$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/38352e3135352e3232372e302f32342d3234203d3e203530313034.roa File: 38352e3135352e3232372e302f32342d3234203d3e203530313034.roa (raw, json) Hash identifier: ocAxx23XjwXyOYOHcEuZaqgQEocGKpcgw1PpjzeOLXQ= Subject key identifier: 96:54:47:86:62:4A:6C:1C:CA:94:E4:D4:5D:48:DA:28:50:B3:D6:AE Certificate issuer: /CN=6578E79662000496EB1540D8BD8FA65ED8D63A62 Certificate serial: 172D5AA0E54D0AF3BDFC4B5DEB19DC137988D3D7 Authority key identifier: 65:78:E7:96:62:00:04:96:EB:15:40:D8:BD:8F:A6:5E:D8:D6:3A:62 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/38352e3135352e3232372e302f32342d3234203d3e203530313034.roa Signing time: Sun 26 Oct 2025 14:28:23 +0000 ROA not before: Sun 26 Oct 2025 14:23:23 +0000 ROA not after: Sun 25 Oct 2026 14:28:23 +0000 asID: 50104 IP address blocks: 85.155.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.crl rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:2d:5a:a0:e5:4d:0a:f3:bd:fc:4b:5d:eb:19:dc:13:79:88:d3:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6578E79662000496EB1540D8BD8FA65ED8D63A62 Validity Not Before: Oct 26 14:23:23 2025 GMT Not After : Oct 25 14:28:23 2026 GMT Subject: CN=96544786624A6C1CCA94E4D45D48DA2850B3D6AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:90:19:51:d7:35:6d:28:eb:c4:7f:0a:72:1d: 6b:85:bb:9a:3d:68:83:33:34:82:4c:a5:e1:b8:fc: 11:16:1a:5b:2d:d8:ba:0e:aa:a1:9f:39:ca:62:2e: 04:53:4d:d8:c8:cd:d5:22:bf:60:24:b9:c8:9b:35: 25:42:bd:af:ff:1f:7f:d2:b5:4e:86:8c:d8:ac:62: 6d:7c:6e:f5:d5:82:81:3b:d1:39:03:42:62:23:ef: e3:3e:d6:82:26:22:13:20:b2:03:b7:d1:c1:85:36: 8b:c5:3d:ec:09:8a:7c:34:00:08:9d:1f:95:a3:4e: e2:e2:47:e6:5c:58:4d:08:a2:9a:d4:79:43:e1:be: 14:00:78:aa:3d:01:47:40:7c:58:5d:3e:54:5f:e1: 54:f2:bc:24:7c:4f:1a:d9:d3:36:81:a8:aa:10:6a: 2d:58:e3:d7:08:75:d4:c9:be:87:a1:85:71:f3:1d: d4:ff:1b:f3:75:da:c1:94:22:53:86:d2:66:65:d1: 8f:0b:90:9e:ca:ac:a8:20:15:d3:2b:0d:7e:d3:9c: f1:c0:0a:c7:d4:76:2a:9d:82:1f:33:55:b6:ef:ae: 16:3a:87:db:b8:2b:e6:2a:24:1d:2d:40:e2:35:fe: aa:5e:32:21:62:7a:a3:62:50:b0:88:15:e7:ca:81: 56:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:54:47:86:62:4A:6C:1C:CA:94:E4:D4:5D:48:DA:28:50:B3:D6:AE X509v3 Authority Key Identifier: keyid:65:78:E7:96:62:00:04:96:EB:15:40:D8:BD:8F:A6:5E:D8:D6:3A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/6578E79662000496EB1540D8BD8FA65ED8D63A62.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6578E79662000496EB1540D8BD8FA65ED8D63A62.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/8/38352e3135352e3232372e302f32342d3234203d3e203530313034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.155.227.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:cc:ff:57:1c:e3:11:dc:f1:34:8d:5e:ac:05:96:b0:10:1a: 83:04:3f:f1:9a:13:57:95:fc:2a:4c:9c:29:55:33:af:1a:08: ae:78:bf:16:2e:5d:89:24:71:62:c8:8f:9c:64:51:93:dc:da: ea:5a:68:35:88:3d:8b:ba:61:2c:45:e9:fb:67:8b:59:c1:db: da:b0:3f:0c:91:e7:35:55:56:d5:5c:bc:30:69:ac:16:bd:f4: 06:c7:de:78:d9:74:1d:17:c3:9c:ff:97:89:85:2a:26:e6:63: 82:c1:b1:19:ea:4b:e2:cf:70:b2:c0:19:c4:6c:39:4c:0b:72: d3:4a:2b:a0:ca:56:26:8e:98:f2:1a:0c:f6:4a:25:0f:44:59: 93:65:4e:c1:dd:31:58:fb:3b:7a:25:aa:b1:4d:05:c8:be:22: 08:97:28:46:e5:f0:09:bf:a8:5b:2c:e2:67:c5:1f:99:98:46: 00:42:34:37:98:70:5a:7d:76:d4:e0:ee:37:1c:55:c8:cb:11: 35:fe:1e:c3:f0:b7:50:64:c5:35:a2:80:53:fb:3b:d5:df:c5: e3:3f:73:70:59:e5:c3:51:95:04:8c:e5:da:6b:dc:7a:99:54: 1b:80:2e:a2:16:6b:a3:19:b8:d9:e4:a8:b2:1d:8b:16:c2:0b: 34:26:bc:a4 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUFy1aoOVNCvO9/Etd6xncE3mI09cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVE OEQ2M0E2MjAeFw0yNTEwMjYxNDIzMjNaFw0yNjEwMjUxNDI4MjNaMDMxMTAvBgNV BAMTKDk2NTQ0Nzg2NjI0QTZDMUNDQTk0RTRENDVENDhEQTI4NTBCM0Q2QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCokBlR1zVtKOvEfwpyHWuFu5o9 aIMzNIJMpeG4/BEWGlst2LoOqqGfOcpiLgRTTdjIzdUiv2AkucibNSVCva//H3/S tU6GjNisYm18bvXVgoE70TkDQmIj7+M+1oImIhMgsgO30cGFNovFPewJinw0AAid H5WjTuLiR+ZcWE0IoprUeUPhvhQAeKo9AUdAfFhdPlRf4VTyvCR8TxrZ0zaBqKoQ ai1Y49cIddTJvoehhXHzHdT/G/N12sGUIlOG0mZl0Y8LkJ7KrKggFdMrDX7TnPHA CsfUdiqdgh8zVbbvrhY6h9u4K+YqJB0tQOI1/qpeMiFieqNiULCIFefKgVYTAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQUllRHhmJKbBzKlOTUXUjaKFCz1q4wHwYDVR0j BBgwFoAUZXjnlmIABJbrFUDYvY+mXtjWOmIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQtZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVk OGM0LzgvNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVEOEQ2M0E2Mi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNjU3OEU3OTY2MjAwMDQ5NkVCMTU0MEQ4QkQ4RkE2NUVEOEQ2 M0E2Mi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQt ZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVkOGM0LzgvMzgzNTJlMzEzNTM1MmUzMjMy MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMwMzEzMDM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA VZvjMA0GCSqGSIb3DQEBCwUAA4IBAQB7zP9XHOMR3PE0jV6sBZawEBqDBD/xmhNX lfwqTJwpVTOvGgiueL8WLl2JJHFiyI+cZFGT3NrqWmg1iD2LumEsRen7Z4tZwdva sD8Mkec1VVbVXLwwaawWvfQGx9542XQdF8Oc/5eJhSom5mOCwbEZ6kviz3CywBnE bDlMC3LTSiugylYmjpjyGgz2SiUPRFmTZU7B3TFY+zt6JaqxTQXIviIIlyhG5fAJ v6hbLOJnxR+ZmEYAQjQ3mHBafXbU4O43HFXIyxE1/h7D8LdQZMU1ooBT+zvV38Xj P3NwWeXDUZUEjOXaa9x6mVQbgC6iFmujGbjZ5KiyHYsWwgs0Jryk -----END CERTIFICATE-----Generated at Wed Nov 5 06:47:10 2025 by rpki-client