$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa File: 326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa (raw, json) Hash identifier: MIvcm2K98lb9KDO/Md94OH42iP6tyrugKzMZDItmUtY= Subject key identifier: 05:31:89:6C:4E:1B:53:F0:65:AA:17:22:37:47:D2:99:9F:EF:57:78 Certificate issuer: /CN=CF1D094BB231C3433115D5C53880889E2E701056 Certificate serial: 1F8A170D252DF85C72CBF1207CBA9CE4C5834381 Authority key identifier: CF:1D:09:4B:B2:31:C3:43:31:15:D5:C5:38:80:88:9E:2E:70:10:56 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa Signing time: Thu 21 Aug 2025 11:31:59 +0000 ROA not before: Thu 21 Aug 2025 11:26:59 +0000 ROA not after: Thu 20 Aug 2026 11:31:59 +0000 asID: 213413 IP address blocks: 2a0b:4e07:a82::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.crl rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:8a:17:0d:25:2d:f8:5c:72:cb:f1:20:7c:ba:9c:e4:c5:83:43:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF1D094BB231C3433115D5C53880889E2E701056 Validity Not Before: Aug 21 11:26:59 2025 GMT Not After : Aug 20 11:31:59 2026 GMT Subject: CN=0531896C4E1B53F065AA17223747D2999FEF5778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:ee:dc:5e:eb:1b:cc:66:7a:15:6c:3f:76: e1:ec:4d:c5:bd:95:51:fe:9e:26:37:67:eb:0d:91: 37:4e:39:1f:43:33:76:15:49:6f:19:c3:a2:ea:f3: 2a:ee:be:e2:62:89:6d:92:03:ae:ab:ef:53:96:54: a8:e3:3c:8c:3f:3a:ef:f3:12:bd:90:c4:03:68:62: cf:b9:5d:7b:f0:83:01:f0:ec:e3:46:d0:6a:e2:9e: c2:ad:27:d1:e6:95:10:3f:dd:dc:9f:56:b7:3c:93: 64:16:41:1d:fc:34:69:af:a7:be:bc:f9:82:fa:c1: aa:7e:95:ba:d3:a1:95:4e:db:24:b6:7c:7d:f5:28: a4:8a:71:5d:64:66:3d:fe:88:d2:ad:42:b2:fc:2e: b8:0a:5d:22:c2:c4:65:b9:c8:b9:d1:9d:f4:6f:93: aa:19:48:23:f1:d5:5c:a6:5a:56:2e:c9:c1:ae:e9: 66:52:17:0c:ae:83:5e:3c:07:c9:f0:37:f2:b8:81: f5:79:d2:14:66:55:56:ee:27:89:53:40:0f:d0:f3: ba:d1:40:9c:7b:97:06:b4:4f:4b:09:b8:ba:b0:23: ae:09:4a:7e:cf:46:c0:8f:ca:ae:08:ff:68:fe:83: 83:41:62:1a:70:1d:ba:73:55:d4:95:d1:51:ef:ce: ba:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:31:89:6C:4E:1B:53:F0:65:AA:17:22:37:47:D2:99:9F:EF:57:78 X509v3 Authority Key Identifier: keyid:CF:1D:09:4B:B2:31:C3:43:31:15:D5:C5:38:80:88:9E:2E:70:10:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/CF1D094BB231C3433115D5C53880889E2E701056.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/CF1D094BB231C3433115D5C53880889E2E701056.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/2/326130623a346530373a6138323a3a2f34382d3438203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a82::/48 Signature Algorithm: sha256WithRSAEncryption a8:36:b5:95:1d:13:df:32:bf:02:75:e6:98:38:44:e7:0d:ba: ce:50:4f:30:3b:29:30:09:3c:2b:e5:d6:3e:92:9d:59:b8:8e: 49:0f:7a:77:f7:69:61:da:37:d5:aa:8d:f8:ae:c4:ec:98:28: c2:03:79:af:b4:47:18:79:dd:36:68:a2:a4:a5:ea:97:1a:7c: e6:24:05:1b:5a:80:b3:29:f2:03:92:08:8b:8e:39:aa:9d:9c: c7:86:84:f2:56:2e:81:45:06:f3:be:6d:9c:32:05:18:f3:6d: 95:92:8c:0e:de:b3:49:58:cd:c6:ea:e0:4a:fa:bf:c8:a9:ba: dd:f4:10:38:2b:ad:fd:fb:40:c3:87:50:29:b0:7a:1a:7c:19: 1a:01:41:bc:55:72:59:6a:ef:ff:e5:58:e8:8d:2d:a5:c4:f6: 25:5a:c7:60:cb:32:ac:f7:94:ed:2b:de:3b:d7:5b:d4:72:9b: b3:df:70:fd:22:32:53:5f:65:f4:12:8f:b9:75:cf:5f:a2:cf: 8a:9d:6a:d8:82:42:90:5c:92:2a:55:52:5c:28:51:1f:60:07: 53:38:d8:16:35:ec:b4:d6:c8:15:f3:93:e5:de:47:19:50:a3: 3d:09:e3:b0:18:c9:78:7d:16:9f:44:dc:7d:f3:9d:24:bd:0e: 89:45:d0:50 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUH4oXDSUt+Fxyy/EgfLqc5MWDQ4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUy RTcwMTA1NjAeFw0yNTA4MjExMTI2NTlaFw0yNjA4MjAxMTMxNTlaMDMxMTAvBgNV BAMTKDA1MzE4OTZDNEUxQjUzRjA2NUFBMTcyMjM3NDdEMjk5OUZFRjU3NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/oO7cXusbzGZ6FWw/duHsTcW9 lVH+niY3Z+sNkTdOOR9DM3YVSW8Zw6Lq8yruvuJiiW2SA66r71OWVKjjPIw/Ou/z Er2QxANoYs+5XXvwgwHw7ONG0GrinsKtJ9HmlRA/3dyfVrc8k2QWQR38NGmvp768 +YL6wap+lbrToZVO2yS2fH31KKSKcV1kZj3+iNKtQrL8LrgKXSLCxGW5yLnRnfRv k6oZSCPx1VymWlYuycGu6WZSFwyug148B8nwN/K4gfV50hRmVVbuJ4lTQA/Q87rR QJx7lwa0T0sJuLqwI64JSn7PRsCPyq4I/2j+g4NBYhpwHbpzVdSV0VHvzroDAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUBTGJbE4bU/BlqhciN0fSmZ/vV3gwHwYDVR0j BBgwFoAUzx0JS7Ixw0MxFdXFOICIni5wEFYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMtMzRkZi00ZjJjLTkyZmEtOGZlMWQwODNk MTVkLzIvQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUyRTcwMTA1Ni5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQ0YxRDA5NEJCMjMxQzM0MzMxMTVENUM1Mzg4MDg4OUUyRTcw MTA1Ni5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMt MzRkZi00ZjJjLTkyZmEtOGZlMWQwODNkMTVkLzIvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MTM4MzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzMzNDMxMzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqC04HCoIwDQYJKoZIhvcNAQELBQADggEBAKg2tZUdE98yvwJ15pg4 ROcNus5QTzA7KTAJPCvl1j6SnVm4jkkPenf3aWHaN9WqjfiuxOyYKMIDea+0Rxh5 3TZooqSl6pcafOYkBRtagLMp8gOSCIuOOaqdnMeGhPJWLoFFBvO+bZwyBRjzbZWS jA7es0lYzcbq4Er6v8iput30EDgrrf37QMOHUCmwehp8GRoBQbxVcllq7//lWOiN LaXE9iVax2DLMqz3lO0r3jvXW9Rym7PfcP0iMlNfZfQSj7l1z1+iz4qdatiCQpBc kipVUlwoUR9gB1M42BY17LTWyBXzk+XeRxlQoz0J47AYyXh9Fp9E3H3znSS9DolF 0FA= -----END CERTIFICATE-----Generated at Sat Aug 23 21:42:44 2025 by rpki-client