$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/326131343a373538343a343130303a3a2f34302d3438203d3e20323136333039.roa File: 326131343a373538343a343130303a3a2f34302d3438203d3e20323136333039.roa (raw, json) Hash identifier: dyI/vpBN2up97kkgTILkiXBGaFO4U5IDn0366sa0vPo= Subject key identifier: 08:B7:E5:7E:D4:9C:84:A4:15:23:16:38:B0:A6:C2:E9:75:FB:37:67 Certificate issuer: /CN=AC2082F41576F66D1AA264309E33E738246AC454 Certificate serial: 0AB4679CECD47047FD20F958C27215F6FD09FFEA Authority key identifier: AC:20:82:F4:15:76:F6:6D:1A:A2:64:30:9E:33:E7:38:24:6A:C4:54 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AC2082F41576F66D1AA264309E33E738246AC454.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/326131343a373538343a343130303a3a2f34302d3438203d3e20323136333039.roa Signing time: Thu 12 Jun 2025 16:39:49 +0000 ROA not before: Thu 12 Jun 2025 16:34:49 +0000 ROA not after: Thu 11 Jun 2026 16:39:49 +0000 asID: 216309 IP address blocks: 2a14:7584:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.crl rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AC2082F41576F66D1AA264309E33E738246AC454.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b4:67:9c:ec:d4:70:47:fd:20:f9:58:c2:72:15:f6:fd:09:ff:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC2082F41576F66D1AA264309E33E738246AC454 Validity Not Before: Jun 12 16:34:49 2025 GMT Not After : Jun 11 16:39:49 2026 GMT Subject: CN=08B7E57ED49C84A415231638B0A6C2E975FB3767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8b:bf:1e:c3:4d:4a:13:1a:63:45:77:94:a0: 51:13:ea:f1:2d:bf:cf:d3:38:92:22:89:a6:07:cf: 1b:c4:21:5f:d2:27:82:09:5e:64:8b:70:97:dd:62: 0c:cf:ba:62:bf:a4:03:60:5b:63:de:98:58:8b:cc: 4f:27:30:ea:a6:5b:87:c3:b7:72:70:bc:23:fd:e2: f1:e8:b0:cf:af:a8:ca:96:df:17:b9:a9:62:fd:3e: 9b:dc:5a:21:0b:c8:e9:18:d0:c3:8a:b4:cc:4d:df: 79:58:ed:6e:21:bc:20:63:f5:52:a7:4d:63:ea:ba: 91:d7:51:93:4f:19:54:c1:9a:1f:4e:22:c8:b3:2f: 4d:44:5b:c7:36:64:85:ac:ac:1c:f5:cc:ee:13:2f: 6c:9b:d9:66:9f:93:bb:94:f2:5d:53:ef:45:26:18: d3:da:45:12:7f:6a:5c:44:30:71:ef:67:98:3f:79: 35:5d:1a:89:16:a4:15:8c:27:99:d8:0c:6d:36:61: 73:0f:d1:ff:36:fb:9b:39:84:e8:63:46:0e:b5:49: 3c:2b:b3:8c:80:77:ae:97:03:0c:4e:00:61:c0:a3: 4e:83:96:86:85:dc:59:22:21:f6:af:d7:f7:6b:17: 08:6b:cc:e4:72:fd:db:43:cd:31:1c:d0:45:09:5b: e0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B7:E5:7E:D4:9C:84:A4:15:23:16:38:B0:A6:C2:E9:75:FB:37:67 X509v3 Authority Key Identifier: keyid:AC:20:82:F4:15:76:F6:6D:1A:A2:64:30:9E:33:E7:38:24:6A:C4:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AC2082F41576F66D1AA264309E33E738246AC454.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/326131343a373538343a343130303a3a2f34302d3438203d3e20323136333039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:4100::/40 Signature Algorithm: sha256WithRSAEncryption b0:12:ac:47:ac:c2:b5:b4:4c:92:3d:32:6d:b8:1b:b6:4c:1b: 0c:54:f1:e7:cb:6d:82:da:ec:e6:59:ca:01:43:42:29:8a:36: 2b:bf:27:6e:50:c9:8e:c8:6a:13:d6:e0:3e:ab:55:06:7b:59: 33:bb:e8:fc:0a:98:96:8e:5f:2c:11:83:fb:39:d2:04:b2:4f: f4:03:09:2c:97:29:58:84:80:4b:dc:8a:28:09:b6:80:55:9e: d9:f4:9d:6e:a0:bc:fc:b9:34:cd:f9:4f:f6:e6:59:a1:20:85: 87:12:ba:2f:28:62:56:63:ca:18:b9:27:b2:f3:25:3a:63:c6: 0c:15:3a:3c:e5:6a:c6:86:3a:68:bd:08:99:c8:42:f9:0e:23: 8d:70:e3:fc:02:91:09:39:02:48:20:73:1a:3f:61:d4:e6:88: cc:98:4b:5b:21:21:0f:6e:cc:d9:7d:d0:7c:0c:6b:66:85:bc: 63:90:75:68:87:ec:28:72:70:f6:52:a8:3b:4a:b9:cf:7b:e4: f4:4b:a2:20:ff:a4:37:46:70:21:15:40:fd:0e:aa:94:9f:f7: ea:fc:f6:b3:a1:ad:b3:8a:ee:d3:e1:4e:fa:61:62:d0:cc:6d: 0b:11:95:ab:7a:b1:b8:52:0d:99:fa:50:34:dc:a4:bd:e6:c9: 5e:33:e5:78 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUCrRnnOzUcEf9IPlYwnIV9v0J/+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyMDgyRjQxNTc2RjY2RDFBQTI2NDMwOUUzM0U3Mzgy NDZBQzQ1NDAeFw0yNTA2MTIxNjM0NDlaFw0yNjA2MTExNjM5NDlaMDMxMTAvBgNV BAMTKDA4QjdFNTdFRDQ5Qzg0QTQxNTIzMTYzOEIwQTZDMkU5NzVGQjM3NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8i78ew01KExpjRXeUoFET6vEt v8/TOJIiiaYHzxvEIV/SJ4IJXmSLcJfdYgzPumK/pANgW2PemFiLzE8nMOqmW4fD t3JwvCP94vHosM+vqMqW3xe5qWL9PpvcWiELyOkY0MOKtMxN33lY7W4hvCBj9VKn TWPqupHXUZNPGVTBmh9OIsizL01EW8c2ZIWsrBz1zO4TL2yb2Wafk7uU8l1T70Um GNPaRRJ/alxEMHHvZ5g/eTVdGokWpBWMJ5nYDG02YXMP0f82+5s5hOhjRg61STwr s4yAd66XAwxOAGHAo06DloaF3FkiIfav1/drFwhrzORy/dtDzTEc0EUJW+DVAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUCLflftSchKQVIxY4sKbC6XX7N2cwHwYDVR0j BBgwFoAUrCCC9BV29m0aomQwnjPnOCRqxFQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTljODNlNWMtNGI1NS00YTFhLTgwMDMtMWI3ZWNjNTFk NDdhLzIvQUMyMDgyRjQxNTc2RjY2RDFBQTI2NDMwOUUzM0U3MzgyNDZBQzQ1NC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BQzIwODJGNDE1NzZGNjZEMUFBMjY0MzA5 RTMzRTczODI0NkFDNDU0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81OWM4M2U1Yy00YjU1LTRhMWEtODAwMy0xYjdlY2M1MWQ0N2EvMi8zMjYxMzEz NDNhMzczNTM4MzQzYTM0MzEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM2MzMzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1hEEwDQYJKoZIhvcNAQELBQADggEBALAS rEeswrW0TJI9Mm24G7ZMGwxU8efLbYLa7OZZygFDQimKNiu/J25QyY7IahPW4D6r VQZ7WTO76PwKmJaOXywRg/s50gSyT/QDCSyXKViEgEvciigJtoBVntn0nW6gvPy5 NM35T/bmWaEghYcSui8oYlZjyhi5J7LzJTpjxgwVOjzlasaGOmi9CJnIQvkOI41w 4/wCkQk5Akggcxo/YdTmiMyYS1shIQ9uzNl90HwMa2aFvGOQdWiH7ChycPZSqDtK uc975PRLoiD/pDdGcCEVQP0OqpSf9+r89rOhrbOK7tPhTvphYtDMbQsRlat6sbhS DZn6UDTcpL3myV4z5Xg= -----END CERTIFICATE-----Generated at Mon Jun 16 03:28:45 2025 by rpki-client