$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a3a2f33322d3438203d3e20323135313437.roa File: 326130393a353463333a3a2f33322d3438203d3e20323135313437.roa (raw, json) Hash identifier: InFGKVHvJAKBKTmVHMnrTh0KnrlcHSCv/+zCdfrQuD0= Subject key identifier: 13:94:EC:18:68:21:43:97:E4:9E:A3:5A:AC:F8:BA:68:38:0F:5E:AA Certificate issuer: /CN=050C4BF608C9D558DB4A44BBED5A23D005379356 Certificate serial: 55E40B2B12BD3BD1F556966B5EA1342834D129F8 Authority key identifier: 05:0C:4B:F6:08:C9:D5:58:DB:4A:44:BB:ED:5A:23:D0:05:37:93:56 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a3a2f33322d3438203d3e20323135313437.roa Signing time: Wed 11 Jun 2025 04:05:15 +0000 ROA not before: Wed 11 Jun 2025 04:00:15 +0000 ROA not after: Wed 10 Jun 2026 04:05:15 +0000 asID: 215147 IP address blocks: 2a09:54c3::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/050C4BF608C9D558DB4A44BBED5A23D005379356.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/050C4BF608C9D558DB4A44BBED5A23D005379356.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 07:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e4:0b:2b:12:bd:3b:d1:f5:56:96:6b:5e:a1:34:28:34:d1:29:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=050C4BF608C9D558DB4A44BBED5A23D005379356 Validity Not Before: Jun 11 04:00:15 2025 GMT Not After : Jun 10 04:05:15 2026 GMT Subject: CN=1394EC1868214397E49EA35AACF8BA68380F5EAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a1:e8:b4:98:d6:43:e4:1f:9b:f0:d6:18:ae: 6c:c2:37:11:c0:16:bb:77:b0:45:a7:bb:77:3d:95: 82:a0:dd:ee:1f:d1:4e:09:35:fe:c4:d0:42:69:ec: 89:3f:ca:dd:f6:c7:57:6c:5a:01:4c:70:1b:5c:54: e2:79:e2:96:5d:7e:a0:25:bc:12:4e:d7:fa:c9:e1: 54:97:88:21:04:3a:d8:04:7b:d1:6c:48:04:fe:ff: 8e:3a:c5:8a:cc:c6:5e:e6:f4:6b:6b:a4:54:45:70: 1d:34:87:11:94:e1:ac:c9:6b:38:6a:1f:52:f7:c9: 2d:29:7f:f9:68:bb:ed:23:83:4d:89:aa:80:cd:b8: 0e:16:c8:f2:e8:de:34:49:cf:64:04:d0:59:e3:0a: 88:a6:9c:73:a4:21:17:ef:14:36:f6:fa:9b:2d:80: 16:9b:64:c8:33:67:2d:17:b8:fd:f4:76:4b:19:f7: 0b:7e:c3:d2:63:aa:fa:57:0f:b1:08:7e:3e:58:d1: b5:84:33:b3:f3:06:d7:56:38:59:9b:f5:e5:23:fd: 4b:44:10:a1:dd:9f:f2:e1:6c:71:6d:96:0c:b9:d5: 8e:11:62:58:04:56:0d:5e:3b:8e:85:7b:bb:c5:c2: 3b:6b:64:01:fa:61:bf:6f:39:6d:c3:27:3a:bb:7f: c7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:94:EC:18:68:21:43:97:E4:9E:A3:5A:AC:F8:BA:68:38:0F:5E:AA X509v3 Authority Key Identifier: keyid:05:0C:4B:F6:08:C9:D5:58:DB:4A:44:BB:ED:5A:23:D0:05:37:93:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/050C4BF608C9D558DB4A44BBED5A23D005379356.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a3a2f33322d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3::/32 Signature Algorithm: sha256WithRSAEncryption 02:ca:5a:cd:1c:06:f8:f7:4f:da:cd:9c:d5:d7:c6:97:c9:85: 07:0e:0e:44:3e:c2:2e:b4:41:a4:79:6a:6f:d5:df:66:c9:6c: 87:85:b2:c7:4b:42:8c:b2:4d:97:12:6b:b8:23:57:76:e2:2f: 30:11:38:4c:7b:d3:73:b3:22:74:09:84:01:e7:d1:23:d5:17: db:c5:aa:c8:ee:b5:d3:49:a7:43:49:e6:7f:b7:e2:b9:af:a2: 97:4a:53:a1:d8:86:9c:65:fc:07:a3:c1:b9:fa:8c:d3:43:12: 68:79:1d:bc:52:f8:cd:04:b1:af:9b:fa:b9:64:c9:f0:aa:c6: d5:60:f4:64:3f:ea:50:d5:0b:db:ef:19:a2:26:c5:95:f1:a7: 46:ee:a3:77:c5:eb:ea:ac:a2:5c:4b:91:64:83:b6:ba:3f:d5: f6:95:57:54:59:c0:0d:da:16:f7:12:aa:36:95:d4:7e:b0:bf: 94:17:28:48:16:38:0b:5e:16:fc:4a:01:a7:19:4d:ea:e2:36: d0:1e:26:4a:ab:fa:6d:45:e3:02:83:be:63:9a:eb:33:da:81: f6:c2:31:4a:23:94:85:61:48:36:90:fd:fc:97:22:97:c2:ec: b7:7a:3b:2e:54:f5:df:f6:76:8d:f1:c8:c4:29:aa:bf:f2:d6: 5a:42:4a:01 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUVeQLKxK9O9H1VpZrXqE0KDTRKfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDUwQzRCRjYwOEM5RDU1OERCNEE0NEJCRUQ1QTIzRDAw NTM3OTM1NjAeFw0yNTA2MTEwNDAwMTVaFw0yNjA2MTAwNDA1MTVaMDMxMTAvBgNV BAMTKDEzOTRFQzE4NjgyMTQzOTdFNDlFQTM1QUFDRjhCQTY4MzgwRjVFQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOoei0mNZD5B+b8NYYrmzCNxHA Frt3sEWnu3c9lYKg3e4f0U4JNf7E0EJp7Ik/yt32x1dsWgFMcBtcVOJ54pZdfqAl vBJO1/rJ4VSXiCEEOtgEe9FsSAT+/446xYrMxl7m9GtrpFRFcB00hxGU4azJazhq H1L3yS0pf/lou+0jg02JqoDNuA4WyPLo3jRJz2QE0FnjCoimnHOkIRfvFDb2+pst gBabZMgzZy0XuP30dksZ9wt+w9JjqvpXD7EIfj5Y0bWEM7PzBtdWOFmb9eUj/UtE EKHdn/LhbHFtlgy51Y4RYlgEVg1eO46Fe7vFwjtrZAH6Yb9vOW3DJzq7f8e7AgMB AAGjggJuMIICajAdBgNVHQ4EFgQUE5TsGGghQ5fknqNarPi6aDgPXqowHwYDVR0j BBgwFoAUBQxL9gjJ1VjbSkS77Voj0AU3k1YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzQvMDUwQzRCRjYwOEM5RDU1OERCNEE0NEJCRUQ1QTIzRDAwNTM3OTM1Ni5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMDUwQzRCRjYwOEM5RDU1OERCNEE0NEJCRUQ1QTIzRDAwNTM3 OTM1Ni5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzQvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMTM1MzEzNDM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KglUwzANBgkqhkiG9w0BAQsFAAOCAQEAAspazRwG+PdP2s2c1dfGl8mFBw4ORD7C LrRBpHlqb9XfZslsh4Wyx0tCjLJNlxJruCNXduIvMBE4THvTc7MidAmEAefRI9UX 28WqyO6100mnQ0nmf7fiua+il0pTodiGnGX8B6PBufqM00MSaHkdvFL4zQSxr5v6 uWTJ8KrG1WD0ZD/qUNUL2+8ZoibFlfGnRu6jd8Xr6qyiXEuRZIO2uj/V9pVXVFnA DdoW9xKqNpXUfrC/lBcoSBY4C14W/EoBpxlN6uI20B4mSqv6bUXjAoO+Y5rrM9qB 9sIxSiOUhWFINpD9/Jcil8Lst3o7LlT13/Z2jfHIxCmqv/LWWkJKAQ== -----END CERTIFICATE-----Generated at Sun Jun 15 17:49:44 2025 by rpki-client