$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa File: 326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa (raw, json) Hash identifier: SMLoi7kFU1bRNzNiJpgxjQRJ+ZMVz7lk2QlI7T9ohXM= Subject key identifier: 80:06:37:68:02:53:4F:4C:16:56:5B:7C:51:8D:29:D0:49:18:0A:E0 Certificate issuer: /CN=26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532 Certificate serial: 102FC13C9697BFE50602965E96D5BDB8F83AAEFF Authority key identifier: 26:86:0E:EE:FB:78:34:ED:15:DC:9B:A7:F2:CA:8C:8B:A4:FA:05:32 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa Signing time: Mon 23 Jun 2025 14:58:45 +0000 ROA not before: Mon 23 Jun 2025 14:53:45 +0000 ROA not after: Mon 22 Jun 2026 14:58:45 +0000 asID: 214723 IP address blocks: 2a0a:6044:ba00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 20:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:2f:c1:3c:96:97:bf:e5:06:02:96:5e:96:d5:bd:b8:f8:3a:ae:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532 Validity Not Before: Jun 23 14:53:45 2025 GMT Not After : Jun 22 14:58:45 2026 GMT Subject: CN=8006376802534F4C16565B7C518D29D049180AE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:62:1c:9c:ef:1e:e3:1f:6a:ef:1e:4e:a2: 02:ac:a6:b6:a3:9f:3b:d9:e8:8c:44:45:7f:ae:31: 06:24:77:68:fd:4c:89:1f:82:ce:d6:92:a4:41:e7: 2e:5b:f7:26:60:d6:e1:49:1c:9b:4b:29:b5:8e:31: d0:32:c5:f8:5b:24:fe:a8:18:a7:8e:c7:6a:88:a0: 1b:93:14:e5:7f:a5:fc:d9:10:00:99:3a:5a:88:82: ec:47:53:da:93:2d:a9:d0:f7:36:fb:6e:b9:02:6d: aa:de:87:d2:cc:8b:52:5a:c6:75:40:85:9c:c7:3b: 5e:0d:c8:52:74:f9:87:d6:e0:1e:35:cd:b1:95:12: 5b:f1:f9:0c:2b:b8:cb:c0:4b:ef:0c:cb:e8:cc:89: 18:3a:29:92:3c:e8:bb:be:97:b7:94:90:ee:2d:93: cd:b3:44:e2:1a:35:4b:e4:03:8d:2d:e0:73:ef:fa: 72:d4:34:fa:3b:c1:f3:40:2c:ce:b5:0d:b6:68:33: 08:c7:3a:ac:7f:da:79:02:e5:a9:0f:73:82:6c:ef: 72:4b:16:67:a6:56:b5:9b:49:aa:e4:1f:18:cc:55: e9:da:2b:54:94:fd:4d:7c:95:56:74:71:d9:ef:b1: 73:c9:a2:16:b4:0d:c2:e4:88:61:8a:5a:6a:b2:2f: 88:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:06:37:68:02:53:4F:4C:16:56:5B:7C:51:8D:29:D0:49:18:0A:E0 X509v3 Authority Key Identifier: keyid:26:86:0E:EE:FB:78:34:ED:15:DC:9B:A7:F2:CA:8C:8B:A4:FA:05:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/326130613a363034343a626130303a3a2f34302d3430203d3e20323134373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ba00::/40 Signature Algorithm: sha256WithRSAEncryption 59:89:29:13:15:10:00:a1:97:bf:44:e8:ee:e3:87:e2:4a:a1: 40:1a:4e:b8:d1:e8:a4:ee:5f:f3:d9:73:ae:4e:f7:68:94:63: d8:f3:99:6f:a5:5a:f5:5f:2e:0b:0a:b8:ed:23:80:55:cd:53: 6f:e3:d1:76:00:b1:28:1c:be:eb:83:fd:23:e5:a0:c7:9a:89: 81:03:ed:86:f2:7d:8d:ad:ba:57:ef:c4:44:26:59:af:64:64: fa:a3:aa:c7:39:70:38:20:93:aa:d3:52:57:66:12:e0:6a:00: 41:4d:63:df:dc:39:5a:08:e0:49:4d:0d:c4:db:a6:a6:da:b7: fd:46:23:ed:12:db:89:5a:95:0c:1c:60:ee:3d:ad:2c:b7:31: 21:07:06:c4:86:2e:db:d1:26:74:e8:00:2c:14:85:6f:40:d2: 00:4c:6b:70:05:f9:08:ea:af:f8:ab:26:6c:b8:f1:3b:2e:e7: f2:d7:f8:60:ac:be:87:e7:59:b1:db:7c:95:13:e9:6d:95:9e: 0a:8b:bc:40:44:f6:cf:b1:e8:bd:e0:2d:83:cf:53:4a:b0:95: f4:7c:21:63:4f:38:9e:8c:4b:79:41:1f:46:fb:da:39:f5:16: c2:eb:86:5b:ea:c1:ec:1a:6a:d9:a3:fd:81:29:01:ec:d2:44: bb:90:52:9c -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUEC/BPJaXv+UGApZeltW9uPg6rv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY4NjBFRUVGQjc4MzRFRDE1REM5QkE3RjJDQThDOEJB NEZBMDUzMjAeFw0yNTA2MjMxNDUzNDVaFw0yNjA2MjIxNDU4NDVaMDMxMTAvBgNV BAMTKDgwMDYzNzY4MDI1MzRGNEMxNjU2NUI3QzUxOEQyOUQwNDkxODBBRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqHmIcnO8e4x9q7x5OogKspraj nzvZ6IxERX+uMQYkd2j9TIkfgs7WkqRB5y5b9yZg1uFJHJtLKbWOMdAyxfhbJP6o GKeOx2qIoBuTFOV/pfzZEACZOlqIguxHU9qTLanQ9zb7brkCbareh9LMi1JaxnVA hZzHO14NyFJ0+YfW4B41zbGVElvx+QwruMvAS+8My+jMiRg6KZI86Lu+l7eUkO4t k82zROIaNUvkA40t4HPv+nLUNPo7wfNALM61DbZoMwjHOqx/2nkC5akPc4Js73JL FmemVrWbSarkHxjMVenaK1SU/U18lVZ0cdnvsXPJoha0DcLkiGGKWmqyL4hJAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUgAY3aAJTT0wWVlt8UY0p0EkYCuAwHwYDVR0j BBgwFoAUJoYO7vt4NO0V3Jun8sqMi6T6BTIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlNDU5MmUtMjNjMC00Y2NjLTk0ZGEtNmM5NTgwN2Y4 M2U3LzQvMjY4NjBFRUVGQjc4MzRFRDE1REM5QkE3RjJDQThDOEJBNEZBMDUzMi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy8yNjg2MEVFRUZCNzgzNEVEMTVEQzlCQTdG MkNBOEM4QkE0RkEwNTMyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2U0NTkyZS0yM2MwLTRjY2MtOTRkYS02Yzk1ODA3ZjgzZTcvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjEzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTM0MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgRLowDQYJKoZIhvcNAQELBQADggEBAFmJ KRMVEAChl79E6O7jh+JKoUAaTrjR6KTuX/PZc65O92iUY9jzmW+lWvVfLgsKuO0j gFXNU2/j0XYAsSgcvuuD/SPloMeaiYED7YbyfY2tulfvxEQmWa9kZPqjqsc5cDgg k6rTUldmEuBqAEFNY9/cOVoI4ElNDcTbpqbat/1GI+0S24lalQwcYO49rSy3MSEH BsSGLtvRJnToACwUhW9A0gBMa3AF+Qjqr/irJmy48Tsu5/LX+GCsvofnWbHbfJUT 6W2VngqLvEBE9s+x6L3gLYPPU0qwlfR8IWNPOJ6MS3lBH0b72jn1FsLrhlvqwewa atmj/YEpAezSRLuQUpw= -----END CERTIFICATE-----Generated at Mon Jun 30 08:25:40 2025 by rpki-client