$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa File: 326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: FciUVAzI9S+mi5njON8p5QSvWZZPmoftRYdBUiJGcwc= Subject key identifier: 6F:84:74:A9:7E:21:F9:F8:16:9B:7F:D0:A2:D0:26:87:EC:B5:8E:FD Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 04A0FBD50443C69041E1CA470A4A011F83947B8D Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa Signing time: Thu 03 Jul 2025 21:56:22 +0000 ROA not before: Thu 03 Jul 2025 21:51:22 +0000 ROA not after: Thu 02 Jul 2026 21:56:22 +0000 asID: 214299 IP address blocks: 2a09:54c7:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 19:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a0:fb:d5:04:43:c6:90:41:e1:ca:47:0a:4a:01:1f:83:94:7b:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Jul 3 21:51:22 2025 GMT Not After : Jul 2 21:56:22 2026 GMT Subject: CN=6F8474A97E21F9F8169B7FD0A2D02687ECB58EFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:34:e8:f9:be:2d:48:8b:fd:78:81:c1:93:ad: 17:06:d8:0d:80:92:c0:0f:50:25:c2:7a:f0:f6:5a: da:f8:83:c0:ad:06:7b:17:39:70:1c:ba:c7:51:b7: af:c7:16:54:d0:69:fd:f0:a3:23:b9:31:48:be:83: 15:32:c0:ac:7d:b4:1e:1e:02:36:30:f1:c4:41:cd: b8:cc:57:b8:72:1d:8c:18:95:ab:56:9c:b3:cc:07: e1:ee:d9:27:33:d2:75:b8:72:4a:fe:cb:79:fc:7b: 29:51:02:cf:1b:fd:10:81:48:e2:bb:05:e5:a8:b9: ce:a5:14:8a:0e:77:86:7d:85:f1:d1:05:6b:3c:74: 4c:f0:d5:26:8b:77:80:43:de:57:f7:97:ef:57:3f: de:72:e4:40:9b:39:9b:ed:60:97:3a:07:d4:1f:0c: 93:62:4a:c8:70:ad:d2:3a:71:1c:77:9c:f4:8e:37: 3a:55:d1:cd:6d:7e:62:65:37:54:aa:ab:8d:23:20: ce:73:1e:46:dc:c7:2e:e8:9d:e5:c7:71:d3:28:eb: 69:b2:3a:90:9f:48:9e:43:5b:ae:ec:e8:9a:c6:b4: fd:9a:4a:43:7d:f3:55:ac:63:d5:64:4d:a8:ea:e3: 85:19:b8:ea:67:6d:69:fc:23:2e:dd:f4:44:6f:68: 4e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:84:74:A9:7E:21:F9:F8:16:9B:7F:D0:A2:D0:26:87:EC:B5:8E:FD X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1000::/48 Signature Algorithm: sha256WithRSAEncryption 0c:5a:4c:5d:19:e9:10:7f:9a:10:ea:3d:ff:01:ae:d9:6b:df: bc:87:e6:f3:da:61:45:cf:6f:e4:99:25:1f:18:ee:a7:16:69: 35:fd:60:a9:a7:af:c8:4b:8e:5b:ec:89:c9:27:b7:28:32:d1: 6a:8f:dc:8e:1b:22:d6:17:f6:fc:4d:c2:9b:e9:ca:d8:fe:44: 8c:af:f7:76:7c:33:09:46:c9:e1:be:d0:31:51:22:d5:c5:ce: fe:1c:c2:54:a2:47:c0:02:a1:8f:f5:e5:03:d2:34:8e:40:fb: f2:f1:3b:98:a5:31:35:f7:f1:9e:03:8f:71:d2:21:49:8e:c1: da:c2:57:f7:e9:fd:dc:6e:fb:c4:cd:a3:55:e5:d5:20:10:5e: d6:8c:a6:da:fd:fc:2b:bb:be:37:3d:93:6a:20:d6:6d:3f:9f: 87:ff:9b:24:e7:0f:01:70:de:99:3b:d4:89:f9:33:cb:65:f4: 80:bc:02:1f:3f:b8:d8:24:c6:00:00:dd:b3:29:f5:24:7f:55: 91:5f:bf:d9:d0:25:48:53:9a:8b:da:53:6c:fc:8e:0b:34:15: b7:f9:67:8b:ec:95:c2:c5:09:a8:6f:82:f2:16:e2:56:a0:f7: c2:96:68:79:c9:4e:fa:30:58:80:a8:da:84:45:4d:f8:c3:71: 9c:87:4b:c8 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUBKD71QRDxpBB4cpHCkoBH4OUe40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA3MDMyMTUxMjJaFw0yNjA3MDIyMTU2MjJaMDMxMTAvBgNV BAMTKDZGODQ3NEE5N0UyMUY5RjgxNjlCN0ZEMEEyRDAyNjg3RUNCNThFRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmNOj5vi1Ii/14gcGTrRcG2A2A ksAPUCXCevD2Wtr4g8CtBnsXOXAcusdRt6/HFlTQaf3woyO5MUi+gxUywKx9tB4e AjYw8cRBzbjMV7hyHYwYlatWnLPMB+Hu2Scz0nW4ckr+y3n8eylRAs8b/RCBSOK7 BeWouc6lFIoOd4Z9hfHRBWs8dEzw1SaLd4BD3lf3l+9XP95y5ECbOZvtYJc6B9Qf DJNiSshwrdI6cRx3nPSONzpV0c1tfmJlN1Sqq40jIM5zHkbcxy7oneXHcdMo62my OpCfSJ5DW67s6JrGtP2aSkN981WsY9VkTajq44UZuOpnbWn8Iy7d9ERvaE4rAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUb4R0qX4h+fgWm3/QotAmh+y1jv0wHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxMzAzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxxAAMA0GCSqGSIb3DQEBCwUAA4IBAQAM WkxdGekQf5oQ6j3/Aa7Za9+8h+bz2mFFz2/kmSUfGO6nFmk1/WCpp6/IS45b7InJ J7coMtFqj9yOGyLWF/b8TcKb6crY/kSMr/d2fDMJRsnhvtAxUSLVxc7+HMJUokfA AqGP9eUD0jSOQPvy8TuYpTE19/GeA49x0iFJjsHawlf36f3cbvvEzaNV5dUgEF7W jKba/fwru743PZNqINZtP5+H/5sk5w8BcN6ZO9SJ+TPLZfSAvAIfP7jYJMYAAN2z KfUkf1WRX7/Z0CVIU5qL2lNs/I4LNBW3+WeL7JXCxQmob4LyFuJWoPfClmh5yU76 MFiAqNqERU34w3Gch0vI -----END CERTIFICATE-----Generated at Sun Jul 6 08:13:19 2025 by rpki-client