$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa File: 326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa (raw, json) Hash identifier: vRUJh5dVmPJFZAT5nThUuB5lHodEzpKLW+z3vniJchw= Subject key identifier: 97:CF:06:F3:F6:7C:97:70:11:26:37:FA:8C:98:7D:FE:2C:1A:C6:A3 Certificate issuer: /CN=26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532 Certificate serial: 77AD412A0522D731AAA3E1DA475D7A011F9DE0A9 Authority key identifier: 26:86:0E:EE:FB:78:34:ED:15:DC:9B:A7:F2:CA:8C:8B:A4:FA:05:32 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa Signing time: Mon 23 Jun 2025 14:58:29 +0000 ROA not before: Mon 23 Jun 2025 14:53:29 +0000 ROA not after: Mon 22 Jun 2026 14:58:29 +0000 asID: 214723 IP address blocks: 2a0a:6044:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 20:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ad:41:2a:05:22:d7:31:aa:a3:e1:da:47:5d:7a:01:1f:9d:e0:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532 Validity Not Before: Jun 23 14:53:29 2025 GMT Not After : Jun 22 14:58:29 2026 GMT Subject: CN=97CF06F3F67C9770112637FA8C987DFE2C1AC6A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:70:54:ac:2f:7c:08:1c:cc:53:aa:8e:47:cd: 0d:f3:a6:80:78:e1:22:85:13:1b:91:37:3f:d7:0b: f6:ed:cf:c8:55:7d:5d:6a:1f:4b:ae:37:e5:93:72: 9a:bf:4e:d7:7c:c0:1b:bc:ab:34:50:e8:c2:7d:89: 81:47:ed:94:d6:dd:21:49:01:6a:17:3c:fc:b1:48: ef:02:50:5f:86:e7:62:33:d4:a4:42:64:89:0b:e8: 4f:21:64:8b:14:0c:e7:13:f7:33:90:5b:d6:f8:57: a2:87:fe:4f:d9:ba:05:da:02:4f:23:40:c9:b3:94: ba:a7:31:98:2d:32:4b:7d:39:3c:fc:0a:9b:d7:99: 03:52:64:34:f6:75:c3:12:a1:a8:56:4d:b8:e8:19: 04:d4:b5:9d:8e:69:a6:21:53:97:5d:ba:fe:03:6d: db:52:2e:08:24:73:58:ba:37:86:f5:a2:00:63:4a: 6f:f2:a0:47:bf:f8:95:06:c5:61:38:7f:8c:4d:8b: c0:bc:2a:71:95:70:d8:6f:ff:00:e5:f9:5b:f7:ee: 33:91:24:ba:7a:37:4d:c0:eb:1b:2f:90:dc:9e:17: be:1c:ed:d1:e8:97:9f:00:d7:36:57:ed:a3:18:4e: 8e:51:c8:31:51:7c:55:42:a2:17:76:8d:9b:63:59: a9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CF:06:F3:F6:7C:97:70:11:26:37:FA:8C:98:7D:FE:2C:1A:C6:A3 X509v3 Authority Key Identifier: keyid:26:86:0E:EE:FB:78:34:ED:15:DC:9B:A7:F2:CA:8C:8B:A4:FA:05:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/26860EEEFB7834ED15DC9BA7F2CA8C8BA4FA0532.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/4/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ba00::/48 Signature Algorithm: sha256WithRSAEncryption a1:cc:df:1b:18:db:67:43:87:db:2f:25:58:2c:86:b1:0f:37: b2:60:06:96:65:ea:70:9c:11:a7:90:a5:4a:ea:1c:72:1c:fd: 29:67:37:ab:d3:d4:ee:92:47:b6:9e:08:1d:75:5d:0e:51:b0: 55:80:99:7f:58:cf:ac:e8:fb:22:de:d0:62:2e:18:63:d3:79: d0:7f:58:0f:bc:09:56:75:ca:f3:ee:92:11:9b:52:3a:58:11: 36:2a:97:7d:27:b2:55:14:45:59:dd:8e:3e:48:60:e1:52:7d: 3e:13:d7:bc:27:0b:60:bd:08:b1:19:57:0d:4c:41:20:fb:05: 53:1b:c4:68:62:50:78:c2:a1:30:61:a1:3f:88:59:df:1d:7b: 67:c2:11:b5:9c:29:6d:96:13:8c:c4:7c:7c:8b:07:9e:f1:af: ef:67:58:84:3a:93:1f:cf:df:c2:a5:75:c6:9a:df:43:2a:cf: c9:45:1c:5a:a8:61:8e:bb:25:d5:40:38:2d:de:91:87:2b:d3: 46:1d:fd:f2:37:47:14:f9:3c:c3:da:71:56:44:d9:5b:06:d1: 06:d2:bc:73:5a:97:4c:0e:48:c7:b7:b0:03:34:3d:ac:f6:a7: 18:fb:72:15:aa:07:42:e6:71:74:67:c7:84:e3:0c:2c:15:90: cf:e7:e1:c0 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUd61BKgUi1zGqo+HaR116AR+d4KkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY4NjBFRUVGQjc4MzRFRDE1REM5QkE3RjJDQThDOEJB NEZBMDUzMjAeFw0yNTA2MjMxNDUzMjlaFw0yNjA2MjIxNDU4MjlaMDMxMTAvBgNV BAMTKDk3Q0YwNkYzRjY3Qzk3NzAxMTI2MzdGQThDOTg3REZFMkMxQUM2QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtcFSsL3wIHMxTqo5HzQ3zpoB4 4SKFExuRNz/XC/btz8hVfV1qH0uuN+WTcpq/Ttd8wBu8qzRQ6MJ9iYFH7ZTW3SFJ AWoXPPyxSO8CUF+G52Iz1KRCZIkL6E8hZIsUDOcT9zOQW9b4V6KH/k/ZugXaAk8j QMmzlLqnMZgtMkt9OTz8CpvXmQNSZDT2dcMSoahWTbjoGQTUtZ2OaaYhU5dduv4D bdtSLggkc1i6N4b1ogBjSm/yoEe/+JUGxWE4f4xNi8C8KnGVcNhv/wDl+Vv37jOR JLp6N03A6xsvkNyeF74c7dHol58A1zZX7aMYTo5RyDFRfFVCohd2jZtjWamjAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUl88G8/Z8l3ARJjf6jJh9/iwaxqMwHwYDVR0j BBgwFoAUJoYO7vt4NO0V3Jun8sqMi6T6BTIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlNDU5MmUtMjNjMC00Y2NjLTk0ZGEtNmM5NTgwN2Y4 M2U3LzQvMjY4NjBFRUVGQjc4MzRFRDE1REM5QkE3RjJDQThDOEJBNEZBMDUzMi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy8yNjg2MEVFRUZCNzgzNEVEMTVEQzlCQTdG MkNBOEM4QkE0RkEwNTMyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2U0NTkyZS0yM2MwLTRjY2MtOTRkYS02Yzk1ODA3ZjgzZTcvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjEzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRLoAMA0GCSqGSIb3DQEBCwUAA4IBAQCh zN8bGNtnQ4fbLyVYLIaxDzeyYAaWZepwnBGnkKVK6hxyHP0pZzer09Tukke2nggd dV0OUbBVgJl/WM+s6Psi3tBiLhhj03nQf1gPvAlWdcrz7pIRm1I6WBE2Kpd9J7JV FEVZ3Y4+SGDhUn0+E9e8JwtgvQixGVcNTEEg+wVTG8RoYlB4wqEwYaE/iFnfHXtn whG1nCltlhOMxHx8iwee8a/vZ1iEOpMfz9/CpXXGmt9DKs/JRRxaqGGOuyXVQDgt 3pGHK9NGHf3yN0cU+TzD2nFWRNlbBtEG0rxzWpdMDkjHt7ADND2s9qcY+3IVqgdC 5nF0Z8eE4wwsFZDP5+HA -----END CERTIFICATE-----Generated at Mon Jun 30 08:27:17 2025 by rpki-client