$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa File: 326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa (raw, json) Hash identifier: VGq9MXxV3q0KHWq1w3L98ANgxY0Rn68lBES1HVsVMxg= Subject key identifier: 03:4B:84:D3:01:5B:BE:F4:30:72:B1:3E:5F:BE:C5:DF:D3:93:B3:C4 Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 7A3267755243F505D3953284AA5CE8E0EEC2E59E Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa Signing time: Thu 03 Jul 2025 21:56:22 +0000 ROA not before: Thu 03 Jul 2025 21:51:22 +0000 ROA not after: Thu 02 Jul 2026 21:56:22 +0000 asID: 209866 IP address blocks: 2a09:54c7:1ebe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 19:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:32:67:75:52:43:f5:05:d3:95:32:84:aa:5c:e8:e0:ee:c2:e5:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Jul 3 21:51:22 2025 GMT Not After : Jul 2 21:56:22 2026 GMT Subject: CN=034B84D3015BBEF43072B13E5FBEC5DFD393B3C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:97:4e:c2:fe:dc:58:00:c0:27:82:39:4c:48: 8f:6c:e2:98:5f:5a:07:11:fc:45:14:3f:e5:0c:72: 4d:95:fc:71:6b:a7:d2:69:04:47:98:fb:51:a3:43: 52:58:f9:33:97:8f:19:0f:c2:7d:3d:3a:ae:d6:e8: 91:f3:39:f4:eb:55:aa:2d:60:20:bd:74:33:20:b0: ee:e2:7d:ab:de:9d:a7:90:16:0c:e8:02:2c:79:1c: a1:81:79:6e:95:14:01:f1:9e:45:32:27:b2:90:e7: 64:64:89:fa:ae:f3:69:e5:5d:78:88:7f:f3:70:23: 00:9f:e6:18:02:7f:35:53:99:ae:64:bf:21:76:fd: 46:1d:e3:11:57:b6:ae:d2:37:dd:d3:e5:65:59:f3: 85:d5:70:88:45:c7:e4:cd:65:40:67:23:65:84:a7: a2:38:a1:da:66:4b:a6:19:8f:31:cb:40:87:a5:ff: 3c:bc:ec:81:2d:f0:a5:c8:64:68:e2:d6:c6:61:98: ca:77:ff:86:95:b6:81:22:65:e1:73:b6:cf:89:33: c6:1a:41:f3:58:cc:fe:0a:32:84:44:94:01:08:42: a1:35:67:cf:6c:30:09:80:57:4f:4b:13:d3:fb:97: 99:11:3b:f4:16:75:39:95:11:e6:7c:00:46:4d:0a: 67:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4B:84:D3:01:5B:BE:F4:30:72:B1:3E:5F:BE:C5:DF:D3:93:B3:C4 X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323039383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1ebe::/48 Signature Algorithm: sha256WithRSAEncryption 3d:59:7f:49:88:15:c4:2e:3e:ba:e2:e1:bf:96:1a:56:13:68: 09:53:b2:cf:aa:e1:1b:f2:f9:7b:dc:17:2b:f2:a1:fb:e4:c4: 76:18:4d:7e:51:bd:09:f0:dd:3d:af:93:9f:7e:61:2b:84:07: 16:6b:b5:2b:58:b8:05:46:e8:7c:38:be:b3:7a:79:d1:9c:1a: 94:f7:3c:92:e5:00:01:36:bd:38:a9:0a:cd:b0:43:ae:13:28: 15:72:7f:0f:c1:7c:72:6d:5f:fd:cf:3e:1d:af:1b:a7:3f:e9: c7:c6:ee:7d:6c:6b:f8:d1:c2:5b:ef:fc:15:a1:14:04:12:88: bd:c6:05:43:bc:36:56:52:cb:11:6f:78:fe:da:17:a2:e8:2a: 4e:c0:d1:f4:5e:d5:6c:33:7d:8c:54:56:8e:50:77:f2:4c:5f: b9:f3:76:46:61:ad:30:f4:23:f6:b8:0c:89:7a:9f:92:60:7f: 9d:ef:b1:bd:41:48:67:9a:54:9a:7a:62:89:19:87:5b:0f:82: cd:02:09:51:38:38:2e:b3:57:0e:a5:3c:ec:fb:2a:96:f6:d4: 91:51:ff:28:d3:44:14:21:10:3c:1e:3e:21:12:1f:6c:ba:81: d5:d3:6c:a8:11:d3:9a:77:d2:2e:09:05:25:44:a6:27:26:15: 8b:01:07:a4 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUejJndVJD9QXTlTKEqlzo4O7C5Z4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA3MDMyMTUxMjJaFw0yNjA3MDIyMTU2MjJaMDMxMTAvBgNV BAMTKDAzNEI4NEQzMDE1QkJFRjQzMDcyQjEzRTVGQkVDNURGRDM5M0IzQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCal07C/txYAMAngjlMSI9s4phf WgcR/EUUP+UMck2V/HFrp9JpBEeY+1GjQ1JY+TOXjxkPwn09Oq7W6JHzOfTrVaot YCC9dDMgsO7ifavenaeQFgzoAix5HKGBeW6VFAHxnkUyJ7KQ52Rkifqu82nlXXiI f/NwIwCf5hgCfzVTma5kvyF2/UYd4xFXtq7SN93T5WVZ84XVcIhFx+TNZUBnI2WE p6I4odpmS6YZjzHLQIel/zy87IEt8KXIZGji1sZhmMp3/4aVtoEiZeFzts+JM8Ya QfNYzP4KMoRElAEIQqE1Z89sMAmAV09LE9P7l5kRO/QWdTmVEeZ8AEZNCmdFAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUA0uE0wFbvvQwcrE+X77F39OTs8QwHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxNjU2MjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM5MzgzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxx6+MA0GCSqGSIb3DQEBCwUAA4IBAQA9 WX9JiBXELj664uG/lhpWE2gJU7LPquEb8vl73Bcr8qH75MR2GE1+Ub0J8N09r5Of fmErhAcWa7UrWLgFRuh8OL6zennRnBqU9zyS5QABNr04qQrNsEOuEygVcn8PwXxy bV/9zz4drxunP+nHxu59bGv40cJb7/wVoRQEEoi9xgVDvDZWUssRb3j+2hei6CpO wNH0XtVsM32MVFaOUHfyTF+583ZGYa0w9CP2uAyJep+SYH+d77G9QUhnmlSaemKJ GYdbD4LNAglRODgus1cOpTzs+yqW9tSRUf8o00QUIRA8Hj4hEh9suoHV02yoEdOa d9IuCQUlRKYnJhWLAQek -----END CERTIFICATE-----Generated at Sun Jul 6 08:39:37 2025 by rpki-client