$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/326131343a373538303a6466303a3a2f34382d3438203d3e20323133373239.roa File: 326131343a373538303a6466303a3a2f34382d3438203d3e20323133373239.roa (raw, json) Hash identifier: u/JR7/M6BcKICssdDR7j/sPwWvJTPX2G+FFLBgXrUyU= Subject key identifier: D9:2F:75:CD:27:94:67:DA:A5:1E:67:63:09:8A:A9:8F:F8:AB:F9:B2 Certificate issuer: /CN=13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB Certificate serial: 6848C0FD50EB0E40E6ECCA73559739412271209A Authority key identifier: 13:E1:A9:98:F7:7D:7C:1F:F2:95:5C:0B:68:8F:EB:FE:0F:81:96:EB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/326131343a373538303a6466303a3a2f34382d3438203d3e20323133373239.roa Signing time: Sun 04 May 2025 16:38:25 +0000 ROA not before: Sun 04 May 2025 16:33:25 +0000 ROA not after: Sun 03 May 2026 16:38:25 +0000 asID: 213729 IP address blocks: 2a14:7580:df0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.crl rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:48:c0:fd:50:eb:0e:40:e6:ec:ca:73:55:97:39:41:22:71:20:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB Validity Not Before: May 4 16:33:25 2025 GMT Not After : May 3 16:38:25 2026 GMT Subject: CN=D92F75CD279467DAA51E6763098AA98FF8ABF9B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a0:c4:70:b4:04:50:60:b0:d4:51:76:7c:45: 2f:9f:69:6a:1e:08:8f:4a:d8:1a:d4:59:94:95:fd: c1:99:a3:54:1c:77:55:67:7e:57:60:ed:33:b4:3b: 24:ec:17:16:e9:bb:e3:60:6d:76:98:87:ac:58:88: 7a:62:aa:e3:86:b4:d5:ef:6f:54:27:70:36:6e:cc: a7:0a:df:33:45:1f:a0:39:65:18:70:20:40:1b:c0: 91:26:62:d9:09:01:31:6e:08:a0:d1:7c:80:20:3d: 76:23:78:de:ad:a2:86:e4:17:4c:55:ca:57:92:81: 4d:27:c0:82:55:21:98:cf:66:0d:ac:f5:99:62:8b: 69:50:13:ae:0d:67:49:7e:4d:7b:bd:c0:8a:53:b7: 06:1e:48:5d:73:45:a8:0e:5a:f0:b0:46:07:5f:9c: 60:8f:f6:5b:d2:77:5a:e3:05:5d:7e:04:bc:5a:ff: 84:7f:68:f7:82:ae:55:e7:f0:20:1f:a7:aa:53:56: 1c:2d:e6:40:21:6a:21:9b:fc:6d:e6:53:fb:78:2a: 57:a1:ee:52:e4:56:82:e1:4f:17:2e:e9:76:c5:3b: 35:58:e4:74:fa:5d:f6:20:bc:2b:50:61:76:ad:20: 1b:cd:8a:4a:d6:c9:55:82:bf:ef:6a:a8:d5:8e:42: e8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:2F:75:CD:27:94:67:DA:A5:1E:67:63:09:8A:A9:8F:F8:AB:F9:B2 X509v3 Authority Key Identifier: keyid:13:E1:A9:98:F7:7D:7C:1F:F2:95:5C:0B:68:8F:EB:FE:0F:81:96:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/13E1A998F77D7C1FF2955C0B688FEBFE0F8196EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0157647c-91d6-4a04-8a91-d15385d1fab2/1/326131343a373538303a6466303a3a2f34382d3438203d3e20323133373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:df0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:29:8a:ad:c6:57:43:34:82:54:7c:d4:49:5f:a2:70:e3:88: 76:67:64:16:9e:3a:34:7e:46:d9:64:4c:3e:4d:92:48:57:02: 2c:96:84:ab:da:19:95:21:1c:5b:4c:b4:86:4c:56:01:e0:3b: e2:c7:93:3b:8a:1c:42:8b:69:6d:b2:75:0f:6d:f0:2e:03:be: c1:ed:2b:f8:f8:7a:ce:30:55:41:38:66:23:b3:dd:97:53:2e: 4d:37:d7:28:7b:72:6b:62:de:cc:f4:35:1a:4e:2f:89:1a:0f: e4:7c:97:72:b4:d9:5b:92:99:f8:ed:8c:b1:06:c9:18:c2:df: 81:9a:1f:33:c0:45:37:7e:cb:d0:39:b8:b5:20:95:89:6b:ab: 8d:80:fd:50:43:40:b2:05:3a:c0:2b:44:97:a2:f4:9b:e4:16: 23:68:8f:96:21:e9:ab:39:84:0a:dd:1f:66:9e:1d:45:17:ae: da:c8:d8:f1:29:2f:2b:ea:52:0c:21:e4:8a:be:b7:9d:03:f9: 93:5b:95:d4:47:bd:fd:e9:ee:ec:60:ea:71:da:48:09:19:2e: 7b:e0:5f:9c:15:87:a4:51:bc:ec:81:b1:53:c6:05:29:a3:2b: 42:35:e9:59:ea:7a:ef:4d:05:8f:7d:61:d9:52:3d:a1:69:8e: f5:6c:70:d5 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUaEjA/VDrDkDm7MpzVZc5QSJxIJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTNFMUE5OThGNzdEN0MxRkYyOTU1QzBCNjg4RkVCRkUw RjgxOTZFQjAeFw0yNTA1MDQxNjMzMjVaFw0yNjA1MDMxNjM4MjVaMDMxMTAvBgNV BAMTKEQ5MkY3NUNEMjc5NDY3REFBNTFFNjc2MzA5OEFBOThGRjhBQkY5QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7oMRwtARQYLDUUXZ8RS+faWoe CI9K2BrUWZSV/cGZo1Qcd1Vnfldg7TO0OyTsFxbpu+NgbXaYh6xYiHpiquOGtNXv b1QncDZuzKcK3zNFH6A5ZRhwIEAbwJEmYtkJATFuCKDRfIAgPXYjeN6toobkF0xV yleSgU0nwIJVIZjPZg2s9Zlii2lQE64NZ0l+TXu9wIpTtwYeSF1zRagOWvCwRgdf nGCP9lvSd1rjBV1+BLxa/4R/aPeCrlXn8CAfp6pTVhwt5kAhaiGb/G3mU/t4Kleh 7lLkVoLhTxcu6XbFOzVY5HT6XfYgvCtQYXatIBvNikrWyVWCv+9qqNWOQugPAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU2S91zSeUZ9qlHmdjCYqpj/ir+bIwHwYDVR0j BBgwFoAUE+GpmPd9fB/ylVwLaI/r/g+BluswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDE1NzY0N2MtOTFkNi00YTA0LThhOTEtZDE1Mzg1ZDFm YWIyLzEvMTNFMUE5OThGNzdEN0MxRkYyOTU1QzBCNjg4RkVCRkUwRjgxOTZFQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xM0UxQTk5OEY3N0Q3QzFGRjI5NTVDMEI2 ODhGRUJGRTBGODE5NkVCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wMTU3NjQ3Yy05MWQ2LTRhMDQtOGE5MS1kMTUzODVkMWZhYjIvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY0NjYzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz MzM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYAN8DANBgkqhkiG9w0BAQsFAAOCAQEALymK rcZXQzSCVHzUSV+icOOIdmdkFp46NH5G2WRMPk2SSFcCLJaEq9oZlSEcW0y0hkxW AeA74seTO4ocQotpbbJ1D23wLgO+we0r+Ph6zjBVQThmI7Pdl1MuTTfXKHtya2Le zPQ1Gk4viRoP5HyXcrTZW5KZ+O2MsQbJGMLfgZofM8BFN37L0Dm4tSCViWurjYD9 UENAsgU6wCtEl6L0m+QWI2iPliHpqzmECt0fZp4dRReu2sjY8SkvK+pSDCHkir63 nQP5k1uV1Ee9/enu7GDqcdpICRkue+BfnBWHpFG87IGxU8YFKaMrQjXpWep6700F j31h2VI9oWmO9Wxw1Q== -----END CERTIFICATE-----Generated at Wed Nov 5 00:41:02 2025 by rpki-client