$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa File: 326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: cVUnxtHKHvSuPoMrFujGuYJeptorC3XFD7GVRffPXsw= Subject key identifier: FD:9F:64:0E:2C:BB:7C:DC:0B:2C:FF:D9:DE:4F:B9:E3:5F:1C:25:F4 Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 06BF9F247EEE7D22CEEA1089F29F53E5D169C7CA Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa Signing time: Sun 31 Aug 2025 14:38:48 +0000 ROA not before: Sun 31 Aug 2025 14:33:48 +0000 ROA not after: Sun 30 Aug 2026 14:38:48 +0000 asID: 214299 IP address blocks: 2a09:54c7:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 20:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:bf:9f:24:7e:ee:7d:22:ce:ea:10:89:f2:9f:53:e5:d1:69:c7:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Aug 31 14:33:48 2025 GMT Not After : Aug 30 14:38:48 2026 GMT Subject: CN=FD9F640E2CBB7CDC0B2CFFD9DE4FB9E35F1C25F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:25:bc:bb:b2:bd:ad:06:ba:05:df:a6:bb:36: 6a:16:4a:f7:28:e1:70:68:37:0e:ea:09:48:49:6b: df:88:47:02:81:18:12:2a:4d:c7:fe:1a:cf:b7:1c: 8d:1d:4b:22:20:3a:67:a2:c8:35:63:d5:78:e0:f3: e5:0c:b0:c7:6b:d4:fe:4c:50:8d:83:f3:bf:45:7b: 15:df:f9:a3:4e:a0:00:fd:e3:f9:0d:b1:d9:71:75: 66:da:dd:c6:f1:92:c4:9b:99:2e:a4:4a:ba:e4:dc: 71:67:d6:2c:ad:ce:d0:a8:0d:e0:80:ce:61:3b:b5: 8b:10:8c:cb:9e:11:79:ff:d7:39:e4:9a:c8:a7:a9: ce:c6:be:61:2a:ed:21:81:25:67:48:c4:90:e0:10: a9:36:b2:bf:57:1e:4a:b9:cd:13:43:e7:ac:29:ac: 83:cb:41:ca:5b:b5:a8:76:c4:69:a5:5e:33:31:04: c2:de:fb:87:e8:c3:ab:fa:25:6a:df:41:84:76:ac: 37:f6:c2:6a:65:9b:2d:e1:08:4e:ca:d6:da:a3:91: e5:aa:34:60:7e:7e:2b:2b:42:43:d2:2c:3f:44:50: b2:74:88:68:4e:f7:f0:ec:45:d3:09:60:f9:a6:d9: da:bf:0a:98:fb:73:66:02:9e:e4:f9:80:b4:e5:45: fc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9F:64:0E:2C:BB:7C:DC:0B:2C:FF:D9:DE:4F:B9:E3:5F:1C:25:F4 X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1000::/48 Signature Algorithm: sha256WithRSAEncryption 70:05:83:c5:4a:30:07:27:d1:da:7a:9d:20:dc:ed:00:6c:f5: 16:1d:1c:ec:c1:4c:75:62:54:67:d4:27:d0:75:f9:5c:8f:1a: 32:26:d6:70:b8:1a:04:32:ea:55:42:9a:06:16:ee:5c:e5:d9: 8b:81:e9:93:ff:a7:4d:dc:67:48:98:d0:b5:70:55:0a:84:ed: 29:78:51:ff:25:c5:93:37:75:fd:f9:55:c6:c2:8c:57:8e:a5: b0:2e:f4:88:46:9f:2d:21:ff:c2:72:87:67:ff:fc:fa:c7:b0: 5f:68:14:95:ea:1f:c4:ed:46:20:a1:d2:33:10:80:ee:38:34: d3:e0:5e:bc:70:e3:10:05:fb:39:68:13:a5:68:9e:6c:ac:d5: ac:5d:39:da:c8:0f:49:e6:d2:5c:1b:d3:15:57:64:a4:75:76: 71:d3:b1:ba:25:6e:0c:07:6a:13:e2:55:50:29:96:43:d6:33: eb:69:6c:06:70:19:e2:9a:6c:69:c2:8f:f7:9f:a6:c7:25:9a: 41:1e:bb:10:5f:e5:36:91:b9:d1:31:8c:aa:d6:28:8e:8c:bb: c9:f7:5c:76:de:e8:17:47:04:5b:46:36:c3:c1:b8:8d:18:43: 8c:f0:16:34:5d:20:73:12:68:9b:6a:66:2c:81:ee:b7:1e:c4: 78:04:5c:2d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUBr+fJH7ufSLO6hCJ8p9T5dFpx8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA4MzExNDMzNDhaFw0yNjA4MzAxNDM4NDhaMDMxMTAvBgNV BAMTKEZEOUY2NDBFMkNCQjdDREMwQjJDRkZEOURFNEZCOUUzNUYxQzI1RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLJby7sr2tBroF36a7NmoWSvco 4XBoNw7qCUhJa9+IRwKBGBIqTcf+Gs+3HI0dSyIgOmeiyDVj1Xjg8+UMsMdr1P5M UI2D879FexXf+aNOoAD94/kNsdlxdWba3cbxksSbmS6kSrrk3HFn1iytztCoDeCA zmE7tYsQjMueEXn/1znkmsinqc7GvmEq7SGBJWdIxJDgEKk2sr9XHkq5zRND56wp rIPLQcpbtah2xGmlXjMxBMLe+4fow6v6JWrfQYR2rDf2wmplmy3hCE7K1tqjkeWq NGB+fisrQkPSLD9EULJ0iGhO9/DsRdMJYPmm2dq/Cpj7c2YCnuT5gLTlRfx5AgMB AAGjggJVMIICUTAdBgNVHQ4EFgQU/Z9kDiy7fNwLLP/Z3k+5418cJfQwHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxMzAzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxxAAMA0GCSqGSIb3DQEBCwUAA4IBAQBw BYPFSjAHJ9Haep0g3O0AbPUWHRzswUx1YlRn1CfQdflcjxoyJtZwuBoEMupVQpoG Fu5c5dmLgemT/6dN3GdImNC1cFUKhO0peFH/JcWTN3X9+VXGwoxXjqWwLvSIRp8t If/Ccodn//z6x7BfaBSV6h/E7UYgodIzEIDuODTT4F68cOMQBfs5aBOlaJ5srNWs XTnayA9J5tJcG9MVV2SkdXZx07G6JW4MB2oT4lVQKZZD1jPraWwGcBnimmxpwo/3 n6bHJZpBHrsQX+U2kbnRMYyq1iiOjLvJ91x23ugXRwRbRjbDwbiNGEOM8BY0XSBz EmibamYsge63HsR4BFwt -----END CERTIFICATE-----Generated at Thu Oct 9 08:03:12 2025 by rpki-client