$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa File: 326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa (raw, json) Hash identifier: 8SLvsZe3VOP8V72yk+PKT72w8iUqmJpSKu2elDQ+WOg= Subject key identifier: 41:E2:0C:3D:E3:22:C6:4F:EA:80:F3:28:20:7B:5D:77:8F:F9:79:43 Certificate issuer: /CN=A816FDA8ADEC8085A8A348E698709DE583B219B5 Certificate serial: 1780B90F75DEDDB96D9D9D42BFE331B6C6F2B12B Authority key identifier: A8:16:FD:A8:AD:EC:80:85:A8:A3:48:E6:98:70:9D:E5:83:B2:19:B5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa Signing time: Wed 25 Jun 2025 22:01:31 +0000 ROA not before: Wed 25 Jun 2025 21:56:31 +0000 ROA not after: Wed 24 Jun 2026 22:01:31 +0000 asID: 216455 IP address blocks: 2a07:54c7:5999::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 20:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:80:b9:0f:75:de:dd:b9:6d:9d:9d:42:bf:e3:31:b6:c6:f2:b1:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A816FDA8ADEC8085A8A348E698709DE583B219B5 Validity Not Before: Jun 25 21:56:31 2025 GMT Not After : Jun 24 22:01:31 2026 GMT Subject: CN=41E20C3DE322C64FEA80F328207B5D778FF97943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b9:9b:41:8c:6e:3e:1a:67:80:86:cc:c2:75: 4a:9e:fa:34:6a:a6:2e:5c:68:af:dd:52:9b:b8:d5: 9c:44:2d:03:b8:5c:a5:d1:65:e6:3f:5f:5d:af:65: 93:00:b7:0a:79:2b:0e:82:05:70:19:98:7f:f0:fe: 70:34:38:ee:ff:90:a2:7f:72:ac:1a:70:d5:6c:48: 94:3b:c7:8d:ea:e6:53:5f:97:f8:c5:ce:ce:09:9c: d4:e1:6d:6f:3d:9c:00:fb:18:65:a3:b6:1b:09:26: 8a:51:dc:1e:22:6f:5d:a6:2f:e4:3a:10:ba:43:46: b1:95:d8:5c:15:be:67:fd:fa:fb:b7:1e:a3:c9:fe: 42:a4:5b:c3:d6:2a:ea:30:24:80:0d:18:d8:fc:ef: 58:c2:8e:f3:a1:46:d2:b7:41:84:29:7c:4e:cd:aa: f9:9e:7b:0e:fb:b3:51:ef:f5:91:cc:15:fd:fa:ef: 4e:43:86:f9:aa:08:75:ca:84:9d:82:c3:fb:82:87: 65:e3:2b:f8:c6:72:5c:b0:d8:db:6d:2e:0a:48:2d: cb:07:59:1e:8e:6f:cb:ff:6f:17:86:fb:52:6c:5e: 5d:63:7d:65:1b:7e:8c:16:12:28:a1:51:ab:50:13: a7:2a:8f:99:3c:da:7f:a1:06:47:3c:2c:78:4d:c0: b1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E2:0C:3D:E3:22:C6:4F:EA:80:F3:28:20:7B:5D:77:8F:F9:79:43 X509v3 Authority Key Identifier: keyid:A8:16:FD:A8:AD:EC:80:85:A8:A3:48:E6:98:70:9D:E5:83:B2:19:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:5999::/48 Signature Algorithm: sha256WithRSAEncryption 6a:af:dd:f6:77:01:1c:a7:99:22:ef:a1:50:73:db:8c:f0:d9: af:39:60:f3:fb:3f:d5:60:0c:6f:b0:0c:14:7f:a1:d7:37:5c: 28:2e:f1:4f:ce:bb:48:a2:1c:0c:b5:df:e6:47:d9:b2:91:b8: 14:72:d4:f3:7b:13:58:25:83:f5:8e:15:a5:81:5a:e5:4e:a0: 97:49:d3:82:c7:bc:4e:e2:e7:88:c3:37:aa:ee:26:09:66:b7: 5b:f2:8a:f5:e2:88:5e:ea:98:af:1c:77:24:45:2b:b6:1a:25: f6:48:d5:44:d0:a3:a9:0a:ff:bf:47:aa:31:1d:20:a7:91:e3: d8:55:c9:3d:c3:e1:1f:57:af:44:ec:b7:ba:72:f1:61:08:64: 87:23:2c:6d:72:a7:e9:55:df:de:99:74:39:ca:e0:92:48:d0: 28:f0:5b:7d:52:34:b3:b5:86:01:79:80:14:75:2f:8c:05:13: 50:4c:ae:dc:bc:4c:38:b2:8b:d2:81:3a:e2:67:e2:77:37:fc: cc:ae:43:e5:7c:30:76:80:ba:8e:e1:79:b5:91:3e:0b:cc:19: a8:47:d1:a3:5f:8e:91:11:00:c7:2d:61:58:90:43:dd:56:5a: c2:72:8e:6a:f3:93:22:55:82:e3:6c:0d:2d:6c:91:42:40:45: f6:e6:10:07 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUF4C5D3Xe3bltnZ1Cv+MxtsbysSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTgxNkZEQThBREVDODA4NUE4QTM0OEU2OTg3MDlERTU4 M0IyMTlCNTAeFw0yNTA2MjUyMTU2MzFaFw0yNjA2MjQyMjAxMzFaMDMxMTAvBgNV BAMTKDQxRTIwQzNERTMyMkM2NEZFQTgwRjMyODIwN0I1RDc3OEZGOTc5NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDquZtBjG4+GmeAhszCdUqe+jRq pi5caK/dUpu41ZxELQO4XKXRZeY/X12vZZMAtwp5Kw6CBXAZmH/w/nA0OO7/kKJ/ cqwacNVsSJQ7x43q5lNfl/jFzs4JnNThbW89nAD7GGWjthsJJopR3B4ib12mL+Q6 ELpDRrGV2FwVvmf9+vu3HqPJ/kKkW8PWKuowJIANGNj871jCjvOhRtK3QYQpfE7N qvmeew77s1Hv9ZHMFf36705DhvmqCHXKhJ2Cw/uCh2XjK/jGclyw2NttLgpILcsH WR6Ob8v/bxeG+1JsXl1jfWUbfowWEiihUatQE6cqj5k82n+hBkc8LHhNwLGHAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUQeIMPeMixk/qgPMoIHtdd4/5eUMwHwYDVR0j BBgwFoAUqBb9qK3sgIWoo0jmmHCd5YOyGbUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzAvQTgxNkZEQThBREVDODA4NUE4QTM0OEU2OTg3MDlERTU4M0IyMTlCNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9BODE2RkRBOEFERUM4MDg1QThBMzQ4RTY5 ODcwOURFNTgzQjIxOUI1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODIxYzQ3ZS1lODE1LTQyZGUtYmQ2Yi0xOWEyZTFhZTU2NGEvMC8zMjYxMzAz NzNhMzUzNDYzMzczYTM1MzkzOTM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM2MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUx1mZMA0GCSqGSIb3DQEBCwUAA4IBAQBq r932dwEcp5ki76FQc9uM8NmvOWDz+z/VYAxvsAwUf6HXN1woLvFPzrtIohwMtd/m R9mykbgUctTzexNYJYP1jhWlgVrlTqCXSdOCx7xO4ueIwzeq7iYJZrdb8or14ohe 6pivHHckRSu2GiX2SNVE0KOpCv+/R6oxHSCnkePYVck9w+EfV69E7Le6cvFhCGSH IyxtcqfpVd/emXQ5yuCSSNAo8Ft9UjSztYYBeYAUdS+MBRNQTK7cvEw4sovSgTri Z+J3N/zMrkPlfDB2gLqO4Xm1kT4LzBmoR9GjX46REQDHLWFYkEPdVlrCco5q85Mi VYLjbA0tbJFCQEX25hAH -----END CERTIFICATE-----Generated at Mon Jun 30 13:54:07 2025 by rpki-client