRSAEncryption 45:29:1d:b4:f3:44:ed:02:f1:99:87:8f:31:3a:ff:52:ed:04: 96:74:be:06:28:35:94:27:15:eb:58:c9:20:e2:8a:d6:42:31: 36:f7:0e:8a:74:cd:26:4e:a7:93:2b:88:63:03:20:6b:cf:ef: 13:80:9b:94:9c:1c:78:49:6e:e0:c4:bf:aa:42:50:5d:23:6d: cd:fc:f0:69:2f:06:95:0e:dc:2b:6a:da:f4:a5:7d:5c:86:77: d6:ce:80:73:d8:d4:e9:d8:2b:d9:ca:ae:bc:36:02:ac:ba:e4: c1:17:a2:08:b7:ea:10:ef:0b:b1:fb:e0:11:f1:25:19:30:9c: 35:94:ca:07:53:b4:4b:9f:5d:6a:b5:b5:01:8d:0b:9b:0b:73: 89:87:99:75:17:f8:04:e7:a0:c2:1f:dd:38:e6:55:e5:fe:28: 6e:46:5f:ea:32:b1:a4:69:3e:2c:64:12:77:43:f0:bd:65:e3: 08:e6:89:51:c1:c0:48:b9:d9:e3:27:94:d1:41:f2:cf:93:91: 00:7c:6e:1e:fe:7f:74:9c:0a:bb:1e:26:65:80:33:18:10:c0: 31:85:1e:9f:94:56:55:b6:0b:8a:8d:33:20:ea:84:4e:dd:98: 27:53:ad:03:aa:e0:b6:f8:d7:9d:96:57:3e:b5:b4:a7:35:23: bc:9e:2c:e5 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUHTdbRvFSRoCN8qvemhzZXKr8VqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MDQxNjQzMDBaFw0yNjA3MDMxNjQ4MDBaMDMxMTAvBgNV BAMTKDUxNTM1N0MyOTE5NTUxQTc1QjYxOERGRDdFNjU4RDdCQzY5MTg0QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrFNu6u+qOFP3wGVYVdIn66KyO 8/3wRbS3uwFln6sddG5RLgd1BiFH+0W5tAaFyjKBK0azFmjdwIUINnz3dnGojpJ0 tjN6VFn0+0C1Aj3NrVJAO63SqgOHLSUkWs6Sps5CLwwc6hembRHf6grsif/dqMHC 1GTI+ibNfRxPWL8XiDbCr4cMWqdCAlD3eCmOhdiP6BzYFdxUkvEwCmkLVmBjpv3v X1bwgxejod0NIX6xWzeLg/nlyfw1nWYyunFRuY1o+XS6EWKDegzjHK2VBcR/wvSE XsJXEIXBGTmd40XF/aLastj9/vVMj1bEDmzkljuaomSvd7Cdboi/BvNCJapFAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUUVNXwpGVUadbYY39fmWNe8aRhLYwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTYzMzEzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgYSg8EQMA0GCSqGSIb3DQEBCwUAA4IBAQBF KR2080TtAvGZh48xOv9S7QSWdL4GKDWUJxXrWMkg4orWQjE29w6KdM0mTqeTK4hj AyBrz+8TgJuUnBx4SW7gxL+qQlBdI23N/PBpLwaVDtwratr0pX1chnfWzoBz2NTp 2CvZyq68NgKsuuTBF6IIt+oQ7wux++AR8SUZMJw1lMoHU7RLn11qtbUBjQubC3OJ h5l1F/gE56DCH9045lXl/ihuRl/qMrGkaT4sZBJ3Q/C9ZeMI5olRwcBIudnjJ5TR QfLPk5EAfG4e/n90nAq7HiZlgDMYEMAxhR6flFZVtguKjTMg6oRO3ZgnU60DquC2 +Nedllc+tbSnNSO8nizl -----END CERTIFICATE-----Generated at Sat Jul 5 15:20:58 2025 by rpki-client