$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/326131343a373538303a6430303a3a2f34302d3438203d3e20313939333130.roa File: 326131343a373538303a6430303a3a2f34302d3438203d3e20313939333130.roa (raw, json) Hash identifier: jIRO9mS3d6dPjcdQf+OkOGr/dNujGogdrEuPEpLgZJI= Subject key identifier: 06:BF:10:32:C1:17:C7:24:04:48:96:62:9F:9D:78:4F:3A:65:FD:0F Certificate issuer: /CN=13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB Certificate serial: 5624C80907F9C1C7F4BF52B48672B93873651E7E Authority key identifier: 13:E1:A9:98:F7:7D:7C:1F:F2:95:5C:0B:68:8F:EB:FE:0F:81:96:EB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/326131343a373538303a6430303a3a2f34302d3438203d3e20313939333130.roa Signing time: Sun 04 May 2025 16:38:53 +0000 ROA not before: Sun 04 May 2025 16:33:53 +0000 ROA not after: Sun 03 May 2026 16:38:53 +0000 asID: 199310 IP address blocks: 2a14:7580:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.crl rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:24:c8:09:07:f9:c1:c7:f4:bf:52:b4:86:72:b9:38:73:65:1e:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB Validity Not Before: May 4 16:33:53 2025 GMT Not After : May 3 16:38:53 2026 GMT Subject: CN=06BF1032C117C724044896629F9D784F3A65FD0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:85:e8:89:63:64:af:6b:59:13:a6:71:e8:ba: 4d:b4:d5:29:ba:2d:6c:2e:67:99:b5:ea:d3:d7:b2: 17:3b:e6:73:dd:c9:07:66:83:a1:03:f5:78:14:3c: 11:bd:f9:b9:16:92:03:de:af:e6:23:20:b5:a2:a6: c7:33:ab:e7:ca:9a:d5:04:15:81:d3:15:25:a2:93: 6b:a0:44:33:86:e0:b1:71:99:90:cb:37:af:18:9f: fe:bf:3e:b9:91:1c:dd:bb:08:1b:cf:5e:c8:2a:8b: 37:52:aa:b6:32:78:fc:73:d9:3b:8e:84:52:3b:f5: 9a:2d:3a:e3:7c:7a:f9:f1:56:3c:42:26:4c:fa:6c: 88:25:e0:55:7e:2e:6f:c1:4a:a8:24:06:dc:33:20: 2d:d3:8b:b5:31:a3:ca:11:da:3a:49:df:88:9f:c7: 1b:3a:60:7e:2a:0e:b0:ae:0a:2b:6b:bf:86:a5:2d: 9b:a0:77:e8:6b:6e:88:c4:46:ba:12:d1:a8:9f:37: 57:c1:ed:84:7d:ca:17:0b:ba:e6:6a:ff:21:b8:49: 8d:b7:b1:92:92:ea:b5:7f:bd:f0:af:bc:0e:e6:d8: 7c:4f:d9:d3:de:c0:86:09:2b:30:de:54:33:c1:27: d9:8e:07:90:25:56:43:79:52:63:3e:f6:f1:02:92: 9f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BF:10:32:C1:17:C7:24:04:48:96:62:9F:9D:78:4F:3A:65:FD:0F X509v3 Authority Key Identifier: keyid:13:E1:A9:98:F7:7D:7C:1F:F2:95:5C:0B:68:8F:EB:FE:0F:81:96:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/326131343a373538303a6430303a3a2f34302d3438203d3e20313939333130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:d00::/40 Signature Algorithm: sha256WithRSAEncryption 2a:48:2c:2c:94:61:1a:d7:88:4e:8a:98:9b:be:10:17:d4:38: 0e:80:5f:7c:9d:fb:0e:98:8a:4b:f4:26:ad:c7:3e:87:53:cd: c7:27:92:79:cc:db:62:a6:cc:a5:39:08:7f:9b:f2:6b:54:30: 7b:09:bc:9d:0a:33:db:bf:43:b4:75:f3:ce:45:ea:5b:12:02: 13:cb:58:57:f7:e7:b7:9b:fe:a1:63:62:49:af:b3:cb:3c:1f: 2b:ab:6e:70:ef:c8:b6:a7:ef:a7:78:05:1e:48:a5:f7:58:39: df:e9:f5:4d:67:00:60:20:0f:75:4c:9f:7d:31:e1:e6:1a:81: 54:73:9a:1a:d4:20:bb:d5:f6:79:36:0e:b4:fd:35:94:5d:7e: 65:d7:37:5f:a0:18:5d:73:e1:9e:d6:9d:e9:1b:36:ab:40:a9: 65:28:8d:99:2b:82:a9:f9:3f:bc:b7:80:b3:4e:96:74:d4:bb: 65:65:fe:4b:2f:65:48:12:7e:bc:4a:c6:64:39:0d:27:35:bf: 8a:ad:3a:58:aa:61:15:07:fd:e1:77:4f:03:11:5a:f1:6a:42: a6:02:a3:87:c2:11:79:af:4c:69:4b:f0:6f:05:9e:ef:17:09: b6:c6:87:d4:4a:fb:64:5b:dc:50:e2:18:d8:e3:08:a2:01:98: c2:d5:c4:6e -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUViTICQf5wcf0v1K0hnK5OHNlHn4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTNFMUE5OThGNzdEN0MxRkYyOTU1QzBCNjg4RkVCRkUw RjgxOTZFQjAeFw0yNTA1MDQxNjMzNTNaFw0yNjA1MDMxNjM4NTNaMDMxMTAvBgNV BAMTKDA2QkYxMDMyQzExN0M3MjQwNDQ4OTY2MjlGOUQ3ODRGM0E2NUZEMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkheiJY2Sva1kTpnHouk201Sm6 LWwuZ5m16tPXshc75nPdyQdmg6ED9XgUPBG9+bkWkgPer+YjILWipsczq+fKmtUE FYHTFSWik2ugRDOG4LFxmZDLN68Yn/6/PrmRHN27CBvPXsgqizdSqrYyePxz2TuO hFI79ZotOuN8evnxVjxCJkz6bIgl4FV+Lm/BSqgkBtwzIC3Ti7Uxo8oR2jpJ34if xxs6YH4qDrCuCitrv4alLZugd+hrbojERroS0aifN1fB7YR9yhcLuuZq/yG4SY23 sZKS6rV/vfCvvA7m2HxP2dPewIYJKzDeVDPBJ9mOB5AlVkN5UmM+9vECkp87AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUBr8QMsEXxyQESJZin514Tzpl/Q8wHwYDVR0j BBgwFoAUE+GpmPd9fB/ylVwLaI/r/g+BluswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDE1NzY0N2MtOTFkNi00YTA0LThhOTEtZDE1Mzg1ZDFm YWIyLzEvMTNFMUE5OThGNzdEN0MxRkYyOTU1QzBCNjg4RkVCRkUwRjgxOTZFQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xM0UxQTk5OEY3N0Q3QzFGRjI5NTVDMEI2 ODhGRUJGRTBGODE5NkVCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wMTU3NjQ3Yy05MWQ2LTRhMDQtOGE5MS1kMTUzODVkMWZhYjIvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY0MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMxMzkz OTMzMzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYANMA0GCSqGSIb3DQEBCwUAA4IBAQAqSCws lGEa14hOipibvhAX1DgOgF98nfsOmIpL9Catxz6HU83HJ5J5zNtipsylOQh/m/Jr VDB7CbydCjPbv0O0dfPORepbEgITy1hX9+e3m/6hY2JJr7PLPB8rq25w78i2p++n eAUeSKX3WDnf6fVNZwBgIA91TJ99MeHmGoFUc5oa1CC71fZ5Ng60/TWUXX5l1zdf oBhdc+Ge1p3pGzarQKllKI2ZK4Kp+T+8t4CzTpZ01LtlZf5LL2VIEn68SsZkOQ0n Nb+KrTpYqmEVB/3hd08DEVrxakKmAqOHwhF5r0xpS/BvBZ7vFwm2xofUSvtkW9xQ 4hjY4wiiAZjC1cRu -----END CERTIFICATE-----Generated at Wed Nov 5 02:59:59 2025 by rpki-client