$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa File: 326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa (raw, json) Hash identifier: VFCaT5gWrcJkaWXTyEtArHJX8FDqDPtqQh1zCLlvdkg= Subject key identifier: 2E:F7:C8:0B:AA:DB:C3:DA:C1:95:B7:58:62:0B:AB:B6:3C:E1:1C:94 Certificate issuer: /CN=CF1D094BB231C3433115D5C53880889E2E701056 Certificate serial: 1D90D45837A325B6BAC17961651FFE29CB94DA1C Authority key identifier: CF:1D:09:4B:B2:31:C3:43:31:15:D5:C5:38:80:88:9E:2E:70:10:56 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa Signing time: Thu 21 Aug 2025 11:23:58 +0000 ROA not before: Thu 21 Aug 2025 11:18:58 +0000 ROA not after: Thu 20 Aug 2026 11:23:58 +0000 asID: 213413 IP address blocks: 2a0b:4e07:a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.crl rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:90:d4:58:37:a3:25:b6:ba:c1:79:61:65:1f:fe:29:cb:94:da:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF1D094BB231C3433115D5C53880889E2E701056 Validity Not Before: Aug 21 11:18:58 2025 GMT Not After : Aug 20 11:23:58 2026 GMT Subject: CN=2EF7C80BAADBC3DAC195B758620BABB63CE11C94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:06:f7:60:70:f4:81:d2:27:8e:83:6a:2c:8c: e9:95:13:0d:0b:10:b6:58:dc:91:bc:7a:93:7e:e3: 04:a0:c1:a2:54:2b:3e:27:40:66:f4:7d:c2:2a:d7: aa:bd:c2:6a:af:c7:01:e0:c3:14:f5:4d:d7:67:9a: 6d:e8:ff:5e:9f:0a:08:3a:8b:be:09:09:e2:1d:3b: 3f:c7:ca:5b:a3:dd:26:b6:bb:de:8e:67:c7:a3:7d: b7:a8:99:21:e8:bc:a9:cf:16:d9:76:cb:dd:71:71: ec:d1:46:f0:03:68:97:89:c1:fe:54:12:59:ce:2c: b8:da:db:78:73:00:b8:7e:1e:b9:56:c1:85:aa:0f: c0:e0:27:d5:e4:2f:40:d1:67:06:29:1c:07:8d:e9: 65:7e:c8:f6:c4:97:7b:7b:27:84:f7:df:c8:5c:b9: c8:1a:c0:54:11:03:71:43:9b:f8:7d:3d:cc:05:c8: d0:77:08:82:d3:35:41:f3:87:c8:82:6c:71:b6:7e: 1b:15:1f:5e:f8:64:3d:95:93:01:bf:4e:61:1f:1f: 89:f9:d3:ad:ea:d7:7a:86:43:15:b8:98:e7:06:60: 60:30:c3:f6:97:0d:28:b4:62:44:81:6c:87:7e:e8: e3:f7:46:44:90:f3:7c:04:16:b0:dd:2a:24:21:36: c6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F7:C8:0B:AA:DB:C3:DA:C1:95:B7:58:62:0B:AB:B6:3C:E1:1C:94 X509v3 Authority Key Identifier: keyid:CF:1D:09:4B:B2:31:C3:43:31:15:D5:C5:38:80:88:9E:2E:70:10:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6138303a3a2f34382d3438203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a80::/48 Signature Algorithm: sha256WithRSAEncryption 6d:20:3e:0d:1b:8e:e3:a5:92:ef:90:7b:e7:f7:15:63:09:42: bb:18:73:b9:40:dd:3f:8f:c2:b2:43:fd:a5:37:63:00:fe:0c: 66:d5:15:b6:e2:53:84:dd:db:51:ed:f3:11:c9:16:d7:a6:d8: 94:51:76:14:c3:26:1b:6b:cc:72:cb:30:ef:e0:f1:75:ba:5e: 45:80:40:0b:e6:ff:9a:ee:68:9e:09:9b:33:f7:52:a3:bb:31: 94:4a:e0:b3:51:45:53:e3:82:0a:1b:ba:25:b9:f9:c0:66:6e: a0:68:10:84:12:e1:da:50:86:a2:5f:e7:8b:6b:16:c7:65:9f: 43:33:4d:fd:a0:bb:24:2a:75:c8:d7:af:46:a0:55:01:6a:12: c7:36:42:0e:f9:23:f4:6c:f1:c8:ef:4a:e9:07:1a:eb:99:59: 65:e2:70:ba:3f:96:16:7f:53:d6:cf:81:ad:22:2e:5a:fc:04: 6f:72:a5:44:e7:04:b3:2e:bb:91:43:f3:18:4a:99:af:1f:9b: 9d:27:7e:28:07:86:6e:9f:7b:b1:19:b9:17:ba:bf:52:e8:88: d0:45:6f:4f:02:d9:b0:d9:96:e7:63:10:ef:51:b8:c3:a8:44: 98:25:08:62:b4:c9:48:68:6e:e7:04:f0:3c:42:67:f9:dd:19: 74:4f:81:32 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUHZDUWDejJba6wXlhZR/+KcuU2hwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUy RTcwMTA1NjAeFw0yNTA4MjExMTE4NThaFw0yNjA4MjAxMTIzNThaMDMxMTAvBgNV BAMTKDJFRjdDODBCQUFEQkMzREFDMTk1Qjc1ODYyMEJBQkI2M0NFMTFDOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjBvdgcPSB0ieOg2osjOmVEw0L ELZY3JG8epN+4wSgwaJUKz4nQGb0fcIq16q9wmqvxwHgwxT1Tddnmm3o/16fCgg6 i74JCeIdOz/Hyluj3Sa2u96OZ8ejfbeomSHovKnPFtl2y91xcezRRvADaJeJwf5U ElnOLLja23hzALh+HrlWwYWqD8DgJ9XkL0DRZwYpHAeN6WV+yPbEl3t7J4T338hc ucgawFQRA3FDm/h9PcwFyNB3CILTNUHzh8iCbHG2fhsVH174ZD2VkwG/TmEfH4n5 063q13qGQxW4mOcGYGAww/aXDSi0YkSBbId+6OP3RkSQ83wEFrDdKiQhNsY3AgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQULvfIC6rbw9rBlbdYYgurtjzhHJQwHwYDVR0j BBgwFoAUzx0JS7Ixw0MxFdXFOICIni5wEFYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMtMzRkZi00ZjJjLTkyZmEtOGZlMWQwODNk MTVkLzIvQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUyRTcwMTA1Ni5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUyRTcw MTA1Ni5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMt MzRkZi00ZjJjLTkyZmEtOGZlMWQwODNkMTVkLzIvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTM4MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzMzNDMxMzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqC04HCoAwDQYJKoZIhvcNAQELBQADggEBAG0gPg0bjuOlku+Qe+f3 FWMJQrsYc7lA3T+PwrJD/aU3YwD+DGbVFbbiU4Td21Ht8xHJFtem2JRRdhTDJhtr zHLLMO/g8XW6XkWAQAvm/5ruaJ4JmzP3UqO7MZRK4LNRRVPjggobuiW5+cBmbqBo EIQS4dpQhqJf54trFsdln0MzTf2guyQqdcjXr0agVQFqEsc2Qg75I/Rs8cjvSukH GuuZWWXicLo/lhZ/U9bPga0iLlr8BG9ypUTnBLMuu5FD8xhKma8fm50nfigHhm6f e7EZuRe6v1LoiNBFb08C2bDZludjEO9RuMOoRJglCGK0yUhobucE8DxCZ/ndGXRP gTI= -----END CERTIFICATE-----Generated at Sat Aug 23 21:47:01 2025 by rpki-client