$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa File: 326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa (raw, json) Hash identifier: QFhWc/Qi1XwFuZFFUxrJkVVsMNht6HRi/KIA9CCJysc= Subject key identifier: 39:FF:28:05:39:34:25:A3:F8:CD:D8:0E:91:59:41:36:C3:41:45:09 Certificate issuer: /CN=6003354361AF66B2F37153B9A7365EE572F6822E Certificate serial: 2F9C9E6A236D091F850B3AAC9A6BF934A1D21FF1 Authority key identifier: 60:03:35:43:61:AF:66:B2:F3:71:53:B9:A7:36:5E:E5:72:F6:82:2E Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/6003354361AF66B2F37153B9A7365EE572F6822E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa Signing time: Thu 03 Jul 2025 19:13:30 +0000 ROA not before: Thu 03 Jul 2025 19:08:30 +0000 ROA not after: Thu 02 Jul 2026 19:13:30 +0000 asID: 214723 IP address blocks: 2a0a:6044:ba00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/6003354361AF66B2F37153B9A7365EE572F6822E.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/6003354361AF66B2F37153B9A7365EE572F6822E.mft rsync://krill.47272.net/repo/HYEHOST/5/6003354361AF66B2F37153B9A7365EE572F6822E.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 13:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:9c:9e:6a:23:6d:09:1f:85:0b:3a:ac:9a:6b:f9:34:a1:d2:1f:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6003354361AF66B2F37153B9A7365EE572F6822E Validity Not Before: Jul 3 19:08:30 2025 GMT Not After : Jul 2 19:13:30 2026 GMT Subject: CN=39FF2805393425A3F8CDD80E91594136C3414509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7d:2c:6b:18:df:a2:8f:e5:52:1c:57:2e:8e: 08:c0:b5:a8:88:c7:89:93:9d:b0:96:db:8f:ed:df: 9c:2e:8a:19:74:c3:6d:9a:14:cf:a9:de:34:8a:dc: 90:ab:9e:e6:35:f0:53:b2:91:4f:b0:38:de:a5:d7: d3:e9:32:49:5a:3c:82:eb:1b:7f:cb:2f:79:f6:a1: 70:45:d1:e4:8e:e5:0c:f2:e3:3d:b6:74:5f:0e:6d: 79:04:b6:76:b6:02:d4:f1:63:86:d6:49:b6:f7:1e: 75:f3:31:43:cd:4a:fc:35:71:62:a0:54:fc:ad:f8: 19:ea:01:44:21:ba:2f:d1:b1:23:52:55:ff:fc:da: fe:18:1d:42:9e:5b:ff:c4:4b:b0:87:69:60:31:8a: e1:9e:b2:33:b2:c9:a3:2f:ad:ca:98:8a:52:40:fa: 77:d6:81:6c:a3:ea:2a:8a:cf:e2:61:98:a0:06:da: 01:d3:26:4f:9c:cc:b6:6e:98:cc:2e:8f:b2:ed:fc: e9:b2:ac:1c:7d:ea:c2:d7:16:64:b5:14:77:bd:39: 44:fd:96:17:b0:cf:95:27:d5:f5:b7:fb:97:9c:ff: d6:78:64:da:09:b3:e9:aa:5e:ed:78:a5:96:37:c4: 66:8e:3b:fd:e1:7d:aa:1c:ba:a5:d9:87:aa:ca:2e: 79:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FF:28:05:39:34:25:A3:F8:CD:D8:0E:91:59:41:36:C3:41:45:09 X509v3 Authority Key Identifier: keyid:60:03:35:43:61:AF:66:B2:F3:71:53:B9:A7:36:5E:E5:72:F6:82:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/6003354361AF66B2F37153B9A7365EE572F6822E.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/6003354361AF66B2F37153B9A7365EE572F6822E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ba00::/40 Signature Algorithm: sha256WithRSAEncryption 14:3d:b9:1c:06:27:08:ff:c6:f7:28:8f:28:7c:47:d9:f1:28: 24:28:d3:70:b8:3a:ef:6c:c2:f4:f0:cd:cd:a7:8b:85:cb:ee: 4d:2c:4f:bf:57:4d:ee:c4:79:37:ca:42:df:e3:0d:81:59:b0: 6c:4b:b5:56:23:07:0e:c2:62:35:9c:43:8b:ff:e3:c1:4c:8a: bd:bc:2b:b8:16:b7:f8:cc:78:3f:03:26:e2:27:51:bf:ac:06: a4:2a:bb:74:41:dd:5a:a6:73:df:9e:21:8c:1a:a1:87:53:55: 5f:02:06:20:0f:32:b0:bf:7d:6f:3b:e0:28:e5:54:a8:f9:71: e8:08:e1:28:97:59:b4:8f:2c:d7:e9:00:4a:e7:63:ab:db:51: 90:55:f5:a1:36:65:12:16:53:59:24:44:8c:36:74:59:5c:a6: 02:54:c3:ec:81:ed:a7:72:9d:58:01:23:5d:ec:bf:66:9b:5f: b2:24:a4:b5:bb:54:f6:bf:8d:74:d9:4f:79:e0:de:c3:0c:b2: e6:19:35:04:07:63:f2:af:78:5d:ba:b2:61:77:41:75:d4:d5: 96:9b:34:b7:a4:02:bf:6a:c7:dc:29:25:6f:2f:32:b8:2e:a1: f8:3f:52:86:c3:95:f0:81:a9:69:15:4b:d6:8f:3f:e4:6d:91: c9:1f:88:da -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIUL5yeaiNtCR+FCzqsmmv5NKHSH/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAwMzM1NDM2MUFGNjZCMkYzNzE1M0I5QTczNjVFRTU3 MkY2ODIyRTAeFw0yNTA3MDMxOTA4MzBaFw0yNjA3MDIxOTEzMzBaMDMxMTAvBgNV BAMTKDM5RkYyODA1MzkzNDI1QTNGOENERDgwRTkxNTk0MTM2QzM0MTQ1MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbfSxrGN+ij+VSHFcujgjAtaiI x4mTnbCW24/t35wuihl0w22aFM+p3jSK3JCrnuY18FOykU+wON6l19PpMklaPILr G3/LL3n2oXBF0eSO5Qzy4z22dF8ObXkEtna2AtTxY4bWSbb3HnXzMUPNSvw1cWKg VPyt+BnqAUQhui/RsSNSVf/82v4YHUKeW//ES7CHaWAxiuGesjOyyaMvrcqYilJA +nfWgWyj6iqKz+JhmKAG2gHTJk+czLZumMwuj7Lt/OmyrBx96sLXFmS1FHe9OUT9 lhewz5Un1fW3+5ec/9Z4ZNoJs+mqXu14pZY3xGaOO/3hfaocuqXZh6rKLnntAgMB AAGjggJUMIICUDAdBgNVHQ4EFgQUOf8oBTk0JaP4zdgOkVlBNsNBRQkwHwYDVR0j BBgwFoAUYAM1Q2GvZrLzcVO5pzZe5XL2gi4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlNDU5MmUtMjNjMC00Y2NjLTk0ZGEtNmM5NTgwN2Y4 M2U3LzYvNjAwMzM1NDM2MUFGNjZCMkYzNzE1M0I5QTczNjVFRTU3MkY2ODIyRS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS82MDAzMzU0MzYxQUY2NkIyRjM3MTUzQjlB NzM2NUVFNTcyRjY4MjJFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2U0NTkyZS0yM2MwLTRjY2MtOTRkYS02Yzk1ODA3ZjgzZTcvNi8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjEzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTM0MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgRLowDQYJKoZIhvcNAQELBQADggEBABQ9 uRwGJwj/xvcojyh8R9nxKCQo03C4Ou9swvTwzc2ni4XL7k0sT79XTe7EeTfKQt/j DYFZsGxLtVYjBw7CYjWcQ4v/48FMir28K7gWt/jMeD8DJuInUb+sBqQqu3RB3Vqm c9+eIYwaoYdTVV8CBiAPMrC/fW874CjlVKj5cegI4SiXWbSPLNfpAErnY6vbUZBV 9aE2ZRIWU1kkRIw2dFlcpgJUw+yB7adynVgBI13sv2abX7IkpLW7VPa/jXTZT3ng 3sMMsuYZNQQHY/KveF26smF3QXXU1ZabNLekAr9qx9wpJW8vMrguofg/UobDlfCB qWkVS9aPP+RtkckfiNo= -----END CERTIFICATE-----Generated at Sun Jul 6 05:30:24 2025 by rpki-client