$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa File: 326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa (raw, json) Hash identifier: GbSyn/a7s2Tct/cl+IXObaOaKJfLlKE/P5lfI5qam+k= Subject key identifier: 88:85:B4:06:47:51:66:DE:CC:12:E5:CC:8E:99:42:9F:C2:02:4E:96 Certificate issuer: /CN=0BC6D225F0CE3E607712A9A98C4561912F3432B6 Certificate serial: 5472157872733D241CE308E63CA4A6C81C5822F4 Authority key identifier: 0B:C6:D2:25:F0:CE:3E:60:77:12:A9:A9:8C:45:61:91:2F:34:32:B6 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa Signing time: Wed 23 Jul 2025 20:06:33 +0000 ROA not before: Wed 23 Jul 2025 20:01:33 +0000 ROA not after: Wed 22 Jul 2026 20:06:33 +0000 asID: 151704 IP address blocks: 2a0b:4e07:1c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/0BC6D225F0CE3E607712A9A98C4561912F3432B6.crl rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/0BC6D225F0CE3E607712A9A98C4561912F3432B6.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 13:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:72:15:78:72:73:3d:24:1c:e3:08:e6:3c:a4:a6:c8:1c:58:22:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BC6D225F0CE3E607712A9A98C4561912F3432B6 Validity Not Before: Jul 23 20:01:33 2025 GMT Not After : Jul 22 20:06:33 2026 GMT Subject: CN=8885B406475166DECC12E5CC8E99429FC2024E96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:19:44:38:65:c7:68:4c:aa:da:a9:80:60:d6: 3d:1d:af:d9:1c:b3:47:69:ef:da:0f:35:c1:f3:af: e0:23:86:7c:03:84:2a:29:bd:3f:6c:59:11:95:bc: 51:3f:ca:e3:d2:4a:1f:00:b2:f9:10:44:d1:26:3d: b4:36:79:0e:3b:2a:96:0d:5f:bf:71:aa:8e:d7:19: a1:9e:24:f1:37:ea:54:07:d7:a6:38:0c:8b:10:43: ed:c1:a3:49:2f:de:fe:e3:9a:4d:53:88:42:b7:fc: 08:04:dd:49:8d:ea:4c:23:b9:5f:ee:38:8a:45:f1: 85:e3:02:5a:85:2d:01:0a:ea:67:03:d9:fa:86:1d: 99:fa:07:c4:b0:6c:da:d3:f1:c7:48:62:ee:6d:fb: 20:9c:21:a4:e2:e4:a8:0f:d1:a4:09:34:de:b0:29: ab:32:fe:e7:a0:8e:19:90:98:89:e5:96:ed:9c:ab: 17:67:a4:23:98:9e:9a:b7:ff:d5:83:83:5d:56:32: 01:cc:4b:6e:4f:96:a3:10:a0:99:f5:96:38:8e:52: 33:00:34:c5:90:91:dd:1b:a4:ec:18:f4:17:68:40: 34:fc:d2:db:c9:a2:fb:83:ba:1d:44:43:b6:2b:b4: 91:40:e5:4f:cb:71:82:01:40:bd:31:a8:26:96:d9: ae:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:85:B4:06:47:51:66:DE:CC:12:E5:CC:8E:99:42:9F:C2:02:4E:96 X509v3 Authority Key Identifier: keyid:0B:C6:D2:25:F0:CE:3E:60:77:12:A9:A9:8C:45:61:91:2F:34:32:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/0BC6D225F0CE3E607712A9A98C4561912F3432B6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:1c00::/48 Signature Algorithm: sha256WithRSAEncryption 2b:4c:ca:dc:c9:4d:41:38:79:34:12:43:29:6a:b0:30:94:3f: 75:0b:20:53:3b:b2:a3:bb:21:0c:98:4e:07:f0:4f:50:86:8b: c7:de:b8:10:ac:87:ca:cf:11:c3:6c:b6:8c:96:8e:0a:e3:4a: 06:b5:1c:4a:c8:2c:7b:b7:a9:eb:72:15:64:3b:1a:0e:c2:7f: ee:09:19:9f:ce:7a:09:1b:a0:90:a8:6f:10:94:f7:e7:75:d8: 66:ee:ea:75:95:a1:d9:80:69:fa:3d:e0:c9:f5:0d:57:ba:c9: 42:1b:f4:fc:a2:6b:90:2d:ba:8c:b3:ab:28:69:82:59:e1:6e: e0:01:e9:d8:c6:48:07:71:26:f0:60:16:17:8a:1b:40:1b:1e: 8d:15:77:4f:35:17:43:88:79:9f:89:9b:85:83:67:5e:53:3d: 6c:b0:09:82:1a:14:cd:7b:56:98:1f:ac:bd:c1:4b:24:36:69: c2:e8:e0:0b:81:a0:b4:3a:3e:0a:5b:a1:88:8f:32:77:cb:55: 23:c6:a1:33:56:38:89:27:c8:53:cc:42:90:7d:59:4d:93:b5: 70:06:79:b9:8b:f9:4b:6a:9b:9d:54:ba:43:9e:bb:bf:37:d4: 4c:01:95:76:29:b5:a1:f5:4d:d9:24:c0:04:ac:a0:72:49:3b: df:a6:3f:84 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUVHIVeHJzPSQc4wjmPKSmyBxYIvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJDNkQyMjVGMENFM0U2MDc3MTJBOUE5OEM0NTYxOTEy RjM0MzJCNjAeFw0yNTA3MjMyMDAxMzNaFw0yNjA3MjIyMDA2MzNaMDMxMTAvBgNV BAMTKDg4ODVCNDA2NDc1MTY2REVDQzEyRTVDQzhFOTk0MjlGQzIwMjRFOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYGUQ4ZcdoTKraqYBg1j0dr9kc s0dp79oPNcHzr+AjhnwDhCopvT9sWRGVvFE/yuPSSh8AsvkQRNEmPbQ2eQ47KpYN X79xqo7XGaGeJPE36lQH16Y4DIsQQ+3Bo0kv3v7jmk1TiEK3/AgE3UmN6kwjuV/u OIpF8YXjAlqFLQEK6mcD2fqGHZn6B8SwbNrT8cdIYu5t+yCcIaTi5KgP0aQJNN6w Kasy/uegjhmQmInllu2cqxdnpCOYnpq3/9WDg11WMgHMS25PlqMQoJn1ljiOUjMA NMWQkd0bpOwY9BdoQDT80tvJovuDuh1EQ7YrtJFA5U/LcYIBQL0xqCaW2a4hAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUiIW0BkdRZt7MEuXMjplCn8ICTpYwHwYDVR0j BBgwFoAUC8bSJfDOPmB3EqmpjEVhkS80MrYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAtMGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFm OWFmLzMvMEJDNkQyMjVGMENFM0U2MDc3MTJBOUE5OEM0NTYxOTEyRjM0MzJCNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvMEJDNkQyMjVGMENFM0U2MDc3MTJBOUE5OEM0NTYxOTEyRjM0 MzJCNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAt MGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFmOWFmLzMvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzMTYzMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTM3MzAzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoLTgccADANBgkqhkiG9w0BAQsFAAOCAQEAK0zK3MlNQTh5NBJD KWqwMJQ/dQsgUzuyo7shDJhOB/BPUIaLx964EKyHys8Rw2y2jJaOCuNKBrUcSsgs e7ep63IVZDsaDsJ/7gkZn856CRugkKhvEJT353XYZu7qdZWh2YBp+j3gyfUNV7rJ Qhv0/KJrkC26jLOrKGmCWeFu4AHp2MZIB3Em8GAWF4obQBsejRV3TzUXQ4h5n4mb hYNnXlM9bLAJghoUzXtWmB+svcFLJDZpwujgC4GgtDo+CluhiI8yd8tVI8ahM1Y4 iSfIU8xCkH1ZTZO1cAZ5uYv5S2qbnVS6Q567vzfUTAGVdim1ofVN2STABKygckk7 36Y/hA== -----END CERTIFICATE-----Generated at Sun Aug 24 04:08:45 2025 by rpki-client