$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa File: 326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: EzVCbaMm1BT+4VuCpmm/8/DdQRnkJJongvTgVxll+Yw= Subject key identifier: 8A:49:E6:D6:AB:A5:DD:B3:E7:49:C0:83:08:9C:B1:52:FB:94:AE:A5 Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 0164CF2CE54DCCB61078BFC8D596A787DA1BD0AC Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa Signing time: Thu 03 Jul 2025 21:56:22 +0000 ROA not before: Thu 03 Jul 2025 21:51:22 +0000 ROA not after: Thu 02 Jul 2026 21:56:22 +0000 asID: 214299 IP address blocks: 2a09:54c7:1ebe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 19:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:64:cf:2c:e5:4d:cc:b6:10:78:bf:c8:d5:96:a7:87:da:1b:d0:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Jul 3 21:51:22 2025 GMT Not After : Jul 2 21:56:22 2026 GMT Subject: CN=8A49E6D6ABA5DDB3E749C083089CB152FB94AEA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:12:55:99:22:46:d7:22:2a:16:12:67:47:0f: 23:44:9b:e7:f1:b7:1d:a3:3d:94:c4:00:28:5a:81: f9:0d:9d:1f:af:5e:c2:f0:04:25:ae:3f:c5:ca:0c: 23:cc:21:77:f0:3d:30:c3:cd:df:66:59:f6:31:b7: dd:1b:7a:50:1d:b3:43:97:20:24:4e:72:86:75:c3: 7d:d0:b1:29:98:6f:f9:d7:94:1e:8e:40:c8:af:17: d4:73:61:e0:b8:3f:02:70:ba:e1:61:a0:21:67:81: ad:da:67:69:e1:3b:ac:6c:08:a2:57:d8:89:aa:fb: f5:5a:43:db:50:06:19:17:63:8a:ed:21:5c:e1:97: f9:9f:d1:b6:46:3f:ce:54:1e:40:08:3c:fc:e3:a3: ad:9f:40:d4:3f:35:4f:7e:b0:d8:04:e2:cc:c0:16: d7:67:f9:2c:80:c0:ba:29:f2:e6:be:70:d5:19:ee: 74:18:c2:e2:82:a2:07:f4:78:19:dd:a3:8f:c6:47: d2:4b:fb:46:e1:df:84:e9:ec:e4:c3:c5:80:6f:61: a0:71:32:d6:f4:3f:d9:40:69:b7:cb:75:0f:0d:30: e4:f9:08:00:e4:8e:c2:5e:d9:b2:e0:28:74:b2:b2: 4b:07:41:ff:ba:fe:e8:64:c4:e2:42:0d:db:62:db: e1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:49:E6:D6:AB:A5:DD:B3:E7:49:C0:83:08:9C:B1:52:FB:94:AE:A5 X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130393a353463373a316562653a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1ebe::/48 Signature Algorithm: sha256WithRSAEncryption a6:62:56:ac:86:9d:b0:98:c8:71:ee:0a:fc:4d:5c:a3:d9:db: 2d:f2:6c:a9:79:2e:df:4c:82:3f:15:ac:cb:72:07:c8:8f:3e: a5:84:a6:18:e6:00:15:ed:cd:b5:87:16:d2:bd:97:52:49:8e: fb:10:1a:19:23:db:56:2d:5d:e3:2c:bc:e8:2c:05:f6:13:bf: 91:53:7f:e8:8d:b6:be:68:1f:43:dd:9f:8e:6c:4b:3c:06:bd: 88:4b:b4:99:42:05:b7:d6:00:5e:29:2b:de:51:15:fe:6e:d7: 7a:76:a7:2f:a6:7e:b6:17:fe:fc:8c:0f:c3:91:64:98:4b:47: d0:06:4b:a1:f9:f5:00:1c:e4:d5:39:78:65:da:0a:76:81:8f: 2c:87:99:66:18:01:73:dc:ed:f0:46:d5:ae:2d:75:8b:80:26: d4:ef:52:10:39:e9:8b:1d:45:42:d7:ef:73:d9:f1:09:44:f1: b4:ff:f0:90:9c:83:23:98:73:04:b0:d7:6c:8d:f4:ff:e2:82: 4d:a4:d0:80:d6:7e:3f:52:ee:bf:b0:41:67:71:8e:a4:84:3b: b7:3f:ac:af:3c:9f:0a:03:40:8a:54:76:77:b0:6b:bc:f1:d5: d0:a9:53:f0:9b:e0:86:0b:02:ed:38:e9:97:8a:c0:a5:fd:6a: 35:0f:06:e7 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUAWTPLOVNzLYQeL/I1Zanh9ob0KwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA3MDMyMTUxMjJaFw0yNjA3MDIyMTU2MjJaMDMxMTAvBgNV BAMTKDhBNDlFNkQ2QUJBNUREQjNFNzQ5QzA4MzA4OUNCMTUyRkI5NEFFQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtElWZIkbXIioWEmdHDyNEm+fx tx2jPZTEAChagfkNnR+vXsLwBCWuP8XKDCPMIXfwPTDDzd9mWfYxt90belAds0OX ICROcoZ1w33QsSmYb/nXlB6OQMivF9RzYeC4PwJwuuFhoCFnga3aZ2nhO6xsCKJX 2Imq+/VaQ9tQBhkXY4rtIVzhl/mf0bZGP85UHkAIPPzjo62fQNQ/NU9+sNgE4szA Ftdn+SyAwLop8ua+cNUZ7nQYwuKCogf0eBndo4/GR9JL+0bh34Tp7OTDxYBvYaBx Mtb0P9lAabfLdQ8NMOT5CADkjsJe2bLgKHSysksHQf+6/uhkxOJCDdti2+EDAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUiknm1qul3bPnScCDCJyxUvuUrqUwHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz OTNhMzUzNDYzMzczYTMxNjU2MjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxx6+MA0GCSqGSIb3DQEBCwUAA4IBAQCm Ylashp2wmMhx7gr8TVyj2dst8mypeS7fTII/FazLcgfIjz6lhKYY5gAV7c21hxbS vZdSSY77EBoZI9tWLV3jLLzoLAX2E7+RU3/ojba+aB9D3Z+ObEs8Br2IS7SZQgW3 1gBeKSveURX+btd6dqcvpn62F/78jA/DkWSYS0fQBkuh+fUAHOTVOXhl2gp2gY8s h5lmGAFz3O3wRtWuLXWLgCbU71IQOemLHUVC1+9z2fEJRPG0//CQnIMjmHMEsNds jfT/4oJNpNCA1n4/Uu6/sEFncY6khDu3P6yvPJ8KA0CKVHZ3sGu88dXQqVPwm+CG CwLtOOmXisCl/Wo1Dwbn -----END CERTIFICATE-----Generated at Sun Jul 6 08:26:26 2025 by rpki-client