$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa File: 326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa (raw, json) Hash identifier: HsjlAFHIQV6UlrYLXmXWr7Flxeyjlcgjqx5Y+vyThiA= Subject key identifier: 66:14:C5:D8:11:59:94:32:98:05:E0:FE:CD:7A:96:A7:75:99:83:AD Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 109FE88755312AFD7354163110BF76CCD2E7FE00 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa Signing time: Fri 23 May 2025 20:58:42 +0000 ROA not before: Fri 23 May 2025 20:53:42 +0000 ROA not after: Fri 22 May 2026 20:58:42 +0000 asID: 211066 IP address blocks: 2a06:1283:8e00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 20:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:9f:e8:87:55:31:2a:fd:73:54:16:31:10:bf:76:cc:d2:e7:fe:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: May 23 20:53:42 2025 GMT Not After : May 22 20:58:42 2026 GMT Subject: CN=6614C5D8115994329805E0FECD7A96A7759983AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:75:4e:ca:01:24:f2:28:ad:dc:f7:31:95:c4: b3:72:c2:a9:3c:eb:2b:02:af:5d:14:8c:a4:ee:dc: d7:37:f3:2e:97:1f:a5:e6:51:89:30:61:18:87:16: 5c:11:f5:31:2f:96:2b:ad:ae:67:f2:17:0f:7c:ac: fe:34:32:0c:9d:5b:93:ab:17:b4:fb:81:52:8a:3b: ee:42:52:21:e0:d1:11:b6:ff:ba:0d:33:c6:56:92: 19:4a:f3:d2:06:62:5d:df:a4:41:89:83:ce:d6:76: 90:32:d7:9d:cb:93:6f:19:9e:24:e4:7e:1c:73:5d: 52:99:51:b5:20:44:fe:0f:1f:1f:d7:5b:16:8c:6c: 9d:8b:27:34:9d:39:4d:20:23:be:90:23:ef:30:18: 51:fd:c0:5b:e9:eb:23:e8:0d:02:e5:8e:94:3c:e5: 22:a5:d6:2b:a5:2d:aa:d7:3a:8e:2f:30:7e:3d:02: 0f:62:37:0c:61:aa:f4:5a:0b:6a:9e:c6:d6:80:de: 0a:89:eb:e3:7c:86:97:70:87:5d:96:ec:45:88:1b: ab:fd:b0:dd:fc:ec:b8:3c:06:61:1d:65:4f:74:59: 00:a3:1e:dd:5a:57:ac:82:01:22:94:3b:26:6e:7b: a4:5c:b5:fe:76:b5:b4:48:64:ac:61:b8:ca:71:1e: cb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:14:C5:D8:11:59:94:32:98:05:E0:FE:CD:7A:96:A7:75:99:83:AD X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386530303a3a2f34302d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8e00::/40 Signature Algorithm: sha256WithRSAEncryption 3a:fd:0f:a2:bc:7e:4f:bc:5f:f1:72:7e:03:d1:9d:cb:09:76: 8b:21:be:cb:c1:e5:6f:98:34:4f:42:14:6c:6e:bb:be:30:88: de:7b:79:b5:aa:5c:a0:1d:ab:81:0e:bc:d6:17:1a:72:53:13: 96:2b:e4:79:02:ff:bd:bb:81:f7:3b:03:5f:14:3c:95:6e:03: 4b:ed:4a:ff:4a:a2:6c:13:a6:43:cb:0e:33:d9:ca:74:3b:f0: 83:3d:15:69:5e:6c:66:87:fd:fb:b9:cf:c2:a4:68:33:2f:87: 42:bb:a3:a2:79:7c:08:b3:fe:f0:b3:06:e6:1d:7e:1a:d2:07: 38:fc:b9:df:62:e1:8d:42:8c:35:d3:ba:29:04:3b:25:58:c7: b8:09:bd:50:24:47:90:06:c9:e7:a5:49:05:35:c4:44:cf:52: 10:a4:89:43:23:e1:e6:59:76:69:ec:eb:b1:de:66:5b:97:dc: 26:a2:ad:ec:2f:24:14:3e:93:ee:62:e0:33:ca:ed:60:e2:a6: 4f:a3:62:97:3c:75:12:cc:07:2f:bc:d1:e4:f2:09:6e:96:0c: 0f:a2:25:08:5a:12:2a:35:2e:26:8e:b7:46:ef:d1:fc:55:79: d1:4f:ad:09:88:d9:ef:5f:a1:3b:b9:f3:86:36:2c:59:00:43: d9:e0:80:42 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUEJ/oh1UxKv1zVBYxEL92zNLn/gAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNTA1MjMyMDUzNDJaFw0yNjA1MjIyMDU4NDJaMDMxMTAvBgNV BAMTKDY2MTRDNUQ4MTE1OTk0MzI5ODA1RTBGRUNEN0E5NkE3NzU5OTgzQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRdU7KASTyKK3c9zGVxLNywqk8 6ysCr10UjKTu3Nc38y6XH6XmUYkwYRiHFlwR9TEvliutrmfyFw98rP40MgydW5Or F7T7gVKKO+5CUiHg0RG2/7oNM8ZWkhlK89IGYl3fpEGJg87WdpAy153Lk28ZniTk fhxzXVKZUbUgRP4PHx/XWxaMbJ2LJzSdOU0gI76QI+8wGFH9wFvp6yPoDQLljpQ8 5SKl1iulLarXOo4vMH49Ag9iNwxhqvRaC2qextaA3gqJ6+N8hpdwh12W7EWIG6v9 sN387Lg8BmEdZU90WQCjHt1aV6yCASKUOyZue6Rctf52tbRIZKxhuMpxHsvJAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUZhTF2BFZlDKYBeD+zXqWp3WZg60wHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjUzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTMxMzAzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgYSg44wDQYJKoZIhvcNAQELBQADggEBADr9 D6K8fk+8X/FyfgPRncsJdoshvsvB5W+YNE9CFGxuu74wiN57ebWqXKAdq4EOvNYX GnJTE5Yr5HkC/727gfc7A18UPJVuA0vtSv9KomwTpkPLDjPZynQ78IM9FWlebGaH /fu5z8KkaDMvh0K7o6J5fAiz/vCzBuYdfhrSBzj8ud9i4Y1CjDXTuikEOyVYx7gJ vVAkR5AGyeelSQU1xETPUhCkiUMj4eZZdmns67HeZluX3CairewvJBQ+k+5i4DPK 7WDipk+jYpc8dRLMBy+80eTyCW6WDA+iJQhaEio1LiaOt0bv0fxVedFPrQmI2e9f oTu584Y2LFkAQ9nggEI= -----END CERTIFICATE-----Generated at Mon Jun 16 02:42:28 2025 by rpki-client