$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/3/326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa File: 326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa (raw, json) Hash identifier: e0ZUE2ihMqIcVzaW4KaZGqefPbQ9GLKeZeIru7vw7OQ= Subject key identifier: 4D:E3:CB:50:BF:0B:F1:71:B6:3D:0C:48:92:DA:FC:F5:EF:BB:E5:B9 Certificate issuer: /CN=5C76E64D72F3F95E468F23BEC45DC2F2FF76938B Certificate serial: 2FD8458C0148DE7B8FCE65A3DAB1D38E7B0B8A73 Authority key identifier: 5C:76:E6:4D:72:F3:F9:5E:46:8F:23:BE:C4:5D:C2:F2:FF:76:93:8B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/5C76E64D72F3F95E468F23BEC45DC2F2FF76938B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/3/326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa Signing time: Mon 16 Jun 2025 16:57:14 +0000 ROA not before: Mon 16 Jun 2025 16:52:14 +0000 ROA not after: Mon 15 Jun 2026 16:57:14 +0000 asID: 214723 IP address blocks: 2a06:9f41:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/3/5C76E64D72F3F95E468F23BEC45DC2F2FF76938B.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/3/5C76E64D72F3F95E468F23BEC45DC2F2FF76938B.mft rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/5C76E64D72F3F95E468F23BEC45DC2F2FF76938B.cer rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 18 Jun 2025 22:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d8:45:8c:01:48:de:7b:8f:ce:65:a3:da:b1:d3:8e:7b:0b:8a:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C76E64D72F3F95E468F23BEC45DC2F2FF76938B Validity Not Before: Jun 16 16:52:14 2025 GMT Not After : Jun 15 16:57:14 2026 GMT Subject: CN=4DE3CB50BF0BF171B63D0C4892DAFCF5EFBBE5B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4c:bc:c9:4f:6a:7b:15:01:be:59:e3:01:71: 6d:3d:d6:b5:68:0c:5e:09:96:3e:ca:50:48:cf:b9: a6:b0:62:fe:9f:ca:3a:15:6b:ff:93:75:54:b3:98: 53:4f:0f:4b:5a:24:db:d8:cd:09:b7:62:5a:8c:b5: a8:1f:b2:07:7a:48:1b:a8:65:2c:73:fb:6a:b9:74: 66:db:4c:7b:2c:20:fd:2c:e0:b9:71:83:7b:be:90: be:cb:ac:30:cf:bf:ce:00:d0:1f:b4:14:d5:cd:06: db:d0:ca:d2:12:b4:2b:56:85:35:77:e5:02:b5:5b: a2:0b:6c:6a:24:00:42:4e:7c:d1:6c:28:41:72:bc: 6a:ed:e1:39:81:f8:75:35:c3:75:7f:4c:02:d4:55: 48:f6:8c:dd:4a:0f:68:5a:cb:72:58:5c:fd:db:e0: bf:f7:71:bd:f1:66:eb:c8:55:8b:55:53:90:3e:ac: b3:05:86:0a:c2:48:3e:5e:96:b7:03:40:44:3c:5d: be:ca:c2:29:d1:ec:2e:d5:c2:6a:9a:0e:d6:eb:1d: 5b:c6:6b:a4:e2:13:49:8a:f8:57:dd:57:e3:c9:15: 5b:e9:8e:bc:e0:3a:c0:ea:ff:53:c5:ad:95:7e:f4: f4:4d:d3:12:f7:3d:24:6e:c0:43:c1:5c:35:a1:20: 5f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E3:CB:50:BF:0B:F1:71:B6:3D:0C:48:92:DA:FC:F5:EF:BB:E5:B9 X509v3 Authority Key Identifier: keyid:5C:76:E6:4D:72:F3:F9:5E:46:8F:23:BE:C4:5D:C2:F2:FF:76:93:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/3/5C76E64D72F3F95E468F23BEC45DC2F2FF76938B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/5C76E64D72F3F95E468F23BEC45DC2F2FF76938B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/3/326130363a396634313a3130303a3a2f34302d3430203d3e20323134373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:100::/40 Signature Algorithm: sha256WithRSAEncryption 34:70:17:05:19:07:64:ec:37:38:25:36:ef:cf:f1:8c:70:e9: a3:8e:36:10:c3:83:e9:7c:ab:4c:3c:66:e8:60:39:6c:00:34: 83:04:d1:7c:b9:86:36:06:65:ea:e3:6f:d1:33:88:f6:a9:1f: ec:10:b7:8f:0e:77:97:45:ea:72:9d:bb:21:ca:0d:7a:0d:8f: e7:b1:19:a8:20:a2:c5:3c:5d:6b:d0:61:23:02:e7:2b:da:bf: e6:9c:1e:06:3f:18:99:74:72:0a:ed:b5:94:8e:54:0b:ff:c4: d4:27:cb:d9:ec:5f:c1:82:b1:b9:f9:5b:e8:b3:ce:23:84:17: 70:96:95:4d:ee:c4:c7:75:b6:7e:45:ec:ad:6d:c1:40:8d:09: d6:bc:11:1f:9d:7c:63:bf:3f:2a:a4:4e:bf:61:47:6c:56:94: b9:fd:bb:bc:f0:bd:2b:c5:c7:c0:b7:3d:fc:06:76:48:53:6c: 07:54:ce:28:84:47:2f:c4:ec:74:f6:24:57:77:db:21:4e:4a: 56:46:e2:f5:ec:7c:cd:12:91:90:1a:ca:0e:5a:b4:07:59:80: 6c:49:40:e3:bf:6c:3c:87:ba:3c:57:ce:95:76:f0:45:ff:ee: 16:ba:18:c5:a1:37:b6:59:5c:0d:9d:41:42:f5:25:33:14:1b: 1a:24:84:40 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUL9hFjAFI3nuPzmWj2rHTjnsLinMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM3NkU2NEQ3MkYzRjk1RTQ2OEYyM0JFQzQ1REMyRjJG Rjc2OTM4QjAeFw0yNTA2MTYxNjUyMTRaFw0yNjA2MTUxNjU3MTRaMDMxMTAvBgNV BAMTKDRERTNDQjUwQkYwQkYxNzFCNjNEMEM0ODkyREFGQ0Y1RUZCQkU1QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMTLzJT2p7FQG+WeMBcW091rVo DF4Jlj7KUEjPuaawYv6fyjoVa/+TdVSzmFNPD0taJNvYzQm3YlqMtagfsgd6SBuo ZSxz+2q5dGbbTHssIP0s4Llxg3u+kL7LrDDPv84A0B+0FNXNBtvQytIStCtWhTV3 5QK1W6ILbGokAEJOfNFsKEFyvGrt4TmB+HU1w3V/TALUVUj2jN1KD2hay3JYXP3b 4L/3cb3xZuvIVYtVU5A+rLMFhgrCSD5elrcDQEQ8Xb7KwinR7C7VwmqaDtbrHVvG a6TiE0mK+FfdV+PJFVvpjrzgOsDq/1PFrZV+9PRN0xL3PSRuwEPBXDWhIF9BAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUTePLUL8L8XG2PQxIktr89e+75bkwHwYDVR0j BBgwFoAUXHbmTXLz+V5GjyO+xF3C8v92k4swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlNDU5MmUtMjNjMC00Y2NjLTk0ZGEtNmM5NTgwN2Y4 M2U3LzMvNUM3NkU2NEQ3MkYzRjk1RTQ2OEYyM0JFQzQ1REMyRjJGRjc2OTM4Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMDExOTQ0ZC03ZWIzLTRm NjMtYTE1OS1jZmYwMmMwMjZhYmYvMS81Qzc2RTY0RDcyRjNGOTVFNDY4RjIzQkVD NDVEQzJGMkZGNzY5MzhCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2U0NTkyZS0yM2MwLTRjY2MtOTRkYS02Yzk1ODA3ZjgzZTcvMy8zMjYxMzAz NjNhMzk2NjM0MzEzYTMxMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NDM3MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoGn0EBMA0GCSqGSIb3DQEBCwUAA4IBAQA0cBcF GQdk7Dc4JTbvz/GMcOmjjjYQw4PpfKtMPGboYDlsADSDBNF8uYY2BmXq42/RM4j2 qR/sELePDneXRepynbshyg16DY/nsRmoIKLFPF1r0GEjAucr2r/mnB4GPxiZdHIK 7bWUjlQL/8TUJ8vZ7F/BgrG5+Vvos84jhBdwlpVN7sTHdbZ+ReytbcFAjQnWvBEf nXxjvz8qpE6/YUdsVpS5/bu88L0rxcfAtz38BnZIU2wHVM4ohEcvxOx09iRXd9sh TkpWRuL17HzNEpGQGsoOWrQHWYBsSUDjv2w8h7o8V86VdvBF/+4WuhjFoTe2WVwN nUFC9SUzFBsaJIRA -----END CERTIFICATE-----Generated at Wed Jun 18 08:59:39 2025 by rpki-client