$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/5/326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa File: 326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa (raw, json) Hash identifier: sTs8O8KBp3/QEgTlhnDJhb+nhykdynr848iPv4Z/TIo= Subject key identifier: E7:39:DE:47:ED:82:AD:A1:CB:E0:5B:4E:D8:26:D9:85:1C:1C:38:D2 Certificate issuer: /CN=5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F Certificate serial: 0A1ADBD1EA71EC5C43DB5B07A013558E0F324B74 Authority key identifier: 5A:3F:78:19:35:3C:E0:FD:13:B8:FF:CD:CB:88:37:ED:0B:F5:91:5F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/5/326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa Signing time: Thu 03 Jul 2025 19:13:25 +0000 ROA not before: Thu 03 Jul 2025 19:08:25 +0000 ROA not after: Thu 02 Jul 2026 19:13:25 +0000 asID: 214723 IP address blocks: 2a06:9f41:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/5/5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/5/5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F.mft rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F.cer rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1a:db:d1:ea:71:ec:5c:43:db:5b:07:a0:13:55:8e:0f:32:4b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F Validity Not Before: Jul 3 19:08:25 2025 GMT Not After : Jul 2 19:13:25 2026 GMT Subject: CN=E739DE47ED82ADA1CBE05B4ED826D9851C1C38D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c9:27:4b:2e:e7:fe:db:07:44:63:42:97:e0: bd:ab:86:7b:fb:ab:79:f4:4e:07:b6:09:7c:fc:6b: cd:41:e6:8c:1b:83:1a:cb:5c:87:95:ff:cf:9f:a2: 76:4a:8e:1e:90:0e:45:6d:3d:05:14:e8:c3:59:26: 55:e2:28:48:2d:86:9c:4c:fb:e9:e4:7f:4a:d0:b9: f7:ec:27:c4:01:7e:55:6d:41:59:00:28:f3:49:63: a3:64:be:ab:0d:f2:2e:c8:32:2a:69:91:af:92:8e: c0:20:b2:b5:df:88:2e:6d:85:78:e9:b2:6e:c5:28: ab:bc:7f:27:0b:e6:de:01:cf:c1:84:b1:b3:3e:1e: 21:66:66:75:8e:6d:42:25:23:cb:b8:4b:04:05:32: be:b7:2e:75:a5:21:8b:15:1a:28:a7:f6:05:a6:1f: 78:c8:73:8c:f7:5a:2c:c5:58:12:a6:3c:65:60:1e: c2:00:6a:28:9a:97:77:f9:d7:d2:11:2a:7d:49:09: d6:f1:7c:bb:43:7a:74:e1:7d:fa:5a:16:05:43:76: 19:d9:b3:a5:fa:c8:ed:a6:c2:1f:eb:76:2b:29:ad: 36:1c:2f:a6:f6:46:c8:97:c9:e9:7e:09:b7:c2:5b: cd:79:c0:2b:d8:ec:5b:e2:2c:c8:07:4d:b1:6e:13: fe:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:39:DE:47:ED:82:AD:A1:CB:E0:5B:4E:D8:26:D9:85:1C:1C:38:D2 X509v3 Authority Key Identifier: keyid:5A:3F:78:19:35:3C:E0:FD:13:B8:FF:CD:CB:88:37:ED:0B:F5:91:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/5/5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/5A3F7819353CE0FD13B8FFCDCB8837ED0BF5915F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/5/326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:100::/40 Signature Algorithm: sha256WithRSAEncryption 1a:b8:70:17:77:57:cf:7d:2f:23:6c:b0:7d:11:5b:14:88:02: 86:90:63:13:dc:4e:e0:49:b7:f3:a3:5f:88:bf:63:5d:ee:66: 83:87:b2:23:42:d3:99:88:7a:1f:16:ce:f9:ad:f8:00:29:61: b1:83:f3:5b:e0:c5:a4:5c:29:e0:5b:0c:1a:4b:f2:09:ff:5f: 8c:d9:3b:ef:d6:05:ae:b2:a3:79:14:4b:dd:1e:83:2e:ec:0b: bc:44:24:ef:96:6f:e5:9b:bf:0b:d2:9c:b2:97:60:88:35:ca: 5c:b5:ec:39:4d:18:7a:e7:2d:12:d1:db:3c:55:7c:3a:f7:4a: 81:02:57:bf:a5:9d:62:96:40:5d:06:23:a1:eb:68:69:95:9b: 11:e7:a0:cb:76:d6:e9:b5:5b:1e:20:f0:69:2d:c9:b7:40:5b: 3d:4f:25:69:5b:05:5e:cf:89:31:81:5e:40:ce:6e:e7:ae:72: bc:19:b3:0d:df:83:d6:af:26:d4:eb:5c:b0:cf:d9:b9:3f:8b: 67:d5:df:72:8a:ce:e1:1d:d5:e6:13:59:97:7a:28:d4:ba:35: 26:a0:02:6d:35:c5:f0:7e:78:63:df:17:f0:a3:80:90:ee:32: 5a:94:0e:83:d1:f0:e2:06:ea:7c:24:45:60:6a:21:09:51:cd: 5f:94:9a:e3 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUChrb0epx7FxD21sHoBNVjg8yS3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEzRjc4MTkzNTNDRTBGRDEzQjhGRkNEQ0I4ODM3RUQw QkY1OTE1RjAeFw0yNTA3MDMxOTA4MjVaFw0yNjA3MDIxOTEzMjVaMDMxMTAvBgNV BAMTKEU3MzlERTQ3RUQ4MkFEQTFDQkUwNUI0RUQ4MjZEOTg1MUMxQzM4RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ySdLLuf+2wdEY0KX4L2rhnv7 q3n0Tge2CXz8a81B5owbgxrLXIeV/8+fonZKjh6QDkVtPQUU6MNZJlXiKEgthpxM ++nkf0rQuffsJ8QBflVtQVkAKPNJY6NkvqsN8i7IMippka+SjsAgsrXfiC5thXjp sm7FKKu8fycL5t4Bz8GEsbM+HiFmZnWObUIlI8u4SwQFMr63LnWlIYsVGiin9gWm H3jIc4z3WizFWBKmPGVgHsIAaiial3f519IRKn1JCdbxfLtDenThffpaFgVDdhnZ s6X6yO2mwh/rdisprTYcL6b2RsiXyel+CbfCW815wCvY7FviLMgHTbFuE/7vAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQU5zneR+2CraHL4FtO2CbZhRwcONIwHwYDVR0j BBgwFoAUWj94GTU84P0TuP/Ny4g37Qv1kV8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlNDU5MmUtMjNjMC00Y2NjLTk0ZGEtNmM5NTgwN2Y4 M2U3LzUvNUEzRjc4MTkzNTNDRTBGRDEzQjhGRkNEQ0I4ODM3RUQwQkY1OTE1Ri5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMDExOTQ0ZC03ZWIzLTRm NjMtYTE1OS1jZmYwMmMwMjZhYmYvMi81QTNGNzgxOTM1M0NFMEZEMTNCOEZGQ0RD Qjg4MzdFRDBCRjU5MTVGLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2U0NTkyZS0yM2MwLTRjY2MtOTRkYS02Yzk1ODA3ZjgzZTcvNS8zMjYxMzAz NjNhMzk2NjM0MzEzYTMxMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NDM3MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoGn0EBMA0GCSqGSIb3DQEBCwUAA4IBAQAauHAX d1fPfS8jbLB9EVsUiAKGkGMT3E7gSbfzo1+Iv2Nd7maDh7IjQtOZiHofFs75rfgA KWGxg/Nb4MWkXCngWwwaS/IJ/1+M2Tvv1gWusqN5FEvdHoMu7Au8RCTvlm/lm78L 0pyyl2CINcpctew5TRh65y0S0ds8VXw690qBAle/pZ1ilkBdBiOh62hplZsR56DL dtbptVseIPBpLcm3QFs9TyVpWwVez4kxgV5Azm7nrnK8GbMN34PWrybU61ywz9m5 P4tn1d9yis7hHdXmE1mXeijUujUmoAJtNcXwfnhj3xfwo4CQ7jJalA6D0fDiBup8 JEVgaiEJUc1flJrj -----END CERTIFICATE-----Generated at Sat Jul 5 15:30:13 2025 by rpki-client