$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa File: 326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa (raw, json) Hash identifier: dERySCDhc3+rlKwMAYMhD9XvddhhgSjXbVZeRoj98gc= Subject key identifier: 37:C7:C1:33:3B:C6:1F:56:0C:29:53:29:85:08:D5:83:12:87:65:84 Certificate issuer: /CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Certificate serial: 4B0FC5D04180F3CFBC8A286BCABC9C613A96370A Authority key identifier: B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa Signing time: Fri 04 Jul 2025 12:51:24 +0000 ROA not before: Fri 04 Jul 2025 12:46:24 +0000 ROA not after: Fri 03 Jul 2026 12:51:24 +0000 asID: 216455 IP address blocks: 2a07:54c7:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 23:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:0f:c5:d0:41:80:f3:cf:bc:8a:28:6b:ca:bc:9c:61:3a:96:37:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Validity Not Before: Jul 4 12:46:24 2025 GMT Not After : Jul 3 12:51:24 2026 GMT Subject: CN=37C7C1333BC61F560C2953298508D58312876584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:28:0d:ae:16:b4:b0:cd:a0:77:62:26:04:49: 1e:17:da:67:d8:22:2d:b2:e2:c6:85:f5:08:47:3e: 5c:32:fc:0a:cd:d3:9e:09:26:90:31:84:3f:ab:ef: 14:9a:da:8b:a8:81:08:5a:13:e4:5e:ce:17:0e:cf: aa:e0:5e:74:7f:ac:13:49:97:5b:aa:b0:6b:6c:47: 9f:e2:cc:68:e4:ea:9e:c6:1b:ae:4e:f6:1a:1c:bd: 53:68:64:18:98:56:68:b7:eb:6f:f2:0c:ef:b9:4a: 5a:ee:d2:59:d0:7b:9f:e7:d1:af:b6:ca:d5:4a:55: c5:2c:d9:e7:e0:76:65:6d:21:28:af:16:69:07:33: fe:04:01:91:56:3e:ed:cf:ce:3c:fb:1f:2e:63:35: 2f:8d:91:6e:ac:f4:20:96:e5:d5:30:1e:9e:4d:8f: ea:e4:46:77:a3:8c:df:65:eb:46:9d:4f:e4:41:bd: e6:03:63:89:1e:b8:e9:30:06:90:f0:5a:b1:3f:ed: bc:3a:ee:61:82:fd:2c:d0:d3:ce:c0:d4:10:4b:a9: 75:65:c5:ef:57:04:91:1d:c3:89:87:16:80:fa:5a: 83:3e:ed:86:2f:31:d6:18:11:91:22:8c:a5:fb:4b: dc:f7:70:3f:b4:85:6c:c3:81:47:7c:5f:4e:78:ca: a6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C7:C1:33:3B:C6:1F:56:0C:29:53:29:85:08:D5:83:12:87:65:84 X509v3 Authority Key Identifier: keyid:B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:5000::/36 Signature Algorithm: sha256WithRSAEncryption 73:fb:2b:9a:a9:79:d5:53:16:87:a4:f7:b5:66:d0:54:ac:19: b5:06:ab:8b:c0:66:8f:dc:27:62:4d:ba:84:ee:98:36:26:fb: a0:af:7c:57:ea:9b:24:c7:4f:03:26:4b:92:73:b1:4a:48:92: 43:96:50:df:8c:c7:05:2c:ad:19:73:07:e0:94:ea:05:46:e9: 3f:05:cf:ce:90:05:42:19:70:96:25:d3:03:c9:76:c3:93:5f: 3e:ab:97:29:e6:e4:ad:f7:8d:99:64:f5:5b:9f:ad:84:21:93: 79:9d:1b:60:d0:ad:5c:7c:5a:58:09:5e:4b:28:0c:44:8a:6f: f0:9d:81:44:ba:3c:25:da:1d:4c:18:a2:9d:4c:f6:40:de:2a: 46:d5:d6:0b:96:fa:68:20:9a:e8:9f:8e:ba:5f:f1:d6:07:bd: a3:0b:ac:e1:88:81:d0:ad:86:51:30:09:6f:d4:64:73:ca:ea: a0:5f:a1:66:e2:3e:f4:38:d0:33:55:89:17:24:7f:eb:3b:cc: 0d:85:01:f0:a7:f9:a7:22:29:6f:e9:93:a2:85:a7:53:66:46: 44:31:a8:5d:27:dc:91:ff:d7:15:f6:ea:15:f9:db:4c:a8:c0: c4:0d:9e:f6:72:60:66:25:55:bc:90:25:f9:bc:34:81:66:06: 68:ff:98:85 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUSw/F0EGA88+8iihryrycYTqWNwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgy RkU2MjY3OTAeFw0yNTA3MDQxMjQ2MjRaFw0yNjA3MDMxMjUxMjRaMDMxMTAvBgNV BAMTKDM3QzdDMTMzM0JDNjFGNTYwQzI5NTMyOTg1MDhENTgzMTI4NzY1ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMKA2uFrSwzaB3YiYESR4X2mfY Ii2y4saF9QhHPlwy/ArN054JJpAxhD+r7xSa2ouogQhaE+RezhcOz6rgXnR/rBNJ l1uqsGtsR5/izGjk6p7GG65O9hocvVNoZBiYVmi362/yDO+5Slru0lnQe5/n0a+2 ytVKVcUs2efgdmVtISivFmkHM/4EAZFWPu3Pzjz7Hy5jNS+NkW6s9CCW5dUwHp5N j+rkRnejjN9l60adT+RBveYDY4keuOkwBpDwWrE/7bw67mGC/SzQ087A1BBLqXVl xe9XBJEdw4mHFoD6WoM+7YYvMdYYEZEijKX7S9z3cD+0hWzDgUd8X054yqYZAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUN8fBMzvGH1YMKVMphQjVgxKHZYQwHwYDVR0j BBgwFoAUs/FzfpDyQNerszxy+E1xSC/mJnkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzIvQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgyRkU2MjY3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvNC9CM0YxNzM3RTkwRjI0MEQ3QUJCMzNDNzJG ODRENzE0ODJGRTYyNjc5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODIxYzQ3ZS1lODE1LTQyZGUtYmQ2Yi0xOWEyZTFhZTU2NGEvMi8zMjYxMzAz NzNhMzUzNDYzMzczYTM1MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM2MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdUx1AwDQYJKoZIhvcNAQELBQADggEBAHP7 K5qpedVTFoek97Vm0FSsGbUGq4vAZo/cJ2JNuoTumDYm+6CvfFfqmyTHTwMmS5Jz sUpIkkOWUN+MxwUsrRlzB+CU6gVG6T8Fz86QBUIZcJYl0wPJdsOTXz6rlynm5K33 jZlk9VufrYQhk3mdG2DQrVx8WlgJXksoDESKb/CdgUS6PCXaHUwYop1M9kDeKkbV 1guW+mggmuifjrpf8dYHvaMLrOGIgdCthlEwCW/UZHPK6qBfoWbiPvQ40DNViRck f+s7zA2FAfCn+aciKW/pk6KFp1NmRkQxqF0n3JH/1xX26hX520yowMQNnvZyYGYl VbyQJfm8NIFmBmj/mIU= -----END CERTIFICATE-----Generated at Tue Aug 5 17:17:49 2025 by rpki-client