$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383966303a3a2f34342d313238203d3e20323134303333.roa File: 326130363a313238333a383966303a3a2f34342d313238203d3e20323134303333.roa (raw, json) Hash identifier: VPyKJTdMnGQqSuzFbkFQ60iQgNT+2pht93oF2htafCQ= Subject key identifier: A4:AC:00:01:48:78:99:79:9D:8E:EE:BA:D4:91:BD:42:C8:11:36:AF Certificate issuer: /CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Certificate serial: 2D5DE4F5D3AF19035F13A3322F4E947E1C76DB1F Authority key identifier: D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383966303a3a2f34342d313238203d3e20323134303333.roa Signing time: Tue 14 Oct 2025 17:42:52 +0000 ROA not before: Tue 14 Oct 2025 17:37:52 +0000 ROA not after: Tue 13 Oct 2026 17:42:52 +0000 asID: 214033 IP address blocks: 2a06:1283:89f0::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:5d:e4:f5:d3:af:19:03:5f:13:a3:32:2f:4e:94:7e:1c:76:db:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C Validity Not Before: Oct 14 17:37:52 2025 GMT Not After : Oct 13 17:42:52 2026 GMT Subject: CN=A4AC0001487899799D8EEEBAD491BD42C81136AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c6:c2:89:a8:1d:05:dc:b9:c9:76:74:0d:9c: b6:fb:1e:43:3b:a6:8f:80:eb:d5:a6:84:15:e4:6c: 9a:c2:9b:64:4c:36:60:c9:dd:01:e0:dc:34:ab:72: 0a:94:13:14:6b:f2:b3:85:5c:88:a6:31:8f:58:04: 8e:f8:63:1f:72:5d:3e:38:be:1b:60:7e:78:86:c6: 3a:5a:9b:1b:a3:de:c4:59:f1:6f:d7:32:02:73:37: e4:76:7e:d3:69:89:0d:31:70:ea:31:c8:df:00:88: 9e:2f:7e:2c:16:de:28:a9:ef:0a:43:67:e1:a4:f9: 62:b6:c3:5f:e4:58:55:f5:65:22:7d:66:d2:b3:5f: 7d:b0:24:08:1c:d4:d1:55:f8:cd:e3:6d:76:ee:e8: dc:34:b5:f1:10:02:5e:d8:75:44:62:0b:56:43:41: 74:8a:36:54:b6:6d:aa:e6:39:56:0a:a6:af:84:b8: 58:b1:b4:6c:58:44:42:88:98:1d:d9:07:1c:f9:3b: 2f:c9:0b:18:43:57:56:62:fb:0b:82:c8:e6:94:69: 9e:5c:3b:df:5a:66:16:1d:25:5d:dd:ed:93:fd:05: cb:69:d9:03:a0:5c:60:6e:77:28:37:35:ad:ce:bd: 5a:1d:16:0e:7b:6b:db:d9:f6:30:89:ce:57:b3:9d: fc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AC:00:01:48:78:99:79:9D:8E:EE:BA:D4:91:BD:42:C8:11:36:AF X509v3 Authority Key Identifier: keyid:D5:4D:44:3B:67:C1:CC:5E:A1:B5:44:6E:A0:64:3C:AC:3A:7A:8B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/326130363a313238333a383966303a3a2f34342d313238203d3e20323134303333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:89f0::/44 Signature Algorithm: sha256WithRSAEncryption b7:64:b6:d1:0a:88:79:1a:c1:d6:10:6b:3a:3f:10:15:7b:83: a9:0c:ed:bd:15:a0:53:b7:0c:08:36:d1:84:12:7b:56:01:2a: f0:c8:17:c6:f7:85:0c:6c:61:9a:3a:3b:10:45:2f:de:14:87: f5:0a:cc:00:1e:86:41:d5:6c:99:87:b7:f6:1a:17:12:8c:bf: 0e:5c:fe:72:48:fa:2c:02:7f:16:1a:9b:9e:c6:61:d2:0d:34: cd:ae:90:d2:de:72:7d:bc:a7:bb:0f:bc:89:a7:02:12:61:d3: 64:c4:ce:5c:45:2b:c6:3b:7f:f7:e0:57:34:f9:66:e3:ca:52: d8:2e:9b:56:dd:7f:d3:9d:25:7a:0a:52:5c:b9:4a:1f:1b:5d: c2:70:07:d0:18:44:eb:b1:6b:1a:3d:bd:3e:61:b7:75:e5:a3: 69:c9:6a:eb:4e:c0:f8:9e:80:11:36:bf:14:e6:89:54:18:a8: e3:c2:9c:df:60:3c:dc:f3:8a:73:4f:9e:6a:a3:de:4d:0d:ec: d1:e9:c9:f2:97:02:6d:7b:46:b8:f5:99:83:f5:97:7f:fd:94: 77:e1:bc:8d:cd:6c:eb:e2:cb:97:79:47:20:3b:a4:65:e4:fc: 84:34:bf:92:c3:aa:4c:8a:8b:19:6d:01:93:65:23:21:24:a4: ae:0d:8c:03 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIULV3k9dOvGQNfE6MyL06Ufhx22x8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMz QTdBOEIyQzAeFw0yNTEwMTQxNzM3NTJaFw0yNjEwMTMxNzQyNTJaMDMxMTAvBgNV BAMTKEE0QUMwMDAxNDg3ODk5Nzk5RDhFRUVCQUQ0OTFCRDQyQzgxMTM2QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYxsKJqB0F3LnJdnQNnLb7HkM7 po+A69WmhBXkbJrCm2RMNmDJ3QHg3DSrcgqUExRr8rOFXIimMY9YBI74Yx9yXT44 vhtgfniGxjpamxuj3sRZ8W/XMgJzN+R2ftNpiQ0xcOoxyN8AiJ4vfiwW3iip7wpD Z+Gk+WK2w1/kWFX1ZSJ9ZtKzX32wJAgc1NFV+M3jbXbu6Nw0tfEQAl7YdURiC1ZD QXSKNlS2barmOVYKpq+EuFixtGxYREKImB3ZBxz5Oy/JCxhDV1Zi+wuCyOaUaZ5c O99aZhYdJV3d7ZP9Bctp2QOgXGBudyg3Na3OvVodFg57a9vZ9jCJzleznfy9AgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUpKwAAUh4mXmdju661JG9QsgRNq8wHwYDVR0j BBgwFoAU1U1EO2fBzF6htURuoGQ8rDp6iywwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzYvRDU0RDQ0M0I2N0MxQ0M1RUExQjU0NDZFQTA2NDNDQUMzQTdBOEIyQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvNC9ENTRENDQzQjY3QzFDQzVFQTFCNTQ0NkVB MDY0M0NBQzNBN0E4QjJDLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4Mzk2NjMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNlMjAz MjMxMzQzMDMzMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBhKDifAwDQYJKoZIhvcNAQELBQADggEB ALdkttEKiHkawdYQazo/EBV7g6kM7b0VoFO3DAg20YQSe1YBKvDIF8b3hQxsYZo6 OxBFL94Uh/UKzAAehkHVbJmHt/YaFxKMvw5c/nJI+iwCfxYam57GYdINNM2ukNLe cn28p7sPvImnAhJh02TEzlxFK8Y7f/fgVzT5ZuPKUtgum1bdf9OdJXoKUly5Sh8b XcJwB9AYROuxaxo9vT5ht3Xlo2nJautOwPiegBE2vxTmiVQYqOPCnN9gPNzzinNP nmqj3k0N7NHpyfKXAm17Rrj1mYP1l3/9lHfhvI3NbOviy5d5RyA7pGXk/IQ0v5LD qkyKixltAZNlIyEkpK4NjAM= -----END CERTIFICATE-----Generated at Mon Oct 20 14:49:39 2025 by rpki-client