$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/326131343a373538343a346630303a3a2f34302d3430203d3e20323132353136.roa File: 326131343a373538343a346630303a3a2f34302d3430203d3e20323132353136.roa (raw, json) Hash identifier: w8qLN4QSYjEpdJCkomXgGfT8US2E2zuhO/hns/+C5XM= Subject key identifier: CC:67:FB:59:CF:3C:A8:9F:93:15:39:E4:AF:21:F1:30:49:23:71:20 Certificate issuer: /CN=AC2082F41576F66D1AA264309E33E738246AC454 Certificate serial: 39BE12B22DC3D6690EA36E403F7D2BB804C9D7A3 Authority key identifier: AC:20:82:F4:15:76:F6:6D:1A:A2:64:30:9E:33:E7:38:24:6A:C4:54 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AC2082F41576F66D1AA264309E33E738246AC454.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/326131343a373538343a346630303a3a2f34302d3430203d3e20323132353136.roa Signing time: Thu 12 Jun 2025 16:38:16 +0000 ROA not before: Thu 12 Jun 2025 16:33:16 +0000 ROA not after: Thu 11 Jun 2026 16:38:16 +0000 asID: 212516 IP address blocks: 2a14:7584:4f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.crl rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AC2082F41576F66D1AA264309E33E738246AC454.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:be:12:b2:2d:c3:d6:69:0e:a3:6e:40:3f:7d:2b:b8:04:c9:d7:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC2082F41576F66D1AA264309E33E738246AC454 Validity Not Before: Jun 12 16:33:16 2025 GMT Not After : Jun 11 16:38:16 2026 GMT Subject: CN=CC67FB59CF3CA89F931539E4AF21F13049237120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f8:3e:b9:3e:32:fe:8b:aa:05:35:4a:ef:17: 7f:d3:bd:4b:91:6d:ba:ed:c1:88:cc:a6:8b:ee:d3: ea:bf:c0:c4:76:77:0c:b2:b1:7a:d6:e7:5f:e6:95: 48:14:8f:bd:71:38:2a:83:78:f2:d3:ef:d3:46:48: 8b:2f:37:72:8b:c4:81:6c:e7:07:e4:51:6b:8a:49: b5:6c:40:de:03:5e:91:b3:85:28:92:52:f7:68:f4: d9:82:cd:d7:56:5a:24:93:45:3b:56:f7:22:12:25: 96:ef:1c:da:43:c6:47:36:45:8f:56:c9:e3:6d:44: 1b:2d:e8:c7:9c:22:1f:08:37:f3:1d:37:1b:d1:07: 17:8d:84:53:e2:a0:b1:7b:3b:24:0f:75:56:6f:a3: bd:be:2f:cc:24:97:b4:22:d6:f0:54:b8:79:1d:36: 3b:78:d1:8f:72:58:7e:dc:26:d9:c0:12:ca:90:f3: b6:fd:ad:d4:07:f1:94:17:be:c8:87:4a:4c:48:42: ed:81:2f:1e:5a:87:b0:c8:59:44:1e:7e:d3:9c:b6: 2b:8a:fe:64:bd:74:f8:92:4b:1b:cb:18:85:a1:dd: 5d:11:9c:3d:fa:32:ce:92:4e:e9:26:d8:c2:6d:23: 51:b0:cf:bc:8e:76:cb:b8:57:84:c0:6d:44:ff:f7: a6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:67:FB:59:CF:3C:A8:9F:93:15:39:E4:AF:21:F1:30:49:23:71:20 X509v3 Authority Key Identifier: keyid:AC:20:82:F4:15:76:F6:6D:1A:A2:64:30:9E:33:E7:38:24:6A:C4:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AC2082F41576F66D1AA264309E33E738246AC454.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/326131343a373538343a346630303a3a2f34302d3430203d3e20323132353136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:4f00::/40 Signature Algorithm: sha256WithRSAEncryption b5:74:e3:5b:3c:10:8e:f5:16:d4:b0:f0:6c:18:d9:64:6b:e8: ac:4a:ec:2f:14:05:89:7f:81:2d:c8:85:d2:82:32:fc:b1:42: 5f:dd:1d:47:f3:04:e5:90:73:c4:8d:75:66:0a:ed:83:5a:0f: 91:87:5b:09:76:d5:4e:a8:1b:89:a9:ee:81:f2:9b:8c:48:ab: 82:fc:93:fc:99:fc:94:29:04:df:c5:6a:4e:2b:7c:0f:71:91: 0a:38:25:6a:03:8a:9b:62:4f:b4:58:34:66:6c:5e:5a:95:9c: f7:d6:7e:f5:7d:fc:7c:33:6e:4c:ce:7a:a2:62:b7:06:24:2d: 92:3f:4e:a5:48:b9:6a:7b:22:b0:7d:40:97:32:2a:ed:bf:06: fd:d6:7c:b8:e1:f6:cc:c5:2e:c0:84:88:e6:41:d4:a8:2d:fd: 22:c9:f5:28:43:fc:e8:bf:28:9b:46:e4:21:bc:14:2f:7b:c0: 86:c1:20:55:ee:fd:a9:05:61:08:9d:67:ac:61:bf:1c:c6:6f: 3c:bd:aa:db:e1:a4:cf:f7:03:18:f3:89:7e:df:65:57:68:95: fd:ae:3a:be:11:ac:81:c6:bf:43:03:02:ec:a4:55:db:9b:e2: c6:09:14:ff:4b:e2:af:10:10:73:f6:d9:0d:2b:a2:8d:01:c1: d6:2d:83:80 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUOb4Ssi3D1mkOo25AP30ruATJ16MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyMDgyRjQxNTc2RjY2RDFBQTI2NDMwOUUzM0U3Mzgy NDZBQzQ1NDAeFw0yNTA2MTIxNjMzMTZaFw0yNjA2MTExNjM4MTZaMDMxMTAvBgNV BAMTKENDNjdGQjU5Q0YzQ0E4OUY5MzE1MzlFNEFGMjFGMTMwNDkyMzcxMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo+D65PjL+i6oFNUrvF3/TvUuR bbrtwYjMpovu0+q/wMR2dwyysXrW51/mlUgUj71xOCqDePLT79NGSIsvN3KLxIFs 5wfkUWuKSbVsQN4DXpGzhSiSUvdo9NmCzddWWiSTRTtW9yISJZbvHNpDxkc2RY9W yeNtRBst6MecIh8IN/MdNxvRBxeNhFPioLF7OyQPdVZvo72+L8wkl7Qi1vBUuHkd Njt40Y9yWH7cJtnAEsqQ87b9rdQH8ZQXvsiHSkxIQu2BLx5ah7DIWUQeftOctiuK /mS9dPiSSxvLGIWh3V0RnD36Ms6STukm2MJtI1Gwz7yOdsu4V4TAbUT/96ZNAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUzGf7Wc88qJ+TFTnkryHxMEkjcSAwHwYDVR0j BBgwFoAUrCCC9BV29m0aomQwnjPnOCRqxFQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTljODNlNWMtNGI1NS00YTFhLTgwMDMtMWI3ZWNjNTFk NDdhLzIvQUMyMDgyRjQxNTc2RjY2RDFBQTI2NDMwOUUzM0U3MzgyNDZBQzQ1NC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BQzIwODJGNDE1NzZGNjZEMUFBMjY0MzA5 RTMzRTczODI0NkFDNDU0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81OWM4M2U1Yy00YjU1LTRhMWEtODAwMy0xYjdlY2M1MWQ0N2EvMi8zMjYxMzEz NDNhMzczNTM4MzQzYTM0NjYzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTMyMzUzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1hE8wDQYJKoZIhvcNAQELBQADggEBALV0 41s8EI71FtSw8GwY2WRr6KxK7C8UBYl/gS3IhdKCMvyxQl/dHUfzBOWQc8SNdWYK 7YNaD5GHWwl21U6oG4mp7oHym4xIq4L8k/yZ/JQpBN/Fak4rfA9xkQo4JWoDipti T7RYNGZsXlqVnPfWfvV9/HwzbkzOeqJitwYkLZI/TqVIuWp7IrB9QJcyKu2/Bv3W fLjh9szFLsCEiOZB1Kgt/SLJ9ShD/Oi/KJtG5CG8FC97wIbBIFXu/akFYQidZ6xh vxzGbzy9qtvhpM/3AxjziX7fZVdolf2uOr4RrIHGv0MDAuykVdub4sYJFP9L4q8Q EHP22Q0roo0BwdYtg4A= -----END CERTIFICATE-----Generated at Sun Jun 15 22:35:39 2025 by rpki-client