$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203134363138.roa File: 326131343a316563303a3a2f33312d3438203d3e203134363138.roa (raw, json) Hash identifier: TNC4zrNVSYq6rg1HfzOLsFNL5cW5pcjjIopBseDA51Y= Subject key identifier: 32:7C:18:21:22:28:35:77:2D:EE:A3:A1:22:18:AD:79:94:46:DE:F9 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 5C4A1BE6362F75471BD45FA20C1B39F62542C001 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203134363138.roa Signing time: Fri 09 May 2025 16:28:46 +0000 ROA not before: Fri 09 May 2025 16:23:46 +0000 ROA not after: Fri 08 May 2026 16:28:46 +0000 asID: 14618 IP address blocks: 2a14:1ec0::/31 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 19:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4a:1b:e6:36:2f:75:47:1b:d4:5f:a2:0c:1b:39:f6:25:42:c0:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: May 9 16:23:46 2025 GMT Not After : May 8 16:28:46 2026 GMT Subject: CN=327C1821222835772DEEA3A12218AD799446DEF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b3:d2:35:f5:d7:49:0d:2a:0a:80:da:11:65: 91:08:cf:3c:7c:d3:2a:af:fe:dc:9a:cc:0f:8b:c0: cb:29:cf:7f:a2:f8:e1:3f:d0:9c:37:85:7c:2c:f7: d7:62:26:6c:5f:a1:f9:fa:d0:51:0a:37:de:9c:5f: 58:03:33:05:82:b8:0e:01:f2:b3:b0:d7:36:e0:89: 63:ba:23:d9:ad:4d:c8:97:ab:c8:32:fb:f4:46:1b: 47:60:e7:89:5a:28:23:6a:69:90:00:c2:49:ef:3c: c6:fb:cd:4b:5d:55:26:66:83:c9:35:80:b8:7a:54: 99:c4:4e:f5:4f:d3:9d:1f:f1:1d:15:b5:c1:20:9f: 62:4a:c4:3a:ee:45:3b:40:69:ee:5a:c3:9d:0d:80: a5:0e:36:28:25:1e:ab:2b:ff:a5:70:d7:c1:ca:99: 4d:48:25:c0:72:3d:48:cb:7e:35:69:b1:b8:73:2d: 51:04:69:f4:a9:a4:5a:78:40:47:2a:1d:f5:20:a1: 6c:fa:da:93:9d:a7:e9:d9:1e:ae:2d:84:04:2b:72: c6:01:f3:20:05:8c:b4:ea:9c:29:e6:19:01:55:bc: 84:b8:2a:42:2f:9b:47:39:79:26:3c:f7:49:51:97: e6:ed:96:b9:84:1c:4a:be:3e:31:ca:6d:41:56:09: 76:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7C:18:21:22:28:35:77:2D:EE:A3:A1:22:18:AD:79:94:46:DE:F9 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec0::/31 Signature Algorithm: sha256WithRSAEncryption 8d:bf:10:64:8c:32:bc:4e:17:30:43:d4:82:ed:59:8f:7b:8a: 34:9b:f6:73:a3:86:17:aa:7f:08:43:a2:fa:40:4f:41:75:de: 77:b1:e5:7b:4f:99:50:d9:72:ad:c5:32:27:e3:90:f3:2a:38: ec:4f:b4:ec:31:5d:ff:0a:b6:8c:c1:ec:c2:a5:1d:b8:27:7d: 39:1c:4e:1b:a9:4f:92:ab:80:64:3f:72:e0:17:4e:b5:c4:5f: 57:f8:0f:57:15:fd:4d:71:5f:ff:04:ca:97:b7:db:67:ba:0b: ab:1d:10:96:84:dd:83:11:e0:53:06:42:19:8f:18:07:bc:f8: 94:f5:11:b9:f7:e4:6c:f7:1e:d1:57:a4:66:2c:ef:bc:11:d0: 76:e8:92:ae:ea:40:1f:32:7e:56:a0:dd:b5:84:fa:0c:c6:f5: a3:ce:c5:8f:58:b0:1a:1b:d7:93:34:ef:0c:50:c7:3b:39:d3: 41:b9:62:14:b2:aa:2c:01:4c:95:87:b2:8f:f0:1b:c6:42:90: 2a:a9:4a:2d:e7:cc:41:e9:27:ed:93:64:3b:f0:5c:f8:cd:43: b9:49:41:6a:6d:c5:7b:da:e9:b2:e9:a7:96:07:dd:74:26:e7: dd:77:91:88:f8:78:bf:a6:b2:ad:3c:7c:74:3f:84:e7:ff:97: 16:43:37:d6 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUXEob5jYvdUcb1F+iDBs59iVCwAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNTA1MDkxNjIzNDZaFw0yNjA1MDgxNjI4NDZaMDMxMTAvBgNV BAMTKDMyN0MxODIxMjIyODM1NzcyREVFQTNBMTIyMThBRDc5OTQ0NkRFRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCes9I19ddJDSoKgNoRZZEIzzx8 0yqv/tyazA+LwMspz3+i+OE/0Jw3hXws99diJmxfofn60FEKN96cX1gDMwWCuA4B 8rOw1zbgiWO6I9mtTciXq8gy+/RGG0dg54laKCNqaZAAwknvPMb7zUtdVSZmg8k1 gLh6VJnETvVP050f8R0VtcEgn2JKxDruRTtAae5aw50NgKUONiglHqsr/6Vw18HK mU1IJcByPUjLfjVpsbhzLVEEafSppFp4QEcqHfUgoWz62pOdp+nZHq4thAQrcsYB 8yAFjLTqnCnmGQFVvIS4KkIvm0c5eSY890lRl+btlrmEHEq+PjHKbUFWCXaTAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUMnwYISIoNXct7qOhIhiteZRG3vkwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUF BzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzAzYTNhMmYzMzMxMmQzNDM4MjAzZDNlMjAzMTM0MzYzMTM4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUBKhQewDANBgkqhkiG9w0BAQsFAAOCAQEAjb8QZIwyvE4XMEPUgu1Z j3uKNJv2c6OGF6p/CEOi+kBPQXXed7Hle0+ZUNlyrcUyJ+OQ8yo47E+07DFd/wq2 jMHswqUduCd9ORxOG6lPkquAZD9y4BdOtcRfV/gPVxX9TXFf/wTKl7fbZ7oLqx0Q loTdgxHgUwZCGY8YB7z4lPURuffkbPce0VekZizvvBHQduiSrupAHzJ+VqDdtYT6 DMb1o87Fj1iwGhvXkzTvDFDHOznTQbliFLKqLAFMlYeyj/AbxkKQKqlKLefMQekn 7ZNkO/Bc+M1DuUlBam3Fe9rpsumnlgfddCbn3XeRiPh4v6ayrTx8dD+E5/+XFkM3 1g== -----END CERTIFICATE-----Generated at Sun Jun 15 11:35:29 2025 by rpki-client