$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa File: 326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa (raw, json) Hash identifier: hj2OdTJzJ/lMhD2+bSlhDwRPDkQ5RRLmuL3t94lTgMc= Subject key identifier: A8:74:AF:37:97:A4:64:04:9D:ED:42:72:8E:E9:88:44:CF:FE:BA:0A Certificate issuer: /CN=6003354361AF66B2F37153B9A7365EE572F6822E Certificate serial: 284B7113EE3AD6EAF047E3A28B6630E647A79021 Authority key identifier: 60:03:35:43:61:AF:66:B2:F3:71:53:B9:A7:36:5E:E5:72:F6:82:2E Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/6003354361AF66B2F37153B9A7365EE572F6822E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa Signing time: Thu 03 Jul 2025 19:13:30 +0000 ROA not before: Thu 03 Jul 2025 19:08:30 +0000 ROA not after: Thu 02 Jul 2026 19:13:30 +0000 asID: 214723 IP address blocks: 2a0a:6044:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/6003354361AF66B2F37153B9A7365EE572F6822E.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/6003354361AF66B2F37153B9A7365EE572F6822E.mft rsync://krill.47272.net/repo/HYEHOST/5/6003354361AF66B2F37153B9A7365EE572F6822E.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 13:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:4b:71:13:ee:3a:d6:ea:f0:47:e3:a2:8b:66:30:e6:47:a7:90:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6003354361AF66B2F37153B9A7365EE572F6822E Validity Not Before: Jul 3 19:08:30 2025 GMT Not After : Jul 2 19:13:30 2026 GMT Subject: CN=A874AF3797A464049DED42728EE98844CFFEBA0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:28:eb:a3:17:d9:f6:21:3d:bb:45:f0:3d:67: d9:2f:f5:60:f2:62:2c:c4:0b:75:5e:fb:17:dd:00: 2f:99:ef:28:e6:ac:2a:b0:3e:10:49:93:e2:48:a4: ef:d4:82:ef:f4:e6:9f:a3:4f:cb:22:45:21:51:2f: 63:b1:66:9e:48:df:3d:aa:fc:5e:69:f2:1c:06:26: 35:37:30:2d:69:95:b5:25:51:00:68:ab:db:da:14: 99:89:1b:39:08:33:e9:35:b7:50:ba:51:90:6d:2f: 83:f9:d7:6e:74:41:09:f6:15:9f:bd:99:d4:63:59: 4a:0f:08:69:2b:e0:57:ee:e3:c2:60:b4:5c:1b:c4: 5d:c0:fc:38:f1:59:82:d9:67:33:76:26:e0:dd:1a: c4:63:97:4e:1c:b1:09:b2:83:f6:00:a8:a3:90:ec: ce:e7:57:82:fc:12:2e:f2:e5:ce:ef:65:33:6a:9a: 78:b0:ed:dd:ff:6f:dd:50:10:71:7e:33:a3:b4:40: 89:5c:3c:c3:ea:c3:4f:e8:da:ea:ca:0a:b0:67:a0: 38:8f:3c:15:aa:e6:19:ba:30:2b:c9:11:f0:c9:1b: 17:98:0d:a0:bd:b0:e0:c6:60:cc:ea:22:0a:85:b0: 7a:91:36:75:03:8a:26:38:34:43:56:64:65:56:6d: c5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:74:AF:37:97:A4:64:04:9D:ED:42:72:8E:E9:88:44:CF:FE:BA:0A X509v3 Authority Key Identifier: keyid:60:03:35:43:61:AF:66:B2:F3:71:53:B9:A7:36:5E:E5:72:F6:82:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/6003354361AF66B2F37153B9A7365EE572F6822E.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/6003354361AF66B2F37153B9A7365EE572F6822E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/6/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ba00::/48 Signature Algorithm: sha256WithRSAEncryption a9:d5:62:b2:d2:c0:fb:3d:8a:53:46:7a:0d:80:9c:ad:8f:45: 9e:62:48:e4:59:ad:b7:c4:0a:8d:19:36:bb:73:ed:81:d0:9d: f9:6f:94:4b:97:51:ed:fc:db:ef:5c:29:f7:4b:cd:a1:3d:c2: d3:7c:80:3b:fb:01:6e:0c:fc:57:40:51:05:58:e3:31:d6:df: 9e:73:e3:50:b1:48:d3:7f:5b:05:7c:ec:52:d7:17:0a:e6:e5: b4:e4:5a:d3:a2:15:db:6a:35:28:69:65:6d:af:94:29:3f:fb: 14:1f:b6:4c:7f:99:98:e1:80:70:79:0a:1d:b1:58:c7:e9:76: ec:09:00:02:cc:04:1c:e6:ac:03:26:d7:fd:cc:0e:a7:cc:b8: b6:6a:e6:a2:a3:92:bb:f6:46:a0:c4:59:39:14:a6:95:63:17: 08:7e:37:06:8b:20:8c:d5:a8:db:bb:dc:e0:31:7e:0e:48:b2: 76:88:ae:b6:9d:6f:94:1d:51:fc:03:4b:52:6c:37:7c:15:e2: b2:69:d7:cb:20:d4:5c:71:a8:02:09:43:5c:49:5d:37:6b:f5: 0e:bb:35:0a:c9:2b:2c:b7:ff:53:58:63:a9:0e:6b:db:4c:04: 7d:01:f4:e1:da:15:b1:9e:f7:8a:05:f9:06:e9:75:b1:fc:db: a6:b6:21:30 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUKEtxE+461urwR+Oii2Yw5kenkCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAwMzM1NDM2MUFGNjZCMkYzNzE1M0I5QTczNjVFRTU3 MkY2ODIyRTAeFw0yNTA3MDMxOTA4MzBaFw0yNjA3MDIxOTEzMzBaMDMxMTAvBgNV BAMTKEE4NzRBRjM3OTdBNDY0MDQ5REVENDI3MjhFRTk4ODQ0Q0ZGRUJBMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzKOujF9n2IT27RfA9Z9kv9WDy YizEC3Ve+xfdAC+Z7yjmrCqwPhBJk+JIpO/Ugu/05p+jT8siRSFRL2OxZp5I3z2q /F5p8hwGJjU3MC1plbUlUQBoq9vaFJmJGzkIM+k1t1C6UZBtL4P51250QQn2FZ+9 mdRjWUoPCGkr4Ffu48JgtFwbxF3A/DjxWYLZZzN2JuDdGsRjl04csQmyg/YAqKOQ 7M7nV4L8Ei7y5c7vZTNqmniw7d3/b91QEHF+M6O0QIlcPMPqw0/o2urKCrBnoDiP PBWq5hm6MCvJEfDJGxeYDaC9sODGYMzqIgqFsHqRNnUDiiY4NENWZGVWbcUpAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUqHSvN5ekZASd7UJyjumIRM/+ugowHwYDVR0j BBgwFoAUYAM1Q2GvZrLzcVO5pzZe5XL2gi4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlNDU5MmUtMjNjMC00Y2NjLTk0ZGEtNmM5NTgwN2Y4 M2U3LzYvNjAwMzM1NDM2MUFGNjZCMkYzNzE1M0I5QTczNjVFRTU3MkY2ODIyRS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS82MDAzMzU0MzYxQUY2NkIyRjM3MTUzQjlB NzM2NUVFNTcyRjY4MjJFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2U0NTkyZS0yM2MwLTRjY2MtOTRkYS02Yzk1ODA3ZjgzZTcvNi8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjEzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRLoAMA0GCSqGSIb3DQEBCwUAA4IBAQCp 1WKy0sD7PYpTRnoNgJytj0WeYkjkWa23xAqNGTa7c+2B0J35b5RLl1Ht/NvvXCn3 S82hPcLTfIA7+wFuDPxXQFEFWOMx1t+ec+NQsUjTf1sFfOxS1xcK5uW05FrTohXb ajUoaWVtr5QpP/sUH7ZMf5mY4YBweQodsVjH6XbsCQACzAQc5qwDJtf9zA6nzLi2 auaio5K79kagxFk5FKaVYxcIfjcGiyCM1ajbu9zgMX4OSLJ2iK62nW+UHVH8A0tS bDd8FeKyadfLINRccagCCUNcSV03a/UOuzUKySsst/9TWGOpDmvbTAR9AfTh2hWx nveKBfkG6XWx/NumtiEw -----END CERTIFICATE-----Generated at Sun Jul 6 05:31:05 2025 by rpki-client