$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa File: 326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: uBOfZzLyikTvegmkIxWMQt/2ZVji1t85l3talCttNxU= Subject key identifier: 9A:89:2F:8A:1F:1A:84:C7:6F:04:DA:AC:62:69:4C:C9:4A:76:7C:EB Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 0A41948F0EABFD202495675D66191F16E116B221 Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa Signing time: Sun 31 Aug 2025 14:38:48 +0000 ROA not before: Sun 31 Aug 2025 14:33:48 +0000 ROA not after: Sun 30 Aug 2026 14:38:48 +0000 asID: 214299 IP address blocks: 2a09:54c7:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 20:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:41:94:8f:0e:ab:fd:20:24:95:67:5d:66:19:1f:16:e1:16:b2:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Aug 31 14:33:48 2025 GMT Not After : Aug 30 14:38:48 2026 GMT Subject: CN=9A892F8A1F1A84C76F04DAAC62694CC94A767CEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:42:bb:63:58:97:1f:25:9a:8b:de:45:56:e9: ab:82:92:42:99:6c:4f:b3:13:71:85:cc:5f:55:1e: df:48:18:69:34:87:28:21:b6:97:96:d3:af:0e:bd: 27:71:af:f4:06:95:f2:c7:47:6a:db:34:8c:50:5b: 00:b7:28:ef:1f:9c:c5:25:b7:dc:8b:be:4e:9d:1f: 40:2b:fb:bd:17:0c:08:52:f7:09:0a:2d:1f:01:1b: 27:4b:93:6e:b0:13:e7:be:3e:22:6d:1d:21:41:2a: 1d:b7:65:c7:dc:82:cb:87:2d:12:49:33:7b:b6:ea: ea:a9:76:ed:82:06:65:e8:c3:31:22:5e:de:98:ab: bc:69:a4:57:5c:d8:02:89:51:a3:4e:8e:4e:8c:5b: 0a:29:ff:fa:44:ad:9a:cf:3c:88:29:f5:0a:63:d3: 40:d8:2f:4e:db:93:1c:a9:f0:b0:71:fd:94:2f:2c: bd:e5:09:09:91:87:32:65:c4:0a:be:fa:ed:64:92: 16:5b:8f:6b:ed:34:df:ed:74:e1:3b:10:7b:94:9c: cb:46:ea:e4:fc:54:20:d9:82:c8:8b:3e:df:f3:35: 79:4b:e8:47:76:e1:76:c5:b0:69:18:78:91:25:75: 43:48:cc:db:21:57:8a:1e:ab:be:f1:81:d0:e4:4c: a5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:89:2F:8A:1F:1A:84:C7:6F:04:DA:AC:62:69:4C:C9:4A:76:7C:EB X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a313030313a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1001::/48 Signature Algorithm: sha256WithRSAEncryption 98:b5:51:6a:9a:89:0c:32:8d:61:df:d4:40:99:43:7d:6c:da: d0:d3:83:3e:ff:90:2a:2d:54:85:77:72:0b:8a:00:f1:2f:16: 94:8b:6e:df:52:53:1b:c7:46:df:55:58:d2:03:fe:5c:10:5b: f8:7a:f4:65:f5:c7:bf:cf:df:79:d0:74:72:8d:d6:69:34:c4: 3f:05:91:dd:c7:b9:86:d0:c6:e2:3b:8a:52:24:56:25:53:ad: 98:aa:b4:7a:5f:04:ff:1a:54:52:17:12:3e:e7:11:2b:91:39: 4c:86:b2:b4:34:f9:90:72:7c:26:e2:08:fc:4c:75:b4:af:e1: 57:81:1f:5d:d3:bb:38:3e:f1:d8:fa:b4:f5:28:e3:b8:4b:64: 28:23:f5:00:2a:4c:58:d0:7a:40:c3:9d:9b:f4:3b:74:fc:cb: 0e:33:43:c3:93:c9:77:d7:fa:e0:31:24:04:4f:8e:6a:f3:6b: 29:03:33:de:04:5e:7c:14:bd:a8:ba:dd:b3:36:64:aa:54:cb: ad:e5:a4:ce:d5:b3:ad:1a:39:05:01:02:12:0c:eb:50:92:51: 83:5f:8f:2a:e0:3c:0c:3b:4f:60:0d:b6:e5:9d:17:b1:e2:99: 1d:b7:61:af:5a:84:7a:5d:ad:c7:b9:47:7d:63:e6:36:c5:16: 2c:32:24:02 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUCkGUjw6r/SAklWddZhkfFuEWsiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA4MzExNDMzNDhaFw0yNjA4MzAxNDM4NDhaMDMxMTAvBgNV BAMTKDlBODkyRjhBMUYxQTg0Qzc2RjA0REFBQzYyNjk0Q0M5NEE3NjdDRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHQrtjWJcfJZqL3kVW6auCkkKZ bE+zE3GFzF9VHt9IGGk0hyghtpeW068OvSdxr/QGlfLHR2rbNIxQWwC3KO8fnMUl t9yLvk6dH0Ar+70XDAhS9wkKLR8BGydLk26wE+e+PiJtHSFBKh23ZcfcgsuHLRJJ M3u26uqpdu2CBmXowzEiXt6Yq7xppFdc2AKJUaNOjk6MWwop//pErZrPPIgp9Qpj 00DYL07bkxyp8LBx/ZQvLL3lCQmRhzJlxAq++u1kkhZbj2vtNN/tdOE7EHuUnMtG 6uT8VCDZgsiLPt/zNXlL6Ed24XbFsGkYeJEldUNIzNshV4oeq77xgdDkTKWdAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUmokvih8ahMdvBNqsYmlMyUp2fOswHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxMzAzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxxABMA0GCSqGSIb3DQEBCwUAA4IBAQCY tVFqmokMMo1h39RAmUN9bNrQ04M+/5AqLVSFd3ILigDxLxaUi27fUlMbx0bfVVjS A/5cEFv4evRl9ce/z9950HRyjdZpNMQ/BZHdx7mG0MbiO4pSJFYlU62YqrR6XwT/ GlRSFxI+5xErkTlMhrK0NPmQcnwm4gj8THW0r+FXgR9d07s4PvHY+rT1KOO4S2Qo I/UAKkxY0HpAw52b9Dt0/MsOM0PDk8l31/rgMSQET45q82spAzPeBF58FL2out2z NmSqVMut5aTO1bOtGjkFAQISDOtQklGDX48q4DwMO09gDbblnRex4pkdt2GvWoR6 Xa3HuUd9Y+Y2xRYsMiQC -----END CERTIFICATE-----Generated at Thu Oct 9 08:05:35 2025 by rpki-client