$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fecbc404-ac43-449b-8c7e-8f1e99d9ac49/4/326130613a363034343a376530303a3a2f34302d3438203d3e20323134343836.roa File: 326130613a363034343a376530303a3a2f34302d3438203d3e20323134343836.roa (raw, json) Hash identifier: yxWfxxOaYDv0otdzU3RUQ6Xc1d8/2QDjf8LAmvgn7IY= Subject key identifier: AD:0B:E1:08:D8:74:FB:D4:CA:6E:60:A5:48:28:17:F5:99:BB:50:78 Certificate issuer: /CN=8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400 Certificate serial: 24DD5300C662AB1F8436E4565F9390AB2F0BC426 Authority key identifier: 8C:CE:4E:EB:C2:B6:B0:AE:EB:31:E8:91:0C:C5:56:07:95:7B:54:00 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fecbc404-ac43-449b-8c7e-8f1e99d9ac49/4/326130613a363034343a376530303a3a2f34302d3438203d3e20323134343836.roa Signing time: Thu 03 Jul 2025 18:46:44 +0000 ROA not before: Thu 03 Jul 2025 18:41:44 +0000 ROA not after: Thu 02 Jul 2026 18:46:44 +0000 asID: 214486 IP address blocks: 2a0a:6044:7e00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fecbc404-ac43-449b-8c7e-8f1e99d9ac49/4/8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400.crl rsync://rsync.paas.rpki.ripe.net/repository/fecbc404-ac43-449b-8c7e-8f1e99d9ac49/4/8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400.mft rsync://krill.47272.net/repo/HYEHOST/5/8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 13:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:dd:53:00:c6:62:ab:1f:84:36:e4:56:5f:93:90:ab:2f:0b:c4:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400 Validity Not Before: Jul 3 18:41:44 2025 GMT Not After : Jul 2 18:46:44 2026 GMT Subject: CN=AD0BE108D874FBD4CA6E60A5482817F599BB5078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3c:4d:12:6a:dc:62:a0:98:95:0c:91:1e:0a: 95:08:c1:e6:fe:cc:05:58:6a:29:f3:d5:b1:f5:1b: 42:b2:c6:d1:c4:2f:71:bc:55:34:1c:28:f0:64:bd: f2:93:04:66:05:92:84:ae:81:00:23:d7:07:aa:5a: 54:5b:5b:93:fb:24:f2:76:19:2c:8e:fd:4b:9f:6c: 6f:1b:36:8d:d3:0d:a9:5b:ed:d1:44:33:ec:99:1d: 46:b4:07:a4:8b:bc:ad:34:37:55:e5:29:a8:72:bf: 23:ee:5e:52:73:67:c6:cd:08:05:92:b0:ad:23:5d: 63:fd:5f:ed:16:6d:27:be:3b:32:9d:18:3a:4e:37: 5c:45:36:b6:cd:b3:ac:6f:62:5e:76:68:ef:e3:f6: f5:f9:56:a4:a6:bf:7c:f3:4e:eb:3e:a1:d3:42:9f: 09:b8:fa:a7:ea:1f:5f:26:89:01:37:f0:79:c3:64: 6f:4b:c0:fb:1d:d5:fb:93:9b:ab:41:cf:6b:78:e6: 7b:a0:9c:62:1e:6f:1b:fe:54:55:ab:f5:c6:69:15: 41:45:cd:cd:90:1e:78:82:f9:21:e0:f5:d1:2f:c9: 73:6c:41:a6:a1:34:25:29:bb:cf:3d:e1:bd:be:6b: 7f:3e:c3:90:59:69:bc:54:6d:de:da:e3:78:5d:e8: 80:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:0B:E1:08:D8:74:FB:D4:CA:6E:60:A5:48:28:17:F5:99:BB:50:78 X509v3 Authority Key Identifier: keyid:8C:CE:4E:EB:C2:B6:B0:AE:EB:31:E8:91:0C:C5:56:07:95:7B:54:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fecbc404-ac43-449b-8c7e-8f1e99d9ac49/4/8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/8CCE4EEBC2B6B0AEEB31E8910CC55607957B5400.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fecbc404-ac43-449b-8c7e-8f1e99d9ac49/4/326130613a363034343a376530303a3a2f34302d3438203d3e20323134343836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7e00::/40 Signature Algorithm: sha256WithRSAEncryption 86:78:a3:f9:ea:c0:fd:37:d8:03:97:d7:2a:d8:f9:60:0b:7e: 6e:32:0c:e4:33:12:39:43:aa:88:77:0a:ff:b1:52:5c:00:fc: 44:f9:88:7b:4e:38:fc:83:37:96:da:85:7c:3a:c5:39:8d:e5: 9a:33:ec:00:1b:db:a8:e7:7b:a5:7e:b4:9e:a4:65:c5:86:95: ba:b1:68:9e:76:36:91:b3:9c:ab:0d:cb:ba:48:e8:e5:51:48: 2e:ef:6e:3d:50:19:d9:25:d6:a9:91:8c:62:eb:c6:97:35:b5: dc:2a:3e:fe:5f:b9:80:a0:c8:ba:6f:ce:36:c7:56:05:86:7a: 79:67:31:98:07:4a:ec:33:fa:62:b8:fe:11:10:9f:4c:27:9e: f5:d9:43:b4:35:89:d8:60:77:00:85:af:1e:ce:01:0e:8c:ef: 2f:22:bf:5c:0b:8a:05:3f:34:b5:be:e1:7d:a9:7b:43:86:e9: 39:5e:f4:56:47:30:04:12:29:7a:22:c9:e3:5a:79:02:b0:e8: 91:d4:ba:c7:6d:68:f2:94:b1:5f:95:2b:fb:32:d9:f5:87:6d: 5b:9b:8c:0d:3e:d9:e6:c0:d2:2e:96:b5:81:07:99:d4:f6:f4: f5:8f:2b:65:20:54:71:fc:73:9a:a3:ab:f5:b4:15:a4:91:d7: b2:33:73:10 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIUJN1TAMZiqx+ENuRWX5OQqy8LxCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENDRTRFRUJDMkI2QjBBRUVCMzFFODkxMENDNTU2MDc5 NTdCNTQwMDAeFw0yNTA3MDMxODQxNDRaFw0yNjA3MDIxODQ2NDRaMDMxMTAvBgNV BAMTKEFEMEJFMTA4RDg3NEZCRDRDQTZFNjBBNTQ4MjgxN0Y1OTlCQjUwNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvPE0SatxioJiVDJEeCpUIweb+ zAVYainz1bH1G0KyxtHEL3G8VTQcKPBkvfKTBGYFkoSugQAj1weqWlRbW5P7JPJ2 GSyO/UufbG8bNo3TDalb7dFEM+yZHUa0B6SLvK00N1XlKahyvyPuXlJzZ8bNCAWS sK0jXWP9X+0WbSe+OzKdGDpON1xFNrbNs6xvYl52aO/j9vX5VqSmv3zzTus+odNC nwm4+qfqH18miQE38HnDZG9LwPsd1fuTm6tBz2t45nugnGIebxv+VFWr9cZpFUFF zc2QHniC+SHg9dEvyXNsQaahNCUpu8894b2+a38+w5BZabxUbd7a43hd6IDjAgMB AAGjggJUMIICUDAdBgNVHQ4EFgQUrQvhCNh0+9TKbmClSCgX9Zm7UHgwHwYDVR0j BBgwFoAUjM5O68K2sK7rMeiRDMVWB5V7VAAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmVjYmM0MDQtYWM0My00NDliLThjN2UtOGYxZTk5ZDlh YzQ5LzQvOENDRTRFRUJDMkI2QjBBRUVCMzFFODkxMENDNTU2MDc5NTdCNTQwMC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS84Q0NFNEVFQkMyQjZCMEFFRUIzMUU4OTEw Q0M1NTYwNzk1N0I1NDAwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mZWNiYzQwNC1hYzQzLTQ0OWItOGM3ZS04ZjFlOTlkOWFjNDkvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjUzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM0MzQzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgRH4wDQYJKoZIhvcNAQELBQADggEBAIZ4 o/nqwP032AOX1yrY+WALfm4yDOQzEjlDqoh3Cv+xUlwA/ET5iHtOOPyDN5bahXw6 xTmN5Zoz7AAb26jne6V+tJ6kZcWGlbqxaJ52NpGznKsNy7pI6OVRSC7vbj1QGdkl 1qmRjGLrxpc1tdwqPv5fuYCgyLpvzjbHVgWGenlnMZgHSuwz+mK4/hEQn0wnnvXZ Q7Q1idhgdwCFrx7OAQ6M7y8iv1wLigU/NLW+4X2pe0OG6Tle9FZHMAQSKXoiyeNa eQKw6JHUusdtaPKUsV+VK/sy2fWHbVubjA0+2ebA0i6WtYEHmdT29PWPK2UgVHH8 c5qjq/W0FaSR17IzcxA= -----END CERTIFICATE-----Generated at Sun Jul 6 05:37:31 2025 by rpki-client