$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a356631303a3a2f34382d3438203d3e20323135353737.roa File: 326130373a353463373a356631303a3a2f34382d3438203d3e20323135353737.roa (raw, json) Hash identifier: 7mCuwzfIey+Hcqy/Vhuj4zUx9bQcgkzpUeh+UNvlKO4= Subject key identifier: F6:6E:D1:5B:12:5C:5B:25:E2:DE:02:2B:75:4F:86:AC:04:7F:CF:C1 Certificate issuer: /CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Certificate serial: 0D781EDE34BA56914EC545ABE3B9CA5C3BCAF6BB Authority key identifier: B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a356631303a3a2f34382d3438203d3e20323135353737.roa Signing time: Sat 02 Aug 2025 11:42:07 +0000 ROA not before: Sat 02 Aug 2025 11:37:07 +0000 ROA not after: Sat 01 Aug 2026 11:42:07 +0000 asID: 215577 IP address blocks: 2a07:54c7:5f10::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:78:1e:de:34:ba:56:91:4e:c5:45:ab:e3:b9:ca:5c:3b:ca:f6:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Validity Not Before: Aug 2 11:37:07 2025 GMT Not After : Aug 1 11:42:07 2026 GMT Subject: CN=F66ED15B125C5B25E2DE022B754F86AC047FCFC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c9:c0:dc:05:b0:ed:ae:a6:1d:bb:5f:fb:15: 15:e4:37:89:d0:28:19:3b:9a:68:d1:b8:4c:57:ba: 6c:b4:bb:75:c1:18:3e:c5:25:f3:df:f9:35:30:08: 65:b9:70:56:29:b7:c5:b4:68:fb:a8:7f:e2:dd:70: 68:df:e2:c0:49:02:8a:c4:08:07:8c:85:b1:6d:de: 61:3e:e2:0f:c8:56:98:0e:8e:79:51:5e:b6:36:dd: a1:d5:ca:9b:47:ab:11:54:cc:a0:4e:dd:f2:55:4e: 1b:ed:8c:24:3d:c2:18:fc:85:86:d7:c4:5f:b5:5c: ce:b0:e3:e0:7c:5f:72:e9:2a:be:07:e0:08:66:01: 17:2c:bd:46:90:42:3a:20:f0:f5:ff:9e:75:6b:47: 83:94:9c:f6:ce:64:0a:49:9c:30:d6:92:b3:79:0f: 30:08:f7:4d:63:4c:65:08:1f:0b:6e:fe:66:8b:60: 84:7f:de:ad:1b:81:59:36:7a:b3:39:dc:06:06:a1: 6e:80:cd:b6:d3:7c:f3:3b:bb:fe:ce:38:80:c0:4d: 13:3c:9e:56:e0:30:18:98:34:b4:f3:e2:4c:01:c0: c9:33:6d:43:77:66:91:8a:c6:ea:f8:07:18:05:21: 8e:49:eb:bd:9d:ed:d4:86:12:f8:f1:0c:5c:60:0a: 82:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6E:D1:5B:12:5C:5B:25:E2:DE:02:2B:75:4F:86:AC:04:7F:CF:C1 X509v3 Authority Key Identifier: keyid:B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a356631303a3a2f34382d3438203d3e20323135353737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:5f10::/48 Signature Algorithm: sha256WithRSAEncryption 04:02:9c:7e:d2:67:64:bc:d2:b3:f3:2f:a1:b5:63:1d:39:1e: d7:d0:6c:ef:83:13:81:cc:fd:16:54:07:3c:8f:2f:91:ba:86: a4:76:27:0a:b2:a1:b5:0a:4c:8c:3d:c4:61:6b:fe:2b:59:ad: 4c:60:c8:b2:de:44:4c:f7:74:d1:71:42:e8:7f:e3:42:d5:f1: 25:2a:92:05:6c:e6:01:2e:0a:d4:d9:29:33:78:31:dc:ff:3f: 13:d9:70:67:20:77:80:87:15:cd:08:29:b0:7a:b0:f4:ff:eb: 86:b0:5f:5f:50:16:63:5d:a9:2b:33:62:4d:67:fa:4f:87:39: f5:fa:35:54:38:be:0c:97:e3:f0:d7:bf:95:11:40:3a:d7:74: 0d:7d:8d:59:c9:17:3a:63:52:cb:24:d4:59:ac:3c:0b:e3:16: fa:8b:d1:21:a5:31:1f:30:e0:ee:a0:19:8f:02:13:08:54:a1: 39:23:ce:88:64:4d:76:a6:57:f8:7b:5b:89:fb:23:ad:37:fc: e9:63:1d:cf:db:81:ba:ba:2c:5e:16:78:77:38:c9:45:e0:34: a1:6f:f6:71:23:42:65:4b:e0:59:c6:ad:c1:61:34:a5:3f:5d: 19:f3:7b:a5:58:34:a5:2a:7e:96:62:f0:a4:a9:3f:7d:6c:54: be:be:5d:58 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUDXge3jS6VpFOxUWr47nKXDvK9rswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgy RkU2MjY3OTAeFw0yNTA4MDIxMTM3MDdaFw0yNjA4MDExMTQyMDdaMDMxMTAvBgNV BAMTKEY2NkVEMTVCMTI1QzVCMjVFMkRFMDIyQjc1NEY4NkFDMDQ3RkNGQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiycDcBbDtrqYdu1/7FRXkN4nQ KBk7mmjRuExXumy0u3XBGD7FJfPf+TUwCGW5cFYpt8W0aPuof+LdcGjf4sBJAorE CAeMhbFt3mE+4g/IVpgOjnlRXrY23aHVyptHqxFUzKBO3fJVThvtjCQ9whj8hYbX xF+1XM6w4+B8X3LpKr4H4AhmARcsvUaQQjog8PX/nnVrR4OUnPbOZApJnDDWkrN5 DzAI901jTGUIHwtu/maLYIR/3q0bgVk2erM53AYGoW6AzbbTfPM7u/7OOIDATRM8 nlbgMBiYNLTz4kwBwMkzbUN3ZpGKxur4BxgFIY5J672d7dSGEvjxDFxgCoL9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU9m7RWxJcWyXi3gIrdU+GrAR/z8EwHwYDVR0j BBgwFoAUs/FzfpDyQNerszxy+E1xSC/mJnkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzIvQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgyRkU2MjY3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvNC9CM0YxNzM3RTkwRjI0MEQ3QUJCMzNDNzJG ODRENzE0ODJGRTYyNjc5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODIxYzQ3ZS1lODE1LTQyZGUtYmQ2Yi0xOWEyZTFhZTU2NGEvMi8zMjYxMzAz NzNhMzUzNDYzMzczYTM1NjYzMTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzUzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUx18QMA0GCSqGSIb3DQEBCwUAA4IBAQAE Apx+0mdkvNKz8y+htWMdOR7X0GzvgxOBzP0WVAc8jy+RuoakdicKsqG1CkyMPcRh a/4rWa1MYMiy3kRM93TRcULof+NC1fElKpIFbOYBLgrU2SkzeDHc/z8T2XBnIHeA hxXNCCmwerD0/+uGsF9fUBZjXakrM2JNZ/pPhzn1+jVUOL4Ml+Pw17+VEUA613QN fY1ZyRc6Y1LLJNRZrDwL4xb6i9EhpTEfMODuoBmPAhMIVKE5I86IZE12plf4e1uJ +yOtN/zpYx3P24G6uixeFnh3OMlF4DShb/ZxI0JlS+BZxq3BYTSlP10Z83ulWDSl Kn6WYvCkqT99bFS+vl1Y -----END CERTIFICATE-----Generated at Mon Aug 4 16:14:53 2025 by rpki-client