$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930343a3a2f34382d313238203d3e20323134373632.roa File: 326130363a313238333a383930343a3a2f34382d313238203d3e20323134373632.roa (raw, json) Hash identifier: NbESZTGbsnyViyuGLC+8sRHMyf8Ojiq0F9ioTriEM2E= Subject key identifier: EF:F8:DF:3A:CD:12:12:33:FA:7D:B9:53:48:CC:DA:EA:B0:6B:E4:AF Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 38A54280E5E6F5845B9F25D422F882A149914557 Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930343a3a2f34382d313238203d3e20323134373632.roa Signing time: Thu 16 Oct 2025 19:25:45 +0000 ROA not before: Thu 16 Oct 2025 19:20:45 +0000 ROA not after: Thu 15 Oct 2026 19:25:45 +0000 asID: 214762 IP address blocks: 2a06:1283:8904::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a5:42:80:e5:e6:f5:84:5b:9f:25:d4:22:f8:82:a1:49:91:45:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Oct 16 19:20:45 2025 GMT Not After : Oct 15 19:25:45 2026 GMT Subject: CN=EFF8DF3ACD121233FA7DB95348CCDAEAB06BE4AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:99:60:3c:6a:c4:09:05:8f:13:f2:a6:0d:6a: e2:c9:d4:f3:96:02:58:1e:70:12:79:49:c9:63:4a: d1:69:25:4b:58:59:3d:85:b3:d2:54:0a:f2:f6:f9: 46:ea:b2:dd:34:d9:77:f0:14:d0:a8:fe:b6:aa:cb: 39:d2:c4:95:14:b2:40:74:09:44:42:5f:e7:5d:e6: b3:f0:59:60:87:23:38:ad:6b:01:8e:e4:20:84:a5: 59:80:a7:a4:e7:e2:31:b7:1a:ee:d9:75:b5:e3:db: 43:6a:40:fd:72:a4:dc:00:63:60:0c:d0:cb:70:78: 82:0e:31:49:34:50:ab:61:6f:ca:a5:d4:48:37:76: ce:31:f6:f3:15:a9:b8:77:63:8a:b1:6e:8e:b9:04: bf:28:81:f3:9e:f8:43:78:d0:9b:c9:40:6b:03:5c: a8:fe:a0:8c:9a:2d:d6:ca:8d:02:04:ae:58:e4:bc: f6:87:17:70:c3:af:2c:e3:41:ea:14:8e:ea:63:3b: 66:65:14:d1:78:b3:4b:a7:87:12:16:0b:ed:e6:2b: aa:0e:86:64:7f:78:71:db:b3:d5:12:d5:9d:45:ed: 0c:6d:37:65:21:b2:af:0a:fe:04:55:3e:98:09:19: 64:55:32:f5:c2:e2:c9:5a:b3:41:57:fb:03:c6:45: 12:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F8:DF:3A:CD:12:12:33:FA:7D:B9:53:48:CC:DA:EA:B0:6B:E4:AF X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383930343a3a2f34382d313238203d3e20323134373632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8904::/48 Signature Algorithm: sha256WithRSAEncryption 9f:c9:0e:0d:c0:0a:e5:5f:f7:ed:39:f7:92:dd:da:cb:33:4a: e3:b2:00:e8:e9:95:2a:67:23:d1:d0:99:dc:db:9a:fa:98:00: 51:50:0d:d4:ef:36:fc:9e:b2:60:90:6b:3c:ec:5b:d2:4a:8c: 18:4e:a3:e9:ec:fb:d6:5f:a9:5a:a3:e4:8b:93:f6:0a:02:9c: 74:c5:47:7f:43:11:6a:81:d9:98:8e:9b:0a:76:f0:05:93:cd: 3a:63:5d:be:d8:09:c0:90:ef:f8:1b:c3:b7:a1:be:63:e9:ec: 5e:2c:c2:7f:95:01:ad:8e:b0:f6:19:05:bd:a3:1c:02:bb:4f: 15:5d:c2:74:a6:74:15:03:5a:eb:9a:7b:3d:eb:c9:8f:bd:59: af:aa:45:17:12:d3:48:df:84:8b:3c:c1:8a:37:72:12:b5:35: 94:32:48:64:6f:87:18:ef:8d:60:7d:f9:da:ce:57:3f:a1:78: a9:c2:13:f5:f6:2c:c3:f3:c0:13:63:48:30:a0:c6:d4:c6:45: 22:24:a9:42:66:1f:63:b3:5b:2e:a0:ce:04:41:d2:e1:1f:e9: 27:78:21:bc:20:f2:ad:59:bd:2c:ae:f8:38:a1:48:7f:91:fa: 73:0f:04:e2:d4:99:48:1c:21:74:de:7f:1c:64:2a:63:47:2f: de:95:bc:55 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUOKVCgOXm9YRbnyXUIviCoUmRRVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTEwMTYxOTIwNDVaFw0yNjEwMTUxOTI1NDVaMDMxMTAvBgNV BAMTKEVGRjhERjNBQ0QxMjEyMzNGQTdEQjk1MzQ4Q0NEQUVBQjA2QkU0QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLmWA8asQJBY8T8qYNauLJ1POW AlgecBJ5ScljStFpJUtYWT2Fs9JUCvL2+Ubqst002XfwFNCo/raqyznSxJUUskB0 CURCX+dd5rPwWWCHIzitawGO5CCEpVmAp6Tn4jG3Gu7ZdbXj20NqQP1ypNwAY2AM 0MtweIIOMUk0UKthb8ql1Eg3ds4x9vMVqbh3Y4qxbo65BL8ogfOe+EN40JvJQGsD XKj+oIyaLdbKjQIErljkvPaHF3DDryzjQeoUjupjO2ZlFNF4s0unhxIWC+3mK6oO hmR/eHHbs9US1Z1F7QxtN2Uhsq8K/gRVPpgJGWRVMvXC4slas0FX+wPGRRKzAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQU7/jfOs0SEjP6fblTSMza6rBr5K8wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzkzMDM0M2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAz MjMxMzQzNzM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBhKDiQQwDQYJKoZIhvcNAQELBQADggEB AJ/JDg3ACuVf9+0595Ld2sszSuOyAOjplSpnI9HQmdzbmvqYAFFQDdTvNvyesmCQ azzsW9JKjBhOo+ns+9ZfqVqj5IuT9goCnHTFR39DEWqB2ZiOmwp28AWTzTpjXb7Y CcCQ7/gbw7ehvmPp7F4swn+VAa2OsPYZBb2jHAK7TxVdwnSmdBUDWuuaez3ryY+9 Wa+qRRcS00jfhIs8wYo3chK1NZQySGRvhxjvjWB9+drOVz+heKnCE/X2LMPzwBNj SDCgxtTGRSIkqUJmH2OzWy6gzgRB0uEf6Sd4Ibwg8q1ZvSyu+DihSH+R+nMPBOLU mUgcIXTefxxkKmNHL96VvFU= -----END CERTIFICATE-----Generated at Mon Oct 20 14:49:25 2025 by rpki-client