$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030393a3a2f34382d3438203d3e20323135323030.roa File: 326131343a373538313a313030393a3a2f34382d3438203d3e20323135323030.roa (raw, json) Hash identifier: wO5JMaeGpMElDOXT4UXFnfYYDak9TYr+GxKmp4r0nic= Subject key identifier: A2:0E:72:1A:E1:09:CD:93:AC:1B:9E:71:66:AC:BE:BD:15:4F:D3:C1 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 6B8CE276E3D8447700F5F29790EDA966DE0420D0 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030393a3a2f34382d3438203d3e20323135323030.roa Signing time: Mon 03 Nov 2025 10:01:38 +0000 ROA not before: Mon 03 Nov 2025 09:56:38 +0000 ROA not after: Mon 02 Nov 2026 10:01:38 +0000 asID: 215200 IP address blocks: 2a14:7581:1009::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 06:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:8c:e2:76:e3:d8:44:77:00:f5:f2:97:90:ed:a9:66:de:04:20:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Nov 3 09:56:38 2025 GMT Not After : Nov 2 10:01:38 2026 GMT Subject: CN=A20E721AE109CD93AC1B9E7166ACBEBD154FD3C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:7e:f5:a8:b1:86:91:3d:76:aa:77:a2:ba: ca:b2:22:c2:a0:49:68:0c:bb:a2:ee:35:36:7a:9d: 2b:1e:ac:24:b1:e1:58:0e:b0:cb:8d:77:0c:02:55: e1:39:f1:91:04:26:f6:f9:9a:8e:34:23:f6:6c:b8: fa:2a:da:82:3d:29:8a:29:bf:8b:fb:33:c0:af:88: 2e:3a:8d:74:96:52:00:83:8a:35:ac:cd:bb:c3:c9: 15:1a:55:d2:dc:5b:e3:e4:63:01:36:bf:9f:81:9d: a3:c3:49:bb:36:75:13:b3:8b:d2:99:96:c9:aa:06: 68:2c:37:73:02:e7:90:40:3a:2f:7a:85:e5:21:cf: 3d:8d:4a:7e:ca:6a:1b:2e:67:be:5b:28:66:5b:a7: 90:9a:c3:55:a2:75:3a:e2:3b:b3:6a:ce:3a:d2:b7: 40:7f:36:74:3c:56:11:ef:6f:e1:f1:22:40:6b:22: 6a:a1:ee:64:4a:e0:45:d0:b6:20:61:cc:6e:6d:ae: c5:b4:a5:c4:fd:87:ee:15:30:26:b7:52:37:3d:27: e5:df:2f:b3:29:45:54:f6:02:17:c4:b3:ee:ec:45: b1:1b:4f:7f:c8:a3:a7:3d:b4:81:2f:9f:19:8c:8f: 65:99:60:1d:05:f9:a4:1c:e3:40:a1:c7:5f:ee:98: 05:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0E:72:1A:E1:09:CD:93:AC:1B:9E:71:66:AC:BE:BD:15:4F:D3:C1 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030393a3a2f34382d3438203d3e20323135323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1009::/48 Signature Algorithm: sha256WithRSAEncryption 86:03:3b:8e:94:69:f5:72:79:9d:6b:ba:e3:ae:78:3e:9d:47: 9c:25:cd:fd:44:9d:d3:71:45:0a:59:61:31:6c:27:74:9d:0e: 19:ce:01:af:5f:88:21:85:65:da:be:70:7a:b4:94:ba:43:b9: 23:ca:5e:4e:94:96:35:c8:5b:4d:92:33:cb:96:1a:43:64:99: 32:ea:8a:4a:03:09:61:68:b8:4a:7b:53:aa:f5:7a:d2:55:f8: 25:c0:4e:02:a4:fa:a1:a0:65:c1:e3:3e:e4:a4:da:d4:ef:8f: b7:be:89:55:3b:0d:ac:4a:1c:f3:22:1f:46:12:10:6e:57:af: d2:96:35:b4:2d:0c:54:fc:5e:eb:63:db:89:88:82:0e:65:c3: 34:a9:09:b0:0b:ff:a8:22:3e:6b:7b:c3:04:12:c5:84:83:07: 50:f4:af:ad:19:0e:27:6c:a6:c5:7b:63:eb:90:22:82:cb:43: 00:6c:a2:51:15:f5:ab:b0:60:b2:fb:e7:14:5e:c7:45:b4:44: 78:4c:58:68:a9:90:79:dc:72:bb:4d:31:75:b7:64:e0:b5:2f: 02:74:41:1f:31:6f:dc:f0:e0:2a:d5:59:b7:94:55:a6:7d:af: 87:71:c9:65:ac:f1:42:af:9b:49:6b:48:2a:1a:29:69:f0:0d: 3c:1a:14:9a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUa4ziduPYRHcA9fKXkO2pZt4EINAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTExMDMwOTU2MzhaFw0yNjExMDIxMDAxMzhaMDMxMTAvBgNV BAMTKEEyMEU3MjFBRTEwOUNEOTNBQzFCOUU3MTY2QUNCRUJEMTU0RkQzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsyX71qLGGkT12qneiusqyIsKg SWgMu6LuNTZ6nSserCSx4VgOsMuNdwwCVeE58ZEEJvb5mo40I/ZsuPoq2oI9KYop v4v7M8CviC46jXSWUgCDijWszbvDyRUaVdLcW+PkYwE2v5+BnaPDSbs2dROzi9KZ lsmqBmgsN3MC55BAOi96heUhzz2NSn7KahsuZ75bKGZbp5Caw1WidTriO7NqzjrS t0B/NnQ8VhHvb+HxIkBrImqh7mRK4EXQtiBhzG5trsW0pcT9h+4VMCa3Ujc9J+Xf L7MpRVT2AhfEs+7sRbEbT3/Io6c9tIEvnxmMj2WZYB0F+aQc40Chx1/umAWxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUog5yGuEJzZOsG55xZqy+vRVP08EwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzIzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAJMA0GCSqGSIb3DQEBCwUAA4IBAQCG AzuOlGn1cnmda7rjrng+nUecJc39RJ3TcUUKWWExbCd0nQ4ZzgGvX4ghhWXavnB6 tJS6Q7kjyl5OlJY1yFtNkjPLlhpDZJky6opKAwlhaLhKe1Oq9XrSVfglwE4CpPqh oGXB4z7kpNrU74+3volVOw2sShzzIh9GEhBuV6/SljW0LQxU/F7rY9uJiIIOZcM0 qQmwC/+oIj5re8MEEsWEgwdQ9K+tGQ4nbKbFe2PrkCKCy0MAbKJRFfWrsGCy++cU XsdFtER4TFhoqZB53HK7TTF1t2TgtS8CdEEfMW/c8OAq1Vm3lFWmfa+HccllrPFC r5tJa0gqGilp8A08GhSa -----END CERTIFICATE-----Generated at Tue Nov 4 18:31:27 2025 by rpki-client