$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa File: 326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa (raw, json) Hash identifier: sZm9brK2ynQAL4Qv0qveAPtvaYc2UhrTe5WcBL05BkY= Subject key identifier: 8B:F9:73:71:CE:0B:E7:87:9F:0B:69:63:DA:5F:1D:94:1E:03:14:AE Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 70AF90B8FCC2A75B3FBF6550F09B1700696FF761 Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa Signing time: Sun 31 Aug 2025 14:38:48 +0000 ROA not before: Sun 31 Aug 2025 14:33:48 +0000 ROA not after: Sun 30 Aug 2026 14:38:48 +0000 asID: 209866 IP address blocks: 2a09:54c7:1ebe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 20:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:af:90:b8:fc:c2:a7:5b:3f:bf:65:50:f0:9b:17:00:69:6f:f7:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Aug 31 14:33:48 2025 GMT Not After : Aug 30 14:38:48 2026 GMT Subject: CN=8BF97371CE0BE7879F0B6963DA5F1D941E0314AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:d1:e6:ff:11:3a:98:95:0c:0c:a7:7d:b6: 6a:ca:3c:82:1f:e8:c7:92:6d:74:e0:02:64:27:35: d3:df:3c:42:40:e9:47:9f:9d:8c:b0:e4:2a:08:31: 0a:f7:32:f3:21:00:31:ac:80:3e:4d:e2:3e:7b:b8: 78:40:65:66:1d:18:e3:46:35:c7:12:b2:82:3a:a0: 33:86:ac:eb:66:06:69:20:e1:81:45:e3:e2:6a:be: f3:b1:ec:1a:4b:9b:50:9d:00:65:44:ed:86:9e:35: 6c:93:d1:86:8f:e9:a9:f6:0c:44:5e:1f:2f:6f:44: a5:f4:e6:37:d5:9c:17:b8:51:f8:66:ba:b9:a4:51: 3a:07:be:35:0f:70:47:f8:39:0c:08:20:ef:ec:ae: 71:41:ea:4a:4b:00:9c:2a:8b:af:95:a4:e3:50:cd: 03:55:1c:f0:d7:8f:89:b1:d3:7f:33:a4:57:53:15: 07:b9:b5:15:5e:6a:80:c3:bd:81:41:15:f6:8f:d0: 3e:8b:b7:e2:6b:39:94:1d:14:3b:2d:f5:25:13:bc: a1:6b:5b:fa:6d:36:26:d1:b4:3b:24:8a:f1:9a:eb: 1a:0a:6b:6a:c7:d5:39:43:56:18:e3:31:45:06:10: fd:a7:be:0b:39:b6:94:85:5c:25:ed:81:0e:3a:b3: 60:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F9:73:71:CE:0B:E7:87:9F:0B:69:63:DA:5F:1D:94:1E:03:14:AE X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1ebe::/48 Signature Algorithm: sha256WithRSAEncryption b0:28:ee:24:bf:41:87:1f:c9:94:0b:76:16:90:29:e9:f7:93: 94:d9:ac:63:1a:25:30:52:ac:17:cd:5b:3d:3a:ec:d3:0f:b5: 54:f0:af:33:e1:b0:b1:6c:a7:52:16:52:a7:5e:75:59:8e:29: 62:c2:e2:cc:93:af:23:6d:39:d5:6c:11:6e:6a:6e:88:91:f3: 07:14:85:5d:65:49:56:c3:9a:2d:2f:3f:1e:52:16:63:27:b7: 2b:77:73:eb:0f:2d:56:1e:81:66:55:b3:3f:b0:2f:08:15:93: 0f:0b:29:0b:af:32:9a:3d:a2:41:44:c5:85:6d:7e:3a:04:15: 62:b1:4c:c2:15:39:c0:84:3f:59:5d:3a:be:8c:84:9f:cc:b0: 8b:72:74:e7:08:3e:89:79:4b:c2:18:f9:d2:6f:6a:94:f6:60: 86:94:cc:d1:81:94:5f:10:7c:f1:1e:36:41:73:b4:dc:a6:27: 39:49:bc:f6:df:7d:a2:c3:8d:ba:93:3d:70:4f:a1:b5:e9:ce: 50:bb:a7:49:80:27:a0:f5:35:f9:d5:9f:93:d1:5a:b5:e7:2d: 01:a1:a6:3b:17:f0:d8:e1:d1:c1:55:e8:df:54:73:c8:d7:75: 0d:02:af:bc:51:77:ed:d9:64:bb:50:1c:ef:7e:5b:c0:2a:93: e2:90:4e:67 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUcK+QuPzCp1s/v2VQ8JsXAGlv92EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA4MzExNDMzNDhaFw0yNjA4MzAxNDM4NDhaMDMxMTAvBgNV BAMTKDhCRjk3MzcxQ0UwQkU3ODc5RjBCNjk2M0RBNUYxRDk0MUUwMzE0QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx2NHm/xE6mJUMDKd9tmrKPIIf 6MeSbXTgAmQnNdPfPEJA6UefnYyw5CoIMQr3MvMhADGsgD5N4j57uHhAZWYdGONG NccSsoI6oDOGrOtmBmkg4YFF4+JqvvOx7BpLm1CdAGVE7YaeNWyT0YaP6an2DERe Hy9vRKX05jfVnBe4UfhmurmkUToHvjUPcEf4OQwIIO/srnFB6kpLAJwqi6+VpONQ zQNVHPDXj4mx038zpFdTFQe5tRVeaoDDvYFBFfaP0D6Lt+JrOZQdFDst9SUTvKFr W/ptNibRtDskivGa6xoKa2rH1TlDVhjjMUUGEP2nvgs5tpSFXCXtgQ46s2CpAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUi/lzcc4L54efC2lj2l8dlB4DFK4wHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxNjU2MjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM5MzgzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxx6+MA0GCSqGSIb3DQEBCwUAA4IBAQCw KO4kv0GHH8mUC3YWkCnp95OU2axjGiUwUqwXzVs9OuzTD7VU8K8z4bCxbKdSFlKn XnVZjiliwuLMk68jbTnVbBFuam6IkfMHFIVdZUlWw5otLz8eUhZjJ7crd3PrDy1W HoFmVbM/sC8IFZMPCykLrzKaPaJBRMWFbX46BBVisUzCFTnAhD9ZXTq+jISfzLCL cnTnCD6JeUvCGPnSb2qU9mCGlMzRgZRfEHzxHjZBc7Tcpic5Sbz2332iw426kz1w T6G16c5Qu6dJgCeg9TX51Z+T0Vq15y0BoaY7F/DY4dHBVejfVHPI13UNAq+8UXft 2WS7UBzvflvAKpPikE5n -----END CERTIFICATE-----Generated at Thu Oct 9 08:02:58 2025 by rpki-client