$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e20323133343133.roa File: 326130363a313238333a386235303a3a2f34342d313238203d3e20323133343133.roa (raw, json) Hash identifier: dOOOW/84MfRn0FlaAgKIZlDC6z44Kx+QMeFNOWgEBPc= Subject key identifier: 2C:24:61:78:73:01:6F:6A:C0:16:7D:CD:50:08:AA:99:20:AB:87:2D Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 05E51E2F3809AAB130B6324679441E391F446830 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e20323133343133.roa Signing time: Tue 22 Jul 2025 23:52:05 +0000 ROA not before: Tue 22 Jul 2025 23:47:05 +0000 ROA not after: Tue 21 Jul 2026 23:52:05 +0000 asID: 213413 IP address blocks: 2a06:1283:8b50::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 07 Aug 2025 01:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e5:1e:2f:38:09:aa:b1:30:b6:32:46:79:44:1e:39:1f:44:68:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Jul 22 23:47:05 2025 GMT Not After : Jul 21 23:52:05 2026 GMT Subject: CN=2C24617873016F6AC0167DCD5008AA9920AB872D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:df:c9:30:1c:ad:33:db:9a:42:af:fd:77:e8: ff:ff:7c:7f:16:45:4e:ab:f2:8a:1f:8a:a2:73:b2: 8e:fd:a8:0d:9e:6d:6c:07:fe:db:f4:bd:90:71:d2: 34:08:5d:a4:2d:b2:63:86:99:ce:b8:24:da:d4:f2: 77:a3:48:38:a2:27:7b:62:ab:c0:de:14:ba:a5:d4: 00:49:e6:6c:9c:9d:d9:10:94:b2:c2:e7:75:36:55: 24:73:0c:6b:0f:6b:ec:fd:a6:91:ca:d7:30:7a:22: 0b:b8:af:3a:48:43:0b:27:0f:b5:28:15:a0:6a:bd: a7:c4:87:55:66:90:8f:99:07:39:65:9c:14:44:e5: f7:7b:b6:4c:4e:bd:72:3e:89:35:b1:ab:bb:53:f0: 9f:52:56:3b:f7:67:2f:a4:24:33:92:61:f9:2a:19: bd:1b:3a:18:bc:30:94:a5:ab:af:8c:17:72:3e:bb: 2d:f2:be:17:1b:c7:8e:53:53:0f:a6:58:6d:81:5b: 7d:f8:a7:e2:3d:e6:28:9f:e8:25:e7:6b:7d:3f:f2: 7e:d2:03:b6:3c:42:e1:0b:7b:3b:16:ed:98:22:9b: 53:b8:7b:a1:1a:07:21:1d:57:86:36:6b:b3:52:e4: 2e:6a:aa:61:bb:45:76:a3:9f:c0:0f:c2:94:ba:aa: 7b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:24:61:78:73:01:6F:6A:C0:16:7D:CD:50:08:AA:99:20:AB:87:2D X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a386235303a3a2f34342d313238203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b50::/44 Signature Algorithm: sha256WithRSAEncryption 2d:b9:ed:d1:b6:8f:03:12:45:f0:77:6f:37:2c:17:5d:08:3c: a0:69:ac:9b:a3:79:4c:73:9b:ff:de:a4:5f:ff:2e:90:1f:ca: 1d:7e:f7:b6:07:25:20:b9:cd:54:17:a9:ca:7b:e8:26:ae:fa: 6a:85:53:d8:55:5c:86:08:fe:3d:da:6d:38:4a:c0:35:94:00: 41:93:8c:c8:4a:f6:09:aa:03:d5:51:fe:77:23:b8:2c:91:aa: 37:75:74:73:0e:03:15:28:66:82:f8:50:12:97:7d:13:86:08: c9:a3:d6:25:3a:ea:bf:f3:18:26:39:f3:28:c7:d9:16:f8:1d: e6:29:3b:51:97:58:57:d3:4a:5a:eb:09:ed:88:3a:ca:1e:20: f4:69:64:38:af:5d:4d:7b:6c:33:b6:5f:82:22:e6:64:58:b0: be:99:0b:4e:f1:65:5b:57:2d:3a:41:51:76:72:81:51:92:e2: fa:0a:2b:eb:cb:7a:8e:1f:11:da:4f:30:2c:ae:43:e2:72:cf: ba:8b:d7:d2:7d:bb:28:b0:57:00:a5:46:e6:d6:0a:46:2b:db: b8:e4:d6:5f:a8:8a:39:76:8a:90:ec:b0:0f:0c:ca:47:9c:92: e8:fb:ad:87:14:1d:77:b0:e5:e0:8d:47:ed:f7:fd:74:98:07: 95:3e:85:4e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUBeUeLzgJqrEwtjJGeUQeOR9EaDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTA3MjIyMzQ3MDVaFw0yNjA3MjEyMzUyMDVaMDMxMTAvBgNV BAMTKDJDMjQ2MTc4NzMwMTZGNkFDMDE2N0RDRDUwMDhBQTk5MjBBQjg3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCH38kwHK0z25pCr/136P//fH8W RU6r8oofiqJzso79qA2ebWwH/tv0vZBx0jQIXaQtsmOGmc64JNrU8nejSDiiJ3ti q8DeFLql1ABJ5mycndkQlLLC53U2VSRzDGsPa+z9ppHK1zB6Igu4rzpIQwsnD7Uo FaBqvafEh1VmkI+ZBzllnBRE5fd7tkxOvXI+iTWxq7tT8J9SVjv3Zy+kJDOSYfkq Gb0bOhi8MJSlq6+MF3I+uy3yvhcbx45TUw+mWG2BW334p+I95iif6CXna30/8n7S A7Y8QuELezsW7Zgim1O4e6EaByEdV4Y2a7NS5C5qqmG7RXajn8APwpS6qnv/AgMB AAGjggKHMIICgzAdBgNVHQ4EFgQULCRheHMBb2rAFn3NUAiqmSCrhy0wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzNTMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNlMjAz MjMxMzMzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBhKDi1AwDQYJKoZIhvcNAQELBQADggEB AC257dG2jwMSRfB3bzcsF10IPKBprJujeUxzm//epF//LpAfyh1+97YHJSC5zVQX qcp76Cau+mqFU9hVXIYI/j3abThKwDWUAEGTjMhK9gmqA9VR/ncjuCyRqjd1dHMO AxUoZoL4UBKXfROGCMmj1iU66r/zGCY58yjH2Rb4HeYpO1GXWFfTSlrrCe2IOsoe IPRpZDivXU17bDO2X4Ii5mRYsL6ZC07xZVtXLTpBUXZygVGS4voKK+vLeo4fEdpP MCyuQ+Jyz7qL19J9uyiwVwClRubWCkYr27jk1l+oijl2ipDssA8Mykeckuj7rYcU HXew5eCNR+33/XSYB5U+hU4= -----END CERTIFICATE-----Generated at Wed Aug 6 10:10:04 2025 by rpki-client