$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa File: 326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: ZcdksXusZvsGLtEnzA79bXu4R9tRtoB6C1m74jW5A3Q= Subject key identifier: 88:A2:98:E5:00:36:EA:D6:DB:E6:B4:B7:09:70:77:7F:F4:9C:2C:0E Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 567FD7BA7C5581209902EFF974F7D7F53F126375 Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa Signing time: Thu 03 Jul 2025 21:56:22 +0000 ROA not before: Thu 03 Jul 2025 21:51:22 +0000 ROA not after: Thu 02 Jul 2026 21:56:22 +0000 asID: 214299 IP address blocks: 2a09:54c7:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 19:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:7f:d7:ba:7c:55:81:20:99:02:ef:f9:74:f7:d7:f5:3f:12:63:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Jul 3 21:51:22 2025 GMT Not After : Jul 2 21:56:22 2026 GMT Subject: CN=88A298E50036EAD6DBE6B4B70970777FF49C2C0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:78:86:fa:06:df:8a:df:6f:05:e8:20:b3:44: e5:ce:fa:c7:4e:cb:e2:91:98:bd:d7:e9:a3:6b:b2: 7a:39:51:ef:e2:7f:5d:91:60:71:b5:d6:78:e5:f6: 8d:fd:f5:c3:4b:ef:80:11:b7:01:03:3d:18:72:b1: af:49:a4:9e:60:d4:c6:86:31:a9:1c:c6:9b:43:1d: fb:96:e6:7b:82:3a:88:ae:f2:f6:91:a5:58:19:87: ac:76:c6:b0:84:8e:af:d9:02:97:c0:e1:4c:1a:8f: 03:dc:fb:e8:59:a8:aa:44:7e:6a:a5:bd:21:d0:3b: 9d:c9:ee:68:fe:ff:a9:de:f3:ef:b3:a7:ae:b5:ac: 2e:b8:64:96:a9:35:2a:1f:02:9c:0e:0e:b9:4d:4b: 8f:5f:39:23:ca:a4:21:fe:25:76:8e:24:5e:5e:55: 73:84:63:e7:c4:97:52:ef:be:80:18:90:8e:43:57: 5e:57:c6:f9:09:33:7e:ce:75:98:26:dd:de:8b:da: 34:60:8f:0f:3e:5a:99:77:fa:96:88:c6:d8:b4:2a: b3:50:a5:7f:83:cf:18:6e:52:18:1c:ca:c2:6e:5b: 3f:18:bf:93:37:c6:c6:06:e8:40:8f:37:59:79:6b: 5d:ab:53:66:4a:3f:41:cc:a3:5a:19:e9:c2:c1:a1: 4d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A2:98:E5:00:36:EA:D6:DB:E6:B4:B7:09:70:77:7F:F4:9C:2C:0E X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1001::/48 Signature Algorithm: sha256WithRSAEncryption 06:d3:be:92:d3:7b:0d:67:8a:7f:77:92:fe:0e:ef:ed:d1:c0: 85:eb:00:99:f5:67:78:f0:28:9f:96:0c:f7:59:77:43:9f:a4: 7a:87:a9:51:65:d3:be:ae:a9:dc:dc:b5:07:f8:5b:a3:15:bf: 6d:19:62:99:0a:41:93:c5:20:e2:b0:82:44:a5:71:c2:ad:29: 9c:55:9e:e6:34:9c:81:f8:6e:33:a0:58:07:6c:ad:5d:94:a5: d4:d5:45:7a:5a:4e:36:0a:19:b4:4b:d7:ec:b5:b4:e9:6a:fa: f7:be:9b:b7:fd:4e:a0:5d:c9:c8:28:e4:45:06:48:29:78:05: 69:d6:93:5e:51:75:98:16:25:0a:de:d2:7f:00:40:23:ae:4c: fa:88:7c:14:3d:32:80:89:fd:79:43:ea:b2:b5:86:a9:7c:61: 06:8b:16:d2:06:fe:2d:e5:ee:44:06:5b:ae:ef:a9:09:ff:b0: 45:ed:56:e0:07:51:dc:25:cc:a3:f4:72:68:63:6a:3f:8f:4f: 4d:9c:1d:38:c4:e5:ff:06:a9:83:b9:6d:a1:7b:95:0f:7f:a9: 3e:6f:75:a7:35:fd:b7:0b:a1:46:ea:d8:e0:ee:7c:f4:d7:26: 79:d2:23:51:ee:da:50:78:99:4a:f0:f9:21:93:71:84:fd:16: 46:15:b8:3f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUVn/XunxVgSCZAu/5dPfX9T8SY3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA3MDMyMTUxMjJaFw0yNjA3MDIyMTU2MjJaMDMxMTAvBgNV BAMTKDg4QTI5OEU1MDAzNkVBRDZEQkU2QjRCNzA5NzA3NzdGRjQ5QzJDMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeeIb6Bt+K328F6CCzROXO+sdO y+KRmL3X6aNrsno5Ue/if12RYHG11njl9o399cNL74ARtwEDPRhysa9JpJ5g1MaG MakcxptDHfuW5nuCOoiu8vaRpVgZh6x2xrCEjq/ZApfA4UwajwPc++hZqKpEfmql vSHQO53J7mj+/6ne8++zp661rC64ZJapNSofApwODrlNS49fOSPKpCH+JXaOJF5e VXOEY+fEl1LvvoAYkI5DV15XxvkJM37OdZgm3d6L2jRgjw8+Wpl3+paIxti0KrNQ pX+DzxhuUhgcysJuWz8Yv5M3xsYG6ECPN1l5a12rU2ZKP0HMo1oZ6cLBoU0zAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUiKKY5QA26tbb5rS3CXB3f/ScLA4wHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxMzAzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxxABMA0GCSqGSIb3DQEBCwUAA4IBAQAG 076S03sNZ4p/d5L+Du/t0cCF6wCZ9Wd48Ciflgz3WXdDn6R6h6lRZdO+rqnc3LUH +FujFb9tGWKZCkGTxSDisIJEpXHCrSmcVZ7mNJyB+G4zoFgHbK1dlKXU1UV6Wk42 Chm0S9fstbTpavr3vpu3/U6gXcnIKORFBkgpeAVp1pNeUXWYFiUK3tJ/AEAjrkz6 iHwUPTKAif15Q+qytYapfGEGixbSBv4t5e5EBluu76kJ/7BF7VbgB1HcJcyj9HJo Y2o/j09NnB04xOX/BqmDuW2he5UPf6k+b3WnNf23C6FG6tjg7nz01yZ50iNR7tpQ eJlK8Pkhk3GE/RZGFbg/ -----END CERTIFICATE-----Generated at Sun Jul 6 08:01:51 2025 by rpki-client