$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa File: 326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa (raw, json) Hash identifier: WZbE39zwUQ0Jgmh+809HahoOOJ4+2oIktysoW6BrxA8= Subject key identifier: 78:46:FE:8B:BF:C8:E5:59:E1:E6:8E:2A:74:04:A5:2F:17:C9:24:BC Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 5705C2C75E9316AD1E08C1C1FF091361FDE392A5 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa Signing time: Sun 08 Jun 2025 17:13:02 +0000 ROA not before: Sun 08 Jun 2025 17:08:02 +0000 ROA not after: Sun 07 Jun 2026 17:13:02 +0000 asID: 216052 IP address blocks: 2a06:1283:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 01:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:05:c2:c7:5e:93:16:ad:1e:08:c1:c1:ff:09:13:61:fd:e3:92:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Jun 8 17:08:02 2025 GMT Not After : Jun 7 17:13:02 2026 GMT Subject: CN=7846FE8BBFC8E559E1E68E2A7404A52F17C924BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e9:d4:84:52:00:aa:92:e5:bd:ca:90:8e:9c: 00:3c:5b:b5:37:21:f2:7d:39:86:fa:9a:84:ef:56: 9f:52:93:ea:81:c3:d0:9d:85:e1:f2:d0:ba:8c:04: 16:7a:f9:8b:af:6c:4d:06:b4:c4:a2:13:ff:f2:b9: 4f:03:66:6c:65:f4:21:da:8f:ee:30:58:ed:40:ab: 93:29:7d:3d:64:be:98:12:4a:23:5d:13:c7:4b:cf: b9:9c:bb:3a:b6:41:41:a3:6b:af:4e:40:0f:06:00: 91:26:2a:fe:97:33:6b:75:48:75:02:3b:ad:26:bb: 12:e8:bf:0d:c2:6c:2f:10:b7:eb:ef:46:61:35:d3: 8b:1e:b7:40:a4:d2:14:09:ed:08:51:bc:ee:0e:b4: 1c:e5:ab:53:0c:b8:b1:3f:87:5e:09:ff:f7:9c:e2: fa:91:f6:a7:c2:06:d1:c7:42:48:b8:98:69:88:df: 3b:90:29:41:7c:41:68:9c:6f:8b:f5:0e:27:ff:5d: 5a:4c:72:5c:73:31:c7:ea:90:fd:a3:5e:f4:a8:5d: e8:16:5a:8f:06:1a:c9:3e:d2:cd:6b:c7:6f:5d:e9: 4f:e0:a2:0b:0d:9b:64:e5:10:c2:a8:01:d5:46:cb: cf:15:3a:ed:5f:8b:94:0c:e6:ea:3e:f0:a8:68:79: 19:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:46:FE:8B:BF:C8:E5:59:E1:E6:8E:2A:74:04:A5:2F:17:C9:24:BC X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b100::/40 Signature Algorithm: sha256WithRSAEncryption 21:8f:e4:85:01:0e:42:61:63:dd:55:84:c2:20:aa:85:f5:e0: f4:58:4b:15:ab:28:8b:35:4f:e0:01:e9:9e:ba:6d:45:4f:c7: 51:be:42:fc:09:27:2f:2b:9c:80:3b:2c:77:0d:de:19:9b:f8: a2:2f:da:45:f4:1e:a5:2d:76:71:6b:05:87:dc:ae:ed:fd:13: 5b:72:ce:68:5f:90:cb:05:8e:72:a5:e3:aa:fd:15:38:f1:51: f2:59:4a:7d:01:1e:4a:7d:df:e2:ee:a6:36:21:e6:ae:e6:8d: 0e:7e:1e:65:9c:2f:a5:b8:9b:c4:38:ab:d5:da:49:6b:f2:43: 35:48:73:9c:1f:5a:b5:8d:16:5e:96:86:16:ce:82:73:17:d8: de:9e:56:fa:37:54:09:f1:fb:7c:94:b3:a4:47:2f:34:8e:d0: 22:86:8c:bc:23:dd:f9:40:46:e3:5c:f3:b8:ba:86:96:4d:a0: 70:c6:33:a8:30:9f:d8:9e:34:56:81:a4:5a:dd:2b:21:e1:ac: c0:8f:8f:c8:eb:ab:b8:77:b4:01:10:9e:f6:7d:65:48:4b:65: 0f:6f:95:2d:e1:4d:9b:c7:0a:0d:4e:a2:d3:7d:bf:1a:80:cb: a8:9e:89:2a:a7:ce:6f:4a:1d:53:f5:59:3a:5f:fd:2b:ad:9d: 40:e5:bb:de -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUVwXCx16TFq0eCMHB/wkTYf3jkqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNTA2MDgxNzA4MDJaFw0yNjA2MDcxNzEzMDJaMDMxMTAvBgNV BAMTKDc4NDZGRThCQkZDOEU1NTlFMUU2OEUyQTc0MDRBNTJGMTdDOTI0QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr6dSEUgCqkuW9ypCOnAA8W7U3 IfJ9OYb6moTvVp9Sk+qBw9CdheHy0LqMBBZ6+YuvbE0GtMSiE//yuU8DZmxl9CHa j+4wWO1Aq5MpfT1kvpgSSiNdE8dLz7mcuzq2QUGja69OQA8GAJEmKv6XM2t1SHUC O60muxLovw3CbC8Qt+vvRmE104set0Ck0hQJ7QhRvO4OtBzlq1MMuLE/h14J//ec 4vqR9qfCBtHHQki4mGmI3zuQKUF8QWicb4v1Dif/XVpMclxzMcfqkP2jXvSoXegW Wo8GGsk+0s1rx29d6U/gogsNm2TlEMKoAdVGy88VOu1fi5QM5uo+8KhoeRkPAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUeEb+i7/I5Vnh5o4qdASlLxfJJLwwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoOxMA0GCSqGSIb3DQEBCwUAA4IBAQAhj+SFAQ5CYWPdVYTC IKqF9eD0WEsVqyiLNU/gAemeum1FT8dRvkL8CScvK5yAOyx3Dd4Zm/iiL9pF9B6l LXZxawWH3K7t/RNbcs5oX5DLBY5ypeOq/RU48VHyWUp9AR5Kfd/i7qY2Ieau5o0O fh5lnC+luJvEOKvV2klr8kM1SHOcH1q1jRZeloYWzoJzF9jenlb6N1QJ8ft8lLOk Ry80jtAihoy8I935QEbjXPO4uoaWTaBwxjOoMJ/YnjRWgaRa3Ssh4azAj4/I66u4 d7QBEJ72fWVIS2UPb5Ut4U2bxwoNTqLTfb8agMuonokqp85vSh1T9Vk6X/0rrZ1A 5bve -----END CERTIFICATE-----Generated at Sun Jun 29 17:19:15 2025 by rpki-client