$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34302d3438203d3e20323134373031.roa File: 326130623a346530373a363030303a3a2f34302d3438203d3e20323134373031.roa (raw, json) Hash identifier: mhaYla+UsHdOX7ijGa8kmFH/Ey3jwcszbuWBzNvxxRw= Subject key identifier: D7:3B:72:B6:18:CB:DF:65:1F:DE:55:A2:B1:09:03:92:73:71:CD:E1 Certificate issuer: /CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Certificate serial: 7DC5CEED33EB11C85DD768094D8462524D108081 Authority key identifier: DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34302d3438203d3e20323134373031.roa Signing time: Mon 06 Oct 2025 23:27:20 +0000 ROA not before: Mon 06 Oct 2025 23:22:20 +0000 ROA not after: Mon 05 Oct 2026 23:27:20 +0000 asID: 214701 IP address blocks: 2a0b:4e07:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 14 Oct 2025 11:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c5:ce:ed:33:eb:11:c8:5d:d7:68:09:4d:84:62:52:4d:10:80:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Validity Not Before: Oct 6 23:22:20 2025 GMT Not After : Oct 5 23:27:20 2026 GMT Subject: CN=D73B72B618CBDF651FDE55A2B10903927371CDE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:41:8b:a5:ac:8a:6f:0b:60:0d:8f:79:ca:6d: 5b:9e:5a:86:ff:6f:72:37:17:b9:18:7f:cc:8c:41: f3:f0:9d:ac:91:be:6e:fd:b5:79:99:ec:45:8c:52: c7:80:0e:3c:3d:8c:6b:d0:2a:c9:45:52:c1:eb:89: e2:34:a6:10:87:75:5a:60:4f:e4:45:e3:3b:a4:a1: 86:b3:5b:ca:bf:95:3f:6f:c9:14:ff:92:24:0b:72: e8:a5:95:91:e5:ec:68:4f:92:f1:81:7e:11:1c:50: 3b:f0:77:c9:a2:44:61:92:c7:07:6a:12:25:d2:3c: 72:5a:5b:fe:93:19:c5:45:0d:3b:a1:ab:71:54:25: ce:b1:2e:18:48:68:69:eb:3f:15:73:0a:ab:69:dd: b6:66:47:67:19:b6:74:27:d0:d9:6a:27:2d:34:d9: 3f:1d:51:7f:c6:a3:b4:a9:b4:c3:bf:a3:96:fc:ee: 70:bf:5a:a5:70:12:03:b0:28:c8:35:b8:b4:95:71: 11:bd:42:50:29:c1:ca:5a:2a:44:c2:d2:97:e8:c7: ff:8f:b1:ca:57:7e:e7:d5:47:95:50:83:14:9e:ea: 43:ae:e4:35:2e:f4:6c:0f:0f:6d:e5:73:cb:69:a2: 2e:13:ae:c5:7b:1c:c6:e4:e7:a9:53:d5:73:c4:f8: 2a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3B:72:B6:18:CB:DF:65:1F:DE:55:A2:B1:09:03:92:73:71:CD:E1 X509v3 Authority Key Identifier: keyid:DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34302d3438203d3e20323134373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:6000::/40 Signature Algorithm: sha256WithRSAEncryption 2d:30:07:0b:0f:55:fd:f7:1e:04:f3:a3:40:a1:0b:5a:76:8c: e6:7f:b1:d0:08:44:93:56:41:ea:67:a1:72:6d:39:b1:db:68: c7:65:9a:32:4d:fd:d0:9e:78:63:71:2c:ab:7c:a9:5a:4c:d4: 40:78:f8:37:63:d1:c0:82:04:0d:4d:77:bc:06:47:19:da:8f: a0:1e:47:ce:3b:2d:09:15:41:57:d6:aa:f1:cd:e0:bb:9b:e7: 8e:2d:ca:5e:3d:8e:9e:cf:fe:7e:e4:7d:4a:ee:c7:a7:3c:9f: 14:c7:05:5f:94:e4:89:fd:f8:66:b7:ae:b2:f0:9d:47:ab:72: e8:0c:4c:c8:e7:87:a1:95:57:ef:66:82:c6:3f:76:0f:41:b1: ae:d7:c9:c3:ea:60:fe:15:56:9b:bf:40:2c:8d:44:3d:b6:db: 45:6f:eb:98:a0:e5:4e:e9:42:bb:27:fe:d7:b5:46:91:1f:59: 5a:d9:29:03:45:48:13:76:02:99:64:e6:af:89:92:70:d9:24: 33:e9:3f:7a:20:42:86:7c:f4:07:ca:2b:0c:db:33:fd:58:be: 2e:82:5f:b4:60:81:c2:09:2b:6e:28:b5:14:97:97:01:d6:09: 46:8f:d1:7f:b8:20:b8:f5:d7:15:6b:d2:f9:a1:6d:c5:30:40: d2:34:70:47 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUfcXO7TPrEchd12gJTYRiUk0QgIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJG RERBNDExODAeFw0yNTEwMDYyMzIyMjBaFw0yNjEwMDUyMzI3MjBaMDMxMTAvBgNV BAMTKEQ3M0I3MkI2MThDQkRGNjUxRkRFNTVBMkIxMDkwMzkyNzM3MUNERTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvQYulrIpvC2ANj3nKbVueWob/ b3I3F7kYf8yMQfPwnayRvm79tXmZ7EWMUseADjw9jGvQKslFUsHrieI0phCHdVpg T+RF4zukoYazW8q/lT9vyRT/kiQLcuillZHl7GhPkvGBfhEcUDvwd8miRGGSxwdq EiXSPHJaW/6TGcVFDTuhq3FUJc6xLhhIaGnrPxVzCqtp3bZmR2cZtnQn0NlqJy00 2T8dUX/Go7SptMO/o5b87nC/WqVwEgOwKMg1uLSVcRG9QlApwcpaKkTC0pfox/+P scpXfufVR5VQgxSe6kOu5DUu9GwPD23lc8tpoi4TrsV7HMbk56lT1XPE+Cq9AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQU1ztythjL32Uf3lWisQkDknNxzeEwHwYDVR0j BBgwFoAU3cJa0vGkiSR3E+45scA+ov3aQRgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmVhZDJkY2YtZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5 YzUwLzMvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERBNDExOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERB NDExOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmVhZDJkY2Yt ZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5YzUwLzMvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzNjMwMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzAzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoLTgdgMA0GCSqGSIb3DQEBCwUAA4IBAQAtMAcLD1X99x4E86NA oQtadozmf7HQCESTVkHqZ6FybTmx22jHZZoyTf3QnnhjcSyrfKlaTNRAePg3Y9HA ggQNTXe8BkcZ2o+gHkfOOy0JFUFX1qrxzeC7m+eOLcpePY6ez/5+5H1K7senPJ8U xwVflOSJ/fhmt66y8J1Hq3LoDEzI54ehlVfvZoLGP3YPQbGu18nD6mD+FVabv0As jUQ9tttFb+uYoOVO6UK7J/7XtUaRH1la2SkDRUgTdgKZZOaviZJw2SQz6T96IEKG fPQHyisM2zP9WL4ugl+0YIHCCStuKLUUl5cB1glGj9F/uCC49dcVa9L5oW3FMEDS NHBH -----END CERTIFICATE-----Generated at Tue Oct 14 02:18:27 2025 by rpki-client