$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa File: 326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: okHzxG/SsTH4RSZQhh7L6C+p8SSVWtUyztCsQOe4d24= Subject key identifier: 5A:D4:C7:0D:05:10:36:B9:4F:B4:AB:9F:CF:D0:9A:5C:27:73:3A:54 Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 1463C930602E1FF487DAEF19211DA7C1E9740179 Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa Signing time: Sun 31 Aug 2025 14:38:48 +0000 ROA not before: Sun 31 Aug 2025 14:33:48 +0000 ROA not after: Sun 30 Aug 2026 14:38:48 +0000 asID: 214299 IP address blocks: 2a09:54c7:1ebe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 20:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:63:c9:30:60:2e:1f:f4:87:da:ef:19:21:1d:a7:c1:e9:74:01:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Aug 31 14:33:48 2025 GMT Not After : Aug 30 14:38:48 2026 GMT Subject: CN=5AD4C70D051036B94FB4AB9FCFD09A5C27733A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:95:55:0a:13:dd:96:f3:3d:13:bd:ce:57:4b: cd:83:40:a8:2d:fa:60:31:5a:65:57:90:ec:33:90: 34:23:5a:df:f7:22:e8:f4:40:4f:52:6b:d9:22:a4: 0a:28:c1:bd:cf:6c:08:f4:71:ed:94:28:b7:df:73: 69:a1:90:fc:69:b8:b6:9b:dc:ff:ec:bf:aa:65:1d: 58:af:a3:20:78:7f:71:a9:70:26:c4:4b:b2:b3:96: f3:fd:fa:43:44:cf:b3:38:41:03:8b:59:83:c0:5a: 06:72:67:17:98:ab:74:90:44:b6:ac:59:0a:a3:ca: aa:49:a6:a4:72:d2:bb:c1:81:b2:82:57:1a:82:9d: 34:b3:91:2a:b3:93:23:0b:2f:46:a1:21:44:38:d3: d9:06:4f:36:e6:6f:ac:27:03:f6:27:12:98:8a:4b: cf:53:b6:9f:fb:48:3d:8f:0f:ed:3f:21:60:1f:73: 5d:5a:3d:ec:e9:de:45:3d:0b:8c:53:10:86:a8:6c: 54:c7:1f:aa:27:1e:bc:fe:86:84:a0:ab:0a:c3:23: a7:dc:9c:97:bc:1e:89:0e:d7:fe:4a:ca:ae:a7:41: 3e:c1:29:00:99:d2:e9:0b:d5:6f:97:34:ee:1f:a0: 6e:2b:05:ee:b2:91:94:94:31:19:56:42:a2:19:d4: ed:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D4:C7:0D:05:10:36:B9:4F:B4:AB:9F:CF:D0:9A:5C:27:73:3A:54 X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1ebe::/48 Signature Algorithm: sha256WithRSAEncryption a9:9c:fa:aa:49:b5:47:a2:af:e4:08:cf:dd:6a:c0:ac:17:ac: e3:93:ea:5b:a0:22:86:91:59:ae:27:ef:97:67:51:da:d6:2c: 80:af:6d:47:fc:4f:53:31:66:36:7f:b1:d9:6d:c3:c8:f1:b2: f5:42:47:25:22:ea:5a:90:a2:78:fd:c5:b3:a5:cc:68:02:fc: 5e:f1:2d:60:c3:dd:05:57:30:57:74:20:a3:0d:19:15:bd:b3: 28:80:08:88:53:99:0f:04:1f:99:01:f7:1e:57:3a:7d:3e:27: cb:96:e1:88:74:9b:94:af:8a:8d:1c:31:5a:70:d1:fc:6c:9f: 44:cd:2e:a1:db:73:b9:6e:33:2f:bf:08:07:5b:77:52:1b:56: f4:a5:5f:57:7e:97:71:6d:e1:7f:6e:5d:31:6f:90:d1:97:a8: 68:94:6e:b3:de:d6:c6:f7:cb:c3:0b:4a:62:1b:12:65:e4:d1: 7e:e2:a4:cb:f9:c2:09:f8:d3:ca:6d:a4:f7:d0:a1:81:b0:6f: cc:cc:a4:99:b0:81:ca:a5:92:ce:7a:fb:56:ae:6f:50:f3:8c: 4c:45:de:8b:2d:e4:e3:d0:be:ef:ea:03:96:61:96:b5:84:80: 2e:80:c3:07:9c:f0:f1:d1:3c:a4:83:d2:5d:19:14:57:14:e6: 7a:9c:c9:89 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUFGPJMGAuH/SH2u8ZIR2nwel0AXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA4MzExNDMzNDhaFw0yNjA4MzAxNDM4NDhaMDMxMTAvBgNV BAMTKDVBRDRDNzBEMDUxMDM2Qjk0RkI0QUI5RkNGRDA5QTVDMjc3MzNBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNlVUKE92W8z0Tvc5XS82DQKgt +mAxWmVXkOwzkDQjWt/3Iuj0QE9Sa9kipAoowb3PbAj0ce2UKLffc2mhkPxpuLab 3P/sv6plHVivoyB4f3GpcCbES7KzlvP9+kNEz7M4QQOLWYPAWgZyZxeYq3SQRLas WQqjyqpJpqRy0rvBgbKCVxqCnTSzkSqzkyMLL0ahIUQ409kGTzbmb6wnA/YnEpiK S89Ttp/7SD2PD+0/IWAfc11aPezp3kU9C4xTEIaobFTHH6onHrz+hoSgqwrDI6fc nJe8HokO1/5Kyq6nQT7BKQCZ0ukL1W+XNO4foG4rBe6ykZSUMRlWQqIZ1O1HAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUWtTHDQUQNrlPtKufz9CaXCdzOlQwHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxNjU2MjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxx6+MA0GCSqGSIb3DQEBCwUAA4IBAQCp nPqqSbVHoq/kCM/dasCsF6zjk+pboCKGkVmuJ++XZ1Ha1iyAr21H/E9TMWY2f7HZ bcPI8bL1QkclIupakKJ4/cWzpcxoAvxe8S1gw90FVzBXdCCjDRkVvbMogAiIU5kP BB+ZAfceVzp9PifLluGIdJuUr4qNHDFacNH8bJ9EzS6h23O5bjMvvwgHW3dSG1b0 pV9XfpdxbeF/bl0xb5DRl6holG6z3tbG98vDC0piGxJl5NF+4qTL+cIJ+NPKbaT3 0KGBsG/MzKSZsIHKpZLOevtWrm9Q84xMRd6LLeTj0L7v6gOWYZa1hIAugMMHnPDx 0Tykg9JdGRRXFOZ6nMmJ -----END CERTIFICATE-----Generated at Thu Oct 9 08:01:07 2025 by rpki-client