$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa File: 326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa (raw, json) Hash identifier: SvnI/kKkXn3yiVhNqVKN9Taah5WCLs8Rw+D4PBjSrbo= Subject key identifier: 87:05:0D:25:ED:1F:89:93:18:C3:26:AB:CF:50:14:A0:BB:6B:5C:12 Certificate issuer: /CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Certificate serial: 60A43A786F450B3DD9BBF1C4083F787F19299BFB Authority key identifier: B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa Signing time: Fri 04 Jul 2025 12:51:24 +0000 ROA not before: Fri 04 Jul 2025 12:46:24 +0000 ROA not after: Fri 03 Jul 2026 12:51:24 +0000 asID: 216455 IP address blocks: 2a07:54c7:5999::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 12:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:a4:3a:78:6f:45:0b:3d:d9:bb:f1:c4:08:3f:78:7f:19:29:9b:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Validity Not Before: Jul 4 12:46:24 2025 GMT Not After : Jul 3 12:51:24 2026 GMT Subject: CN=87050D25ED1F899318C326ABCF5014A0BB6B5C12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2e:63:dd:3f:1a:2f:4e:15:39:bc:96:a0:d8: 8f:c3:cf:bc:1a:cc:b4:20:f7:50:b7:d0:e1:06:f8: 23:27:9a:76:b2:07:a5:c3:33:de:9e:d4:54:d2:82: cc:b0:bd:93:0d:ed:78:97:1f:fb:ce:e9:e6:ed:a3: 64:a1:cf:8e:17:0b:8c:db:f7:49:75:b1:7a:b3:4c: 06:2c:d3:03:02:7f:06:d1:a0:7e:7d:03:77:b0:bb: b4:2f:47:61:b8:46:7c:d4:96:b4:f1:76:8a:22:0b: ea:46:53:ad:83:96:81:ae:13:b0:50:29:54:c2:9c: d0:ae:e5:77:ca:cc:a9:cb:1c:a8:b1:89:ff:37:6f: ab:e5:c7:1b:15:1b:aa:c3:45:10:f2:47:d3:aa:0f: 41:b3:f2:b0:cc:76:1d:ee:5e:d6:33:a4:2f:85:e8: 5a:2b:da:b1:13:3d:ac:79:c6:27:7c:29:c8:dd:a3: 32:7b:49:ea:21:8e:70:b7:ca:d9:5a:42:4f:5a:0f: 87:50:6e:c8:fc:5b:74:a2:c5:e3:73:84:28:10:6e: be:9a:ea:30:6d:5a:e3:16:6e:6a:f3:25:43:5c:c7: 40:4a:97:38:9c:a5:6b:ad:65:f9:f5:e5:cc:86:05: 1b:4b:62:6b:9c:5d:3a:38:41:f3:d9:99:aa:18:b7: 97:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:05:0D:25:ED:1F:89:93:18:C3:26:AB:CF:50:14:A0:BB:6B:5C:12 X509v3 Authority Key Identifier: keyid:B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:5999::/48 Signature Algorithm: sha256WithRSAEncryption 11:2e:26:73:1f:20:78:20:f5:05:89:93:15:46:c0:9b:73:42: 27:80:6f:29:d1:8f:e3:e1:a9:0f:5c:f4:7f:45:31:d3:cf:21: 69:23:1f:c3:21:24:e0:26:17:f3:b5:be:d7:6c:77:fe:08:37: 61:5f:e2:c5:28:78:23:0f:82:f4:67:1e:de:61:03:f4:ba:69: c3:d1:aa:f5:48:cc:b7:54:3d:78:ef:94:e3:11:0e:3f:8c:4d: 42:90:0e:6c:dd:96:3a:a5:b9:26:ce:e0:6d:81:44:8e:7b:d1: 70:1a:86:a6:31:3f:4d:3d:71:f8:8e:b7:30:96:f0:d3:7b:76: a5:14:f1:a4:a7:ce:b2:5c:63:2b:05:98:2d:01:de:c4:51:cf: 10:a5:7e:5b:41:ad:32:0b:cc:fe:a1:c2:98:93:9c:d7:46:70: a2:95:b3:21:07:93:3a:81:dc:d2:64:82:cb:a2:18:5d:cd:e7: 48:95:cb:3f:7b:80:87:7a:f0:8e:cb:7f:a0:55:77:e1:cf:9e: c4:10:f2:99:b9:3c:8b:db:95:e0:b4:5d:38:ef:95:a0:1d:ce: f1:85:be:3b:14:7c:55:17:33:40:7c:1c:15:ff:df:ba:8d:06: 0e:06:dd:a6:9e:fc:72:04:98:a9:3f:8a:ce:dd:f8:70:a8:e6: f2:d2:b7:88 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYKQ6eG9FCz3Zu/HECD94fxkpm/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgy RkU2MjY3OTAeFw0yNTA3MDQxMjQ2MjRaFw0yNjA3MDMxMjUxMjRaMDMxMTAvBgNV BAMTKDg3MDUwRDI1RUQxRjg5OTMxOEMzMjZBQkNGNTAxNEEwQkI2QjVDMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDULmPdPxovThU5vJag2I/Dz7wa zLQg91C30OEG+CMnmnayB6XDM96e1FTSgsywvZMN7XiXH/vO6ebto2Shz44XC4zb 90l1sXqzTAYs0wMCfwbRoH59A3ewu7QvR2G4RnzUlrTxdooiC+pGU62DloGuE7BQ KVTCnNCu5XfKzKnLHKixif83b6vlxxsVG6rDRRDyR9OqD0Gz8rDMdh3uXtYzpC+F 6For2rETPax5xid8KcjdozJ7SeohjnC3ytlaQk9aD4dQbsj8W3SixeNzhCgQbr6a 6jBtWuMWbmrzJUNcx0BKlzicpWutZfn15cyGBRtLYmucXTo4QfPZmaoYt5cTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUhwUNJe0fiZMYwyarz1AUoLtrXBIwHwYDVR0j BBgwFoAUs/FzfpDyQNerszxy+E1xSC/mJnkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzIvQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgyRkU2MjY3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvNC9CM0YxNzM3RTkwRjI0MEQ3QUJCMzNDNzJG ODRENzE0ODJGRTYyNjc5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODIxYzQ3ZS1lODE1LTQyZGUtYmQ2Yi0xOWEyZTFhZTU2NGEvMi8zMjYxMzAz NzNhMzUzNDYzMzczYTM1MzkzOTM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM2MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUx1mZMA0GCSqGSIb3DQEBCwUAA4IBAQAR LiZzHyB4IPUFiZMVRsCbc0IngG8p0Y/j4akPXPR/RTHTzyFpIx/DISTgJhfztb7X bHf+CDdhX+LFKHgjD4L0Zx7eYQP0umnD0ar1SMy3VD1475TjEQ4/jE1CkA5s3ZY6 pbkmzuBtgUSOe9FwGoamMT9NPXH4jrcwlvDTe3alFPGkp86yXGMrBZgtAd7EUc8Q pX5bQa0yC8z+ocKYk5zXRnCilbMhB5M6gdzSZILLohhdzedIlcs/e4CHevCOy3+g VXfhz57EEPKZuTyL25XgtF0475WgHc7xhb47FHxVFzNAfBwV/9+6jQYOBt2mnvxy BJipP4rO3fhwqOby0reI -----END CERTIFICATE-----Generated at Tue Aug 5 20:18:20 2025 by rpki-client