$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930313a3a2f34382d3438203d3e20323035383338.roa File: 326130363a396634313a613930313a3a2f34382d3438203d3e20323035383338.roa (raw, json) Hash identifier: TZFInP0XSpkR7gzjfw2R3ov4SaV+J0Kzbqc0lAbOzbM= Subject key identifier: 1E:01:EA:53:FC:C6:05:F6:83:E7:75:8B:DD:A6:28:05:1F:B9:5D:A4 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 6B9AE67E31B8A3FC62D49C977E71444E4F8ACF82 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930313a3a2f34382d3438203d3e20323035383338.roa Signing time: Tue 05 Aug 2025 11:37:47 +0000 ROA not before: Tue 05 Aug 2025 11:32:47 +0000 ROA not after: Tue 04 Aug 2026 11:37:47 +0000 asID: 205838 IP address blocks: 2a06:9f41:a901::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 13:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:9a:e6:7e:31:b8:a3:fc:62:d4:9c:97:7e:71:44:4e:4f:8a:cf:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Aug 5 11:32:47 2025 GMT Not After : Aug 4 11:37:47 2026 GMT Subject: CN=1E01EA53FCC605F683E7758BDDA628051FB95DA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:60:34:a4:1a:0f:b8:a3:31:7e:b7:3e:ba:fb: b3:d2:21:a9:d1:57:70:e0:75:86:2c:dd:4f:8c:31: 76:d6:73:24:9e:d1:74:6f:06:ce:c4:8e:10:53:3c: ca:ce:d1:78:9a:c8:d2:75:0f:28:1b:05:a0:34:dc: e7:e8:d4:5e:39:78:ac:bf:0c:90:91:fd:1a:06:f8: bf:ac:bb:4c:a6:5c:9e:e8:d4:ac:3d:b1:b5:96:4c: 26:3c:80:f6:ae:e9:3f:dc:89:17:44:f7:11:2e:d6: 95:06:fa:98:c1:9c:80:cb:c2:b7:35:a6:71:21:66: 9e:2f:77:1f:8d:5d:79:5e:e1:30:7d:4f:c9:db:b5: 8c:96:f7:9e:64:53:f0:67:94:f8:36:d2:44:78:07: 63:a4:19:92:e7:5a:a5:39:c5:f0:86:9d:c5:07:28: 1c:ab:0b:2f:88:a2:a6:74:8d:f2:be:ea:32:0b:86: d7:b6:dc:bf:b9:b1:8b:01:e6:11:07:1f:11:7e:9e: d6:de:ad:57:19:2f:84:df:2b:aa:dc:b2:45:c2:da: 16:90:ed:ca:4b:d6:bc:e8:65:2f:a6:88:49:b7:9c: cb:25:6d:6a:5a:aa:af:50:d5:59:80:52:9f:32:0c: a4:41:f5:47:e3:42:4d:3f:23:36:62:fe:31:97:9d: 26:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:01:EA:53:FC:C6:05:F6:83:E7:75:8B:DD:A6:28:05:1F:B9:5D:A4 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930313a3a2f34382d3438203d3e20323035383338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:a901::/48 Signature Algorithm: sha256WithRSAEncryption 86:63:ef:b6:64:53:71:af:12:90:a1:23:2c:50:68:2b:4d:7d: 43:db:a1:4c:85:ca:20:8e:87:7f:04:41:90:54:02:73:67:5d: c4:b0:80:bb:9b:c3:4f:23:a3:2d:2e:a0:35:21:55:ea:c7:4b: 54:5c:ff:9e:96:db:9e:51:58:1e:ae:33:1d:dd:88:40:09:69: c7:e9:66:ba:9d:bc:87:45:ee:d2:e3:21:cb:bd:5f:c6:86:e3: fc:b5:2b:31:23:e8:bd:a9:f7:0c:7a:84:7e:df:46:b5:ff:4e: 53:82:90:6f:8d:66:0c:7b:3c:17:f6:68:d8:ff:74:f0:94:15: 8e:5c:91:19:48:ed:4e:15:e5:99:e4:5b:21:0a:94:cf:61:c8: 6f:75:68:b9:5e:18:64:3b:dd:f8:5e:54:82:1b:18:df:68:de: 8e:d2:8b:da:f3:03:bd:61:eb:7e:be:9d:ec:c6:46:2a:9e:b4: 59:7a:53:1c:f8:68:95:79:dc:70:1e:fd:c7:8c:43:3b:9d:e1: bb:04:e5:36:78:9f:b9:4d:f5:b4:fa:5b:b2:69:aa:19:01:5d: 22:b4:24:54:18:3c:82:e9:05:45:a0:40:ec:a6:67:fd:d1:2b: 1b:5c:59:cd:e3:6e:31:bc:57:0a:83:5d:7b:d2:dd:2d:00:c9: b8:74:f0:35 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUa5rmfjG4o/xi1JyXfnFETk+Kz4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNTA4MDUxMTMyNDdaFw0yNjA4MDQxMTM3NDdaMDMxMTAvBgNV BAMTKDFFMDFFQTUzRkNDNjA1RjY4M0U3NzU4QkREQTYyODA1MUZCOTVEQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkYDSkGg+4ozF+tz66+7PSIanR V3DgdYYs3U+MMXbWcySe0XRvBs7EjhBTPMrO0XiayNJ1DygbBaA03Ofo1F45eKy/ DJCR/RoG+L+su0ymXJ7o1Kw9sbWWTCY8gPau6T/ciRdE9xEu1pUG+pjBnIDLwrc1 pnEhZp4vdx+NXXle4TB9T8nbtYyW955kU/BnlPg20kR4B2OkGZLnWqU5xfCGncUH KByrCy+IoqZ0jfK+6jILhte23L+5sYsB5hEHHxF+ntberVcZL4TfK6rcskXC2haQ 7cpL1rzoZS+miEm3nMslbWpaqq9Q1VmAUp8yDKRB9UfjQk0/IzZi/jGXnSZTAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUHgHqU/zGBfaD53WL3aYoBR+5XaQwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2E2MTM5MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNTM4MzMzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGn0GpATANBgkqhkiG9w0BAQsFAAOCAQEAhmPvtmRTca8SkKEj LFBoK019Q9uhTIXKII6HfwRBkFQCc2ddxLCAu5vDTyOjLS6gNSFV6sdLVFz/npbb nlFYHq4zHd2IQAlpx+lmup28h0Xu0uMhy71fxobj/LUrMSPovan3DHqEft9Gtf9O U4KQb41mDHs8F/Zo2P908JQVjlyRGUjtThXlmeRbIQqUz2HIb3VouV4YZDvd+F5U ghsY32jejtKL2vMDvWHrfr6d7MZGKp60WXpTHPholXnccB79x4xDO53huwTlNnif uU31tPpbsmmqGQFdIrQkVBg8gukFRaBA7KZn/dErG1xZzeNuMbxXCoNde9LdLQDJ uHTwNQ== -----END CERTIFICATE-----Generated at Sun Aug 24 04:28:41 2025 by rpki-client