$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534373a666666663a3a2f34382d3438203d3e20323132333936.roa File: 326130623a396534373a666666663a3a2f34382d3438203d3e20323132333936.roa (raw, json) Hash identifier: 75MQYcrJ2fBMIggMxPD0oPJNZ5TBWMJfZ5gCQQu+izk= Subject key identifier: 6B:2B:F4:64:B1:D3:AC:01:57:45:D9:EE:E8:A9:F2:B7:FC:A7:0F:E5 Certificate issuer: /CN=B5F5EC5C567FD489BE73902862EBEE81CCDEE35C Certificate serial: 484825F0ABB4DA792B01A7164D17E6951037A5BF Authority key identifier: B5:F5:EC:5C:56:7F:D4:89:BE:73:90:28:62:EB:EE:81:CC:DE:E3:5C Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534373a666666663a3a2f34382d3438203d3e20323132333936.roa Signing time: Thu 14 Aug 2025 12:41:49 +0000 ROA not before: Thu 14 Aug 2025 12:36:49 +0000 ROA not after: Thu 13 Aug 2026 12:41:49 +0000 asID: 212396 IP address blocks: 2a0b:9e47:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 13:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:48:25:f0:ab:b4:da:79:2b:01:a7:16:4d:17:e6:95:10:37:a5:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5F5EC5C567FD489BE73902862EBEE81CCDEE35C Validity Not Before: Aug 14 12:36:49 2025 GMT Not After : Aug 13 12:41:49 2026 GMT Subject: CN=6B2BF464B1D3AC015745D9EEE8A9F2B7FCA70FE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:35:f3:db:71:c4:eb:b0:5d:06:4a:2b:d9: 2e:9a:ed:26:e7:0c:3d:b0:2c:48:f1:08:df:fd:84: 0d:3f:1f:9e:00:90:ac:e3:e9:34:44:8a:27:ac:0e: c8:e0:b4:2e:f4:81:5c:ce:bd:54:21:12:fd:ba:2a: 89:9f:cc:b6:e0:7a:3c:1f:0e:cd:1b:d7:42:47:87: fd:e8:41:22:1e:cf:75:15:6e:50:ff:5a:2b:ce:ca: 72:88:bf:be:2f:e9:6e:c7:c7:aa:84:dd:bf:77:ce: 31:fd:0e:35:fa:05:e1:71:66:95:b9:86:03:a2:77: ec:39:07:14:79:a6:32:7a:f1:16:5b:c8:ec:b4:0e: 89:1c:04:aa:b6:89:7e:aa:62:3d:8b:10:2e:dd:3c: 2c:05:06:1c:71:ed:76:2e:59:a7:6a:c8:ef:53:09: af:e4:09:8a:3f:08:f8:50:ae:7c:24:19:05:ff:4b: c8:b7:3e:0b:e9:dc:b0:6b:5b:da:99:65:f1:e6:25: cd:b1:b8:da:fc:5c:49:34:07:41:f9:7a:1d:c1:d6: 11:bc:77:91:03:02:41:b4:07:16:a7:c5:36:1e:43: 11:bb:f3:08:9b:3e:be:e9:58:30:42:03:32:69:e4: ae:44:54:4e:4f:21:54:f2:ac:06:30:94:49:3d:7e: 7a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2B:F4:64:B1:D3:AC:01:57:45:D9:EE:E8:A9:F2:B7:FC:A7:0F:E5 X509v3 Authority Key Identifier: keyid:B5:F5:EC:5C:56:7F:D4:89:BE:73:90:28:62:EB:EE:81:CC:DE:E3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534373a666666663a3a2f34382d3438203d3e20323132333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:9e47:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 97:03:0e:3c:aa:e2:2c:7c:9e:19:1e:32:00:7a:3f:71:c3:6c: 07:f0:84:f0:14:db:02:ef:37:4e:0e:38:d2:04:42:b6:81:32: 1a:3b:34:cb:b2:3e:fd:7a:75:ab:7d:64:fe:b8:a8:a8:2f:8e: 14:bf:6e:7b:94:00:54:34:c3:81:71:ab:55:be:5c:81:46:9c: 35:4d:10:03:68:7e:ad:3f:f2:01:d0:03:fc:1a:5e:bc:6e:c4: 9b:34:97:fd:67:fa:5b:8a:19:f4:0c:cc:d2:4a:c2:d4:07:f8: f4:b5:a2:32:0b:e1:8e:cd:84:be:43:d6:38:4b:b3:b7:6a:f0: 70:b6:2c:ac:4f:37:1c:3b:9a:06:4d:52:30:bb:27:61:97:af: 8b:5f:90:fa:5b:d6:01:7c:ac:ff:58:af:4a:a5:16:0c:f0:51: a8:9a:76:6a:1f:d7:30:95:3d:dc:95:eb:2b:4b:f8:63:ae:80: e4:7c:8a:89:8b:ed:c1:6d:6c:c5:e1:0b:9d:3e:5c:b7:3c:54: c9:0d:58:2e:8a:20:45:b9:b5:03:65:e0:31:68:10:4c:21:a8: b6:e6:0e:25:04:c9:cc:e9:5d:a7:b6:01:c2:b8:02:45:49:c3: bf:3a:a9:14:7d:c9:2b:04:ee:aa:d6:ba:92:83:9d:ba:dd:a9: fe:ea:94:2e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUSEgl8Ku02nkrAacWTRfmlRA3pb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFD Q0RFRTM1QzAeFw0yNTA4MTQxMjM2NDlaFw0yNjA4MTMxMjQxNDlaMDMxMTAvBgNV BAMTKDZCMkJGNDY0QjFEM0FDMDE1NzQ1RDlFRUU4QTlGMkI3RkNBNzBGRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RTXz23HE67BdBkor2S6a7Sbn DD2wLEjxCN/9hA0/H54AkKzj6TREiiesDsjgtC70gVzOvVQhEv26KomfzLbgejwf Ds0b10JHh/3oQSIez3UVblD/WivOynKIv74v6W7Hx6qE3b93zjH9DjX6BeFxZpW5 hgOid+w5BxR5pjJ68RZbyOy0DokcBKq2iX6qYj2LEC7dPCwFBhxx7XYuWadqyO9T Ca/kCYo/CPhQrnwkGQX/S8i3Pgvp3LBrW9qZZfHmJc2xuNr8XEk0B0H5eh3B1hG8 d5EDAkG0BxanxTYeQxG78wibPr7pWDBCAzJp5K5EVE5PIVTyrAYwlEk9fnrjAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUayv0ZLHTrAFXRdnu6Knyt/ynD+UwHwYDVR0j BBgwFoAUtfXsXFZ/1Im+c5AoYuvugcze41wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzUvQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFDQ0RFRTM1Qy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFDQ0RF RTM1Qy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjJjZjhiYTct Y2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdlOTUwLzUvMzI2MTMwNjIzYTM5NjUzNDM3 M2E2NjY2NjY2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMzMzkzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoLnkf//zANBgkqhkiG9w0BAQsFAAOCAQEAlwMOPKriLHyeGR4y AHo/ccNsB/CE8BTbAu83Tg440gRCtoEyGjs0y7I+/Xp1q31k/rioqC+OFL9ue5QA VDTDgXGrVb5cgUacNU0QA2h+rT/yAdAD/BpevG7EmzSX/Wf6W4oZ9AzM0krC1Af4 9LWiMgvhjs2EvkPWOEuzt2rwcLYsrE83HDuaBk1SMLsnYZevi1+Q+lvWAXys/1iv SqUWDPBRqJp2ah/XMJU93JXrK0v4Y66A5HyKiYvtwW1sxeELnT5ctzxUyQ1YLoog Rbm1A2XgMWgQTCGotuYOJQTJzOldp7YBwrgCRUnDvzqpFH3JKwTuqta6koOdut2p /uqULg== -----END CERTIFICATE-----Generated at Sun Aug 24 03:17:13 2025 by rpki-client