$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e203131393637.roa File: 326130363a313238333a386235303a3a2f34342d313238203d3e203131393637.roa (raw, json) Hash identifier: uHWxG8kbtQnmFudwlF37/C8QH9hN+DOmVsGuiAGSHA4= Subject key identifier: F6:47:E8:D8:4F:4F:17:34:1B:AC:2F:D3:35:23:21:9C:88:21:35:F9 Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 3ECDCCF5C3BFB3EC389F7CF4BE4BB06D77CF3C72 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e203131393637.roa Signing time: Tue 22 Jul 2025 23:51:41 +0000 ROA not before: Tue 22 Jul 2025 23:46:41 +0000 ROA not after: Tue 21 Jul 2026 23:51:41 +0000 asID: 11967 IP address blocks: 2a06:1283:8b50::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 09 Aug 2025 01:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:cd:cc:f5:c3:bf:b3:ec:38:9f:7c:f4:be:4b:b0:6d:77:cf:3c:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 22 23:46:41 2025 GMT Not After : Jul 21 23:51:41 2026 GMT Subject: CN=F647E8D84F4F17341BAC2FD33523219C882135F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ff:31:5d:79:f5:ee:0b:b5:87:bf:fa:ef:0a: 02:9e:4b:92:5a:b8:82:38:dc:74:c1:3c:36:c5:73: cc:e2:33:85:39:42:1b:11:45:24:ff:fa:75:44:25: f8:b9:18:35:40:dd:80:d3:85:86:73:9e:7b:ec:61: 2d:38:2a:ee:44:ac:3e:ed:1a:5e:a6:b5:f8:2b:94: dd:d4:56:1d:84:bf:81:aa:81:ac:4d:a5:41:fc:da: f0:bb:d3:07:a9:20:bf:e6:dd:e4:59:b7:4c:f5:f7: 8b:51:dd:87:dd:02:59:5c:44:8f:1f:5a:53:ca:c7: ad:26:38:6c:e3:fa:42:35:e3:d9:55:72:2c:4d:e0: 07:cf:02:80:d4:f4:37:2f:da:f0:87:3c:e9:53:75: 3f:56:92:90:3e:6f:07:be:43:43:a2:c7:cf:5a:45: d6:d2:86:cd:a0:05:19:77:76:67:93:35:39:ac:97: 26:cf:17:c6:13:3c:13:bb:2c:d4:07:75:93:5f:7e: 64:5e:55:9b:b1:97:86:f7:cf:7b:db:d8:da:86:75: ba:60:89:83:52:e4:d0:27:8a:5a:50:07:f9:72:fc: ff:1d:00:a3:15:cc:76:a5:90:6b:47:04:e7:f3:12: 0c:d8:e5:f4:f0:fc:a1:ed:07:0e:07:44:74:86:4b: 9d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:47:E8:D8:4F:4F:17:34:1B:AC:2F:D3:35:23:21:9C:88:21:35:F9 X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e203131393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b50::/44 Signature Algorithm: sha256WithRSAEncryption 54:fb:93:db:38:63:29:14:c4:49:f7:c2:0c:69:a0:f4:33:56: c8:50:91:0e:b8:62:33:e6:21:74:b2:40:f1:09:5f:69:4a:0c: 58:58:26:d1:d0:36:04:e1:e3:de:2f:2b:c1:5f:00:32:5e:6a: 48:17:4d:90:15:7f:87:c4:08:67:ee:b8:26:ea:6e:92:77:83: 40:c4:99:53:d0:da:2d:c0:ef:e1:7c:1a:0d:11:74:a8:f9:f6: be:21:42:d1:18:e6:77:73:b5:52:11:e7:73:f0:a9:4a:8c:4a: f8:1b:cc:a4:8f:95:89:b1:ea:c4:6b:a8:28:20:f9:9a:32:b7: 55:4e:2a:a7:4a:c4:ea:53:90:73:99:ff:a6:2d:b4:6a:5d:53: 5f:2f:9a:b7:38:3d:62:1f:d5:b7:4f:7d:bb:e6:88:48:0e:95: ee:f4:1f:56:b6:b9:6c:cb:25:a2:a9:f4:b5:8d:56:7b:3b:1f: e1:f2:53:f0:db:5d:40:3e:95:65:a0:33:d2:cb:17:ea:4b:ed: c5:38:0c:1e:45:32:ed:ce:d7:03:8c:75:ee:da:1f:ca:24:66: ab:58:af:1a:07:00:68:4c:0a:48:3a:1c:b2:52:ee:5e:b9:10: 75:e3:37:63:cb:27:54:26:ff:b3:b4:1b:c8:f5:8d:5a:e0:54: 82:da:4f:69 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUPs3M9cO/s+w4n3z0vkuwbXfPPHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MjIyMzQ2NDFaFw0yNjA3MjEyMzUxNDFaMDMxMTAvBgNV BAMTKEY2NDdFOEQ4NEY0RjE3MzQxQkFDMkZEMzM1MjMyMTlDODgyMTM1RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG/zFdefXuC7WHv/rvCgKeS5Ja uII43HTBPDbFc8ziM4U5QhsRRST/+nVEJfi5GDVA3YDThYZznnvsYS04Ku5ErD7t Gl6mtfgrlN3UVh2Ev4GqgaxNpUH82vC70wepIL/m3eRZt0z194tR3YfdAllcRI8f WlPKx60mOGzj+kI149lVcixN4AfPAoDU9Dcv2vCHPOlTdT9WkpA+bwe+Q0Oix89a RdbShs2gBRl3dmeTNTmslybPF8YTPBO7LNQHdZNffmReVZuxl4b3z3vb2NqGdbpg iYNS5NAnilpQB/ly/P8dAKMVzHalkGtHBOfzEgzY5fTw/KHtBw4HRHSGS51vAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU9kfo2E9PFzQbrC/TNSMhnIghNfkwHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzNTMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNlMjAz MTMxMzkzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgYSg4tQMA0GCSqGSIb3DQEBCwUAA4IBAQBU +5PbOGMpFMRJ98IMaaD0M1bIUJEOuGIz5iF0skDxCV9pSgxYWCbR0DYE4ePeLyvB XwAyXmpIF02QFX+HxAhn7rgm6m6Sd4NAxJlT0NotwO/hfBoNEXSo+fa+IULRGOZ3 c7VSEedz8KlKjEr4G8ykj5WJserEa6goIPmaMrdVTiqnSsTqU5Bzmf+mLbRqXVNf L5q3OD1iH9W3T3275ohIDpXu9B9WtrlsyyWiqfS1jVZ7Ox/h8lPw211APpVloDPS yxfqS+3FOAweRTLtztcDjHXu2h/KJGarWK8aBwBoTApIOhyyUu5euRB14zdjyydU Jv+ztBvI9Y1a4FSC2k9p -----END CERTIFICATE-----Generated at Fri Aug 8 10:22:13 2025 by rpki-client