$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393032303a3a2f34342d3438203d3e203339373533.roa File: 326131343a373538313a393032303a3a2f34342d3438203d3e203339373533.roa (raw, json) Hash identifier: 0nNVfH0UNkgevPAH9ITuwY5tE24LlYCDjFx46F3vtM0= Subject key identifier: 62:0D:8A:65:2A:81:BD:AC:9C:DC:EC:82:A0:FB:E6:F5:A0:43:D9:38 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 319F6A8A0520BF719DA99C34250E14FDF89ED7F2 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393032303a3a2f34342d3438203d3e203339373533.roa Signing time: Fri 13 Jun 2025 06:28:33 +0000 ROA not before: Fri 13 Jun 2025 06:23:33 +0000 ROA not after: Fri 12 Jun 2026 06:28:33 +0000 asID: 39753 IP address blocks: 2a14:7581:9020::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9f:6a:8a:05:20:bf:71:9d:a9:9c:34:25:0e:14:fd:f8:9e:d7:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:33 2025 GMT Not After : Jun 12 06:28:33 2026 GMT Subject: CN=620D8A652A81BDAC9CDCEC82A0FBE6F5A043D938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a6:6b:79:9a:40:9c:9f:ba:89:19:47:01:e7: 7e:cb:2e:83:f8:bd:d6:b7:d0:52:3a:c2:3d:0f:d9: 0e:4f:59:76:3a:bd:d1:a3:62:4a:55:38:aa:a4:36: fb:0d:05:16:17:59:fa:a1:cd:fd:09:b4:6d:ea:83: 09:4a:73:e1:e4:be:ae:00:25:ed:e0:5c:8f:20:45: 99:cf:df:b6:79:dd:df:56:af:1f:26:75:55:b0:2e: ab:9f:19:cb:fc:fe:c5:be:c6:f2:13:21:eb:29:d9: 0e:66:70:7b:66:2e:1c:0e:a7:32:86:5a:41:5d:c8: ca:6e:47:a2:73:f8:e6:c0:73:98:56:86:3b:35:0f: 65:20:da:e3:be:ba:a0:91:1a:1d:58:5e:85:ba:da: f5:75:a0:df:82:f2:a3:35:7f:f1:f1:63:36:9d:38: f9:62:e9:2d:ce:e9:73:9b:75:81:a2:f1:73:5b:af: 7f:4a:5d:fa:5b:8a:46:3b:d7:a2:7a:7d:7d:68:8f: b7:41:fc:4c:5a:86:4a:92:50:ad:28:33:2a:08:64: f7:27:09:9b:2e:38:c8:33:7a:2f:33:23:ff:fd:28: ea:e6:96:00:94:30:7f:dd:2b:67:c5:a2:a6:09:70: 9a:94:00:a5:05:58:29:a6:7f:f8:e5:54:66:a3:c5: 9d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0D:8A:65:2A:81:BD:AC:9C:DC:EC:82:A0:FB:E6:F5:A0:43:D9:38 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393032303a3a2f34342d3438203d3e203339373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9020::/44 Signature Algorithm: sha256WithRSAEncryption 3c:bc:a9:73:d0:7c:9a:55:54:8a:99:a1:12:a0:86:c3:d7:d6: bd:b4:3c:4c:a2:07:7d:59:72:d1:3d:5d:af:5b:62:ed:e4:b0: 76:c3:a4:63:fc:47:94:4c:e1:33:c5:11:43:0c:44:72:6e:bf: 18:1a:68:f2:3e:ff:fe:a4:45:94:77:52:85:59:86:79:1f:a2: d4:9e:50:12:86:c5:31:6d:a7:ef:88:54:7c:ed:7d:ed:c1:52: d0:d6:a6:f4:8b:03:95:71:3e:20:ff:df:a2:83:9e:54:ed:40: a7:64:d3:9d:58:ff:5a:c7:f5:8c:47:b0:d1:dc:0b:12:af:eb: ce:b6:f0:b7:47:4d:5d:71:5d:6a:49:84:43:85:a9:28:16:c9: 68:cd:6c:0b:1d:8d:fe:8c:bd:6e:30:9f:0e:e9:65:d0:b2:bb: 60:b1:47:95:c7:63:36:03:cd:65:90:ca:76:d6:04:31:f3:3c: cd:31:10:c3:c9:4d:67:9d:26:41:f5:a5:7f:ec:47:70:ae:75: 94:c6:29:6a:e8:c0:8d:eb:6b:f9:76:bf:1d:b4:b7:bf:d0:ac: 04:ef:3e:cb:91:e8:e3:b3:a6:8a:b8:4d:17:43:37:5b:ba:f5: c0:da:d6:e7:2c:8b:55:4c:6e:1a:cb:42:a4:f2:6e:a2:5f:48: 29:98:65:7f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUMZ9qigUgv3GdqZw0JQ4U/fie1/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzNaFw0yNjA2MTIwNjI4MzNaMDMxMTAvBgNV BAMTKDYyMEQ4QTY1MkE4MUJEQUM5Q0RDRUM4MkEwRkJFNkY1QTA0M0Q5MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4pmt5mkCcn7qJGUcB537LLoP4 vda30FI6wj0P2Q5PWXY6vdGjYkpVOKqkNvsNBRYXWfqhzf0JtG3qgwlKc+Hkvq4A Je3gXI8gRZnP37Z53d9Wrx8mdVWwLqufGcv8/sW+xvITIesp2Q5mcHtmLhwOpzKG WkFdyMpuR6Jz+ObAc5hWhjs1D2Ug2uO+uqCRGh1YXoW62vV1oN+C8qM1f/HxYzad OPli6S3O6XObdYGi8XNbr39KXfpbikY716J6fX1oj7dB/ExahkqSUK0oMyoIZPcn CZsuOMgzei8zI//9KOrmlgCUMH/dK2fFoqYJcJqUAKUFWCmmf/jlVGajxZ1VAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUYg2KZSqBvayc3OyCoPvm9aBD2TgwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzAzMjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzMz OTM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYGQIDANBgkqhkiG9w0BAQsFAAOCAQEAPLyp c9B8mlVUipmhEqCGw9fWvbQ8TKIHfVly0T1dr1ti7eSwdsOkY/xHlEzhM8URQwxE cm6/GBpo8j7//qRFlHdShVmGeR+i1J5QEobFMW2n74hUfO197cFS0Nam9IsDlXE+ IP/fooOeVO1Ap2TTnVj/Wsf1jEew0dwLEq/rzrbwt0dNXXFdakmEQ4WpKBbJaM1s Cx2N/oy9bjCfDull0LK7YLFHlcdjNgPNZZDKdtYEMfM8zTEQw8lNZ50mQfWlf+xH cK51lMYpaujAjetr+Xa/HbS3v9CsBO8+y5Ho47OmirhNF0M3W7r1wNrW5yyLVUxu GstCpPJuol9IKZhlfw== -----END CERTIFICATE-----Generated at Sun Jun 15 19:12:55 2025 by rpki-client