$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa File: 326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa (raw, json) Hash identifier: czNTneXyy99tFiiPXSIezg9TlLS/pM0kjDuMw6EEwZw= Subject key identifier: D2:05:AD:AD:36:C1:B2:1A:AE:FF:9F:06:33:0E:AD:5F:18:66:9B:E0 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 06C296D8DDB899C2404C6A70B025BDF81997C189 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa Signing time: Tue 24 Jun 2025 13:57:37 +0000 ROA not before: Tue 24 Jun 2025 13:52:37 +0000 ROA not after: Tue 23 Jun 2026 13:57:37 +0000 asID: 216296 IP address blocks: 2a06:1283:8b03::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 02 Jul 2025 05:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c2:96:d8:dd:b8:99:c2:40:4c:6a:70:b0:25:bd:f8:19:97:c1:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Jun 24 13:52:37 2025 GMT Not After : Jun 23 13:57:37 2026 GMT Subject: CN=D205ADAD36C1B21AAEFF9F06330EAD5F18669BE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1e:5b:ff:96:19:cb:c3:b4:3c:6c:d0:26:25: 08:1d:a4:be:03:ae:11:e6:df:2e:03:d1:28:52:e9: 93:3b:d3:14:7c:f7:7e:79:59:6c:eb:64:65:cf:87: 8c:21:c9:41:c0:1a:29:ed:4a:65:13:12:c3:99:4f: b7:d2:98:2b:43:90:43:94:f2:84:31:51:04:e7:73: 7b:26:c3:6b:68:61:0d:66:c2:df:14:8c:1e:96:c0: c4:64:77:be:1f:1a:bc:9b:75:c4:ce:ef:70:cd:a9: 18:64:81:a4:e6:a3:a1:d8:88:83:8c:e4:f1:d0:89: 88:4c:62:c0:f9:d7:cb:49:6d:5a:e4:35:bb:30:2a: b6:39:ea:f9:83:fb:90:f9:5d:a3:ce:67:af:e7:45: 95:80:a4:0a:aa:49:56:7e:2f:af:19:56:30:59:9c: f8:59:18:d0:83:99:e0:1c:39:60:1a:0e:ad:45:9f: 61:aa:bb:52:d3:c7:ce:1f:e5:c3:9f:05:91:fc:54: 05:f0:f8:1d:95:eb:31:3c:6c:0f:14:44:59:d3:32: 4f:c3:a4:44:5e:ca:2b:3a:04:d3:f9:39:89:8f:c7: f1:88:ec:0c:1e:6f:e6:ed:f6:1b:75:f0:2a:a8:2b: b1:05:1a:fd:97:1e:3d:ec:11:d0:72:e9:46:61:73: a6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:05:AD:AD:36:C1:B2:1A:AE:FF:9F:06:33:0E:AD:5F:18:66:9B:E0 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386230333a3a2f34382d313238203d3e20323136323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b03::/48 Signature Algorithm: sha256WithRSAEncryption 69:e2:81:06:af:f0:c8:86:d0:c5:80:ff:9b:c6:b3:23:cd:fc: 7a:54:5f:f0:94:36:7e:72:ca:a3:be:fd:f1:7c:73:ed:ad:7a: 8b:10:9e:8a:be:70:35:d1:62:32:d7:9e:53:ff:5c:5d:d8:7c: 80:16:0d:b5:26:83:7b:a4:7e:f5:6d:fc:8b:d9:44:7c:c4:99: 02:a5:f7:74:2d:2e:2b:4e:39:db:31:8b:30:08:ea:12:52:b9: ff:8f:66:53:4c:37:9f:13:da:ce:cb:1e:bd:3f:f6:06:47:29: 3b:0a:5d:99:8d:78:21:33:3a:e1:63:6c:20:9c:05:83:c9:39: 9a:36:97:13:f4:78:26:4a:a4:7b:70:e2:46:00:7d:c2:59:b5: f2:40:2f:f4:87:b8:bb:3a:59:6f:35:39:c7:7c:6d:2d:2f:05: 0f:4b:1c:22:63:88:a1:fa:21:57:be:14:27:1e:98:11:5d:4e: 96:c6:1f:b4:e3:82:b7:4c:66:39:3d:62:0d:b6:d6:de:54:26: cd:cb:5f:4d:46:aa:61:51:91:66:2b:84:33:0d:a8:d6:0e:e5: 8b:a1:ae:96:d3:bf:4c:bd:67:30:b1:36:41:45:14:1c:48:ab: a4:3a:a8:e5:b6:09:01:da:4e:1d:19:16:2e:3b:78:d4:68:9d: 7e:c6:13:33 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUBsKW2N24mcJATGpwsCW9+BmXwYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNTA2MjQxMzUyMzdaFw0yNjA2MjMxMzU3MzdaMDMxMTAvBgNV BAMTKEQyMDVBREFEMzZDMUIyMUFBRUZGOUYwNjMzMEVBRDVGMTg2NjlCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPHlv/lhnLw7Q8bNAmJQgdpL4D rhHm3y4D0ShS6ZM70xR89355WWzrZGXPh4whyUHAGintSmUTEsOZT7fSmCtDkEOU 8oQxUQTnc3smw2toYQ1mwt8UjB6WwMRkd74fGrybdcTO73DNqRhkgaTmo6HYiIOM 5PHQiYhMYsD518tJbVrkNbswKrY56vmD+5D5XaPOZ6/nRZWApAqqSVZ+L68ZVjBZ nPhZGNCDmeAcOWAaDq1Fn2Gqu1LTx84f5cOfBZH8VAXw+B2V6zE8bA8URFnTMk/D pEReyis6BNP5OYmPx/GI7Aweb+bt9ht18CqoK7EFGv2XHj3sEdBy6UZhc6ZVAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQU0gWtrTbBshqu/58GMw6tXxhmm+AwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDMzM2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzYzMjM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiwMwDQYJKoZIhvcNAQELBQADggEB AGnigQav8MiG0MWA/5vGsyPN/HpUX/CUNn5yyqO+/fF8c+2teosQnoq+cDXRYjLX nlP/XF3YfIAWDbUmg3ukfvVt/IvZRHzEmQKl93QtLitOOdsxizAI6hJSuf+PZlNM N58T2s7LHr0/9gZHKTsKXZmNeCEzOuFjbCCcBYPJOZo2lxP0eCZKpHtw4kYAfcJZ tfJAL/SHuLs6WW81Ocd8bS0vBQ9LHCJjiKH6IVe+FCcemBFdTpbGH7TjgrdMZjk9 Yg221t5UJs3LX01GqmFRkWYrhDMNqNYO5YuhrpbTv0y9ZzCxNkFFFBxIq6Q6qOW2 CQHaTh0ZFi47eNRonX7GEzM= -----END CERTIFICATE-----Generated at Tue Jul 1 21:30:52 2025 by rpki-client