$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa File: 326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa (raw, json) Hash identifier: imEjvtvCCz1eqwuI8/eFHCFB+WwTlJEDfPXRombfVNU= Subject key identifier: 27:6D:9A:BB:61:BE:FD:B7:6B:6D:B4:FE:4A:2E:4E:6A:E9:A3:DE:0E Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 7BCBF67889CB21F7E76B27EC61E2F6E9864AE2CF Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa Signing time: Fri 13 Jun 2025 06:28:34 +0000 ROA not before: Fri 13 Jun 2025 06:23:34 +0000 ROA not after: Fri 12 Jun 2026 06:28:34 +0000 asID: 215364 IP address blocks: 2a14:7581:90a0::/43 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:cb:f6:78:89:cb:21:f7:e7:6b:27:ec:61:e2:f6:e9:86:4a:e2:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:34 2025 GMT Not After : Jun 12 06:28:34 2026 GMT Subject: CN=276D9ABB61BEFDB76B6DB4FE4A2E4E6AE9A3DE0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5b:a8:da:ed:5e:e1:d9:b9:c6:bc:2a:6a:e0: 6d:66:b5:9b:b8:3c:fe:6e:5f:29:a0:86:1c:b7:cd: b5:ba:dd:8b:bc:dd:50:ef:fe:e7:2a:67:3e:5e:bc: 8e:b2:cb:8d:a3:57:a2:20:10:19:9c:ea:69:32:3d: 5e:a4:f6:6b:12:64:8a:c9:36:39:95:73:21:93:65: db:6c:59:7b:7b:af:6f:9c:5d:19:93:fa:07:02:f5: 4d:37:c9:94:6a:8b:96:f7:68:c2:30:e1:06:e1:6c: 19:b6:67:51:22:fd:a3:5b:f1:c1:a5:c6:c7:b0:36: ab:3d:09:b3:10:fa:4d:0e:c9:26:50:47:b9:05:60: e1:bd:fe:f3:64:96:65:6d:f3:13:ff:5b:9e:59:3d: 3d:81:12:c5:45:2e:b6:d4:54:23:48:15:31:45:c0: 41:d3:fe:d5:18:75:56:0d:d0:07:86:cb:b0:95:5c: 0e:92:52:c3:60:f2:39:e4:97:5e:34:c2:37:49:2a: 82:d0:6b:a1:b8:fd:ea:a3:b2:0f:f0:b1:f2:e0:eb: 61:3e:8a:09:d9:8e:d8:a4:c3:49:b3:8b:d8:9d:70: a3:25:91:cf:de:c4:b1:83:6e:95:ef:cb:50:5e:a0: 10:8d:53:7c:62:ab:c7:0f:d1:a8:26:ca:28:a7:05: 58:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6D:9A:BB:61:BE:FD:B7:6B:6D:B4:FE:4A:2E:4E:6A:E9:A3:DE:0E X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90a0::/43 Signature Algorithm: sha256WithRSAEncryption 95:da:2b:e1:00:bf:f1:21:38:f2:ab:0b:c8:24:6d:c2:fd:ff: e4:be:8c:a0:1e:d5:9e:3b:d3:a8:65:b7:71:42:73:10:1e:d1: 6f:25:9d:a2:e6:a3:6f:54:16:79:4a:b9:f0:ca:a5:d8:34:ad: fe:81:87:a4:6e:b4:d2:ed:ac:2e:16:71:c8:7e:a8:9b:bc:bb: 9a:1b:22:0f:2d:a7:cd:f7:e7:8f:c5:41:ab:37:22:32:d0:6a: 6f:68:30:76:1e:bb:1b:ab:1f:cd:2e:03:43:63:ae:4f:cc:f8: 49:2a:e5:85:d3:28:68:1c:51:cd:7a:fe:e8:32:0d:c1:b8:68: 45:c5:69:ab:18:ac:3e:a7:38:15:81:fc:3f:3d:ca:8f:d6:73: fb:64:66:12:8f:61:3a:bf:f1:99:fc:80:1f:42:5e:bf:92:4e: 1e:bf:0a:e1:3e:a1:47:6b:15:ca:b7:06:0b:a6:16:d6:d7:ca: f7:36:b1:36:6f:b0:a3:72:a3:e0:44:1f:68:a0:38:d6:4a:e5: 01:2f:6d:61:41:bc:07:2c:c4:e4:5b:50:c5:f9:ed:1b:b3:d6: f2:41:9d:83:16:52:2a:4d:47:f8:cf:f2:60:41:92:96:ae:d6: 48:fc:24:c0:1a:ef:ae:20:80:e4:8e:7d:99:b7:be:11:8b:10: c2:e4:4b:b4 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUe8v2eInLIffnayfsYeL26YZK4s8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzRaFw0yNjA2MTIwNjI4MzRaMDMxMTAvBgNV BAMTKDI3NkQ5QUJCNjFCRUZEQjc2QjZEQjRGRTRBMkU0RTZBRTlBM0RFMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwW6ja7V7h2bnGvCpq4G1mtZu4 PP5uXymghhy3zbW63Yu83VDv/ucqZz5evI6yy42jV6IgEBmc6mkyPV6k9msSZIrJ NjmVcyGTZdtsWXt7r2+cXRmT+gcC9U03yZRqi5b3aMIw4QbhbBm2Z1Ei/aNb8cGl xsewNqs9CbMQ+k0OySZQR7kFYOG9/vNklmVt8xP/W55ZPT2BEsVFLrbUVCNIFTFF wEHT/tUYdVYN0AeGy7CVXA6SUsNg8jnkl140wjdJKoLQa6G4/eqjsg/wsfLg62E+ ignZjtikw0mzi9idcKMlkc/exLGDbpXvy1BeoBCNU3xiq8cP0agmyiinBVhdAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUJ22au2G+/bdrbbT+Si5Oaumj3g4wHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2MTMwM2EzYTJmMzQzMzJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcFKhR1gZCgMA0GCSqGSIb3DQEBCwUAA4IBAQCV 2ivhAL/xITjyqwvIJG3C/f/kvoygHtWeO9OoZbdxQnMQHtFvJZ2i5qNvVBZ5Srnw yqXYNK3+gYekbrTS7awuFnHIfqibvLuaGyIPLafN9+ePxUGrNyIy0GpvaDB2Hrsb qx/NLgNDY65PzPhJKuWF0yhoHFHNev7oMg3BuGhFxWmrGKw+pzgVgfw/PcqP1nP7 ZGYSj2E6v/GZ/IAfQl6/kk4evwrhPqFHaxXKtwYLphbW18r3NrE2b7CjcqPgRB9o oDjWSuUBL21hQbwHLMTkW1DF+e0bs9byQZ2DFlIqTUf4z/JgQZKWrtZI/CTAGu+u IIDkjn2Zt74RixDC5Eu0 -----END CERTIFICATE-----Generated at Sun Jun 15 17:26:06 2025 by rpki-client