$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 5IFSShC1J1DPKr9fgEjy0DHzTqmR8W17B+sGrWUb29Q= Subject key identifier: B8:E2:BC:74:CF:D4:58:60:C5:F3:F0:2E:B1:6D:10:B3:77:DF:5D:F4 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 60A45620483C4EDE60EF732E29C43B9146783002 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 13 Jun 2025 06:28:34 +0000 ROA not before: Fri 13 Jun 2025 06:23:34 +0000 ROA not after: Fri 12 Jun 2026 06:28:34 +0000 asID: 215364 IP address blocks: 2a14:7581:90ee::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:a4:56:20:48:3c:4e:de:60:ef:73:2e:29:c4:3b:91:46:78:30:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:34 2025 GMT Not After : Jun 12 06:28:34 2026 GMT Subject: CN=B8E2BC74CFD45860C5F3F02EB16D10B377DF5DF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:22:69:68:e9:56:8f:ce:59:de:5d:5c:06:74: 89:4d:f4:8b:6c:e9:92:c7:90:4f:88:97:03:63:d4: 67:b0:cd:9e:ba:49:78:42:6f:bb:d4:41:f6:60:ab: 06:87:5f:b6:86:96:9f:81:4e:bd:f4:e2:7c:4f:21: 07:78:ab:9b:1c:aa:ee:fd:31:74:d2:03:e9:3d:7b: bb:0c:b2:32:19:3b:a4:38:4e:0e:a7:45:78:e6:4e: e7:a0:93:0e:f7:7a:8e:70:6b:b6:ae:d8:29:99:e4: 01:8d:83:09:0e:11:76:1b:65:cd:12:3d:de:00:49: 9b:b6:3d:71:4c:2d:71:1b:65:19:79:36:52:bb:1d: 9f:20:b0:fd:10:2e:4e:b0:2e:be:05:f0:19:40:a5: 65:01:12:65:77:58:3f:01:75:ef:d8:a5:2f:ab:55: e9:10:3a:db:ff:69:56:e5:ab:2e:93:b4:1f:93:78: 7d:36:cc:96:82:bd:d2:92:df:1e:fb:68:8f:82:d4: df:eb:4f:81:fc:cb:51:ee:de:d6:15:60:7d:f4:8a: 93:4b:d8:c3:00:5d:5a:d7:63:31:90:80:67:e7:96: 43:37:f1:80:f0:9b:b5:a0:2e:8e:0a:33:73:31:f3: 21:33:7d:d0:be:3a:00:ec:f1:46:66:1d:b5:58:1f: 3f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E2:BC:74:CF:D4:58:60:C5:F3:F0:2E:B1:6D:10:B3:77:DF:5D:F4 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90ee::/48 Signature Algorithm: sha256WithRSAEncryption 0f:b8:23:74:77:0e:f6:26:c6:e3:51:ef:4e:95:09:5c:d9:20: 05:d1:e4:f0:30:25:5f:ab:8e:9f:e1:c5:30:73:b2:09:aa:9b: 45:78:8b:87:7d:d5:02:ed:dd:43:20:2b:5e:46:1d:3c:6f:a6: d8:23:ae:22:c3:2c:98:4c:e5:9d:ec:6a:85:db:57:78:11:3c: 89:ff:7c:ff:d7:99:69:4f:65:e4:2e:27:2f:e6:e7:e1:11:2e: a1:ac:8f:11:f8:31:ff:d7:7c:d0:17:61:a3:b5:c2:8b:cd:99: 79:07:19:fa:9a:be:30:5b:fe:c6:9e:fc:c5:36:32:b8:98:ef: f9:90:c3:e8:b5:86:29:08:2d:8f:73:92:d9:6e:e5:d2:89:66: 78:46:37:df:7c:33:b4:9c:d0:6b:97:bf:41:1b:cf:12:42:26: 8d:99:e7:cb:65:27:17:72:56:57:c2:dc:a1:38:96:08:35:14: ff:02:ca:5b:fa:94:d7:32:bd:b3:35:5b:87:5b:16:26:38:80: b3:6e:cd:70:a3:03:7d:f0:f0:c1:85:0d:d3:a0:ac:81:ae:07: c4:f0:20:d4:7d:fa:43:82:6b:f4:f9:07:5d:72:2a:dd:b9:06: 8b:26:5a:85:49:8f:f6:78:b3:89:4b:da:62:da:47:f5:c6:13: cf:b1:90:44 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYKRWIEg8Tt5g73MuKcQ7kUZ4MAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzRaFw0yNjA2MTIwNjI4MzRaMDMxMTAvBgNV BAMTKEI4RTJCQzc0Q0ZENDU4NjBDNUYzRjAyRUIxNkQxMEIzNzdERjVERjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaImlo6VaPzlneXVwGdIlN9Its 6ZLHkE+IlwNj1GewzZ66SXhCb7vUQfZgqwaHX7aGlp+BTr304nxPIQd4q5scqu79 MXTSA+k9e7sMsjIZO6Q4Tg6nRXjmTuegkw73eo5wa7au2CmZ5AGNgwkOEXYbZc0S Pd4ASZu2PXFMLXEbZRl5NlK7HZ8gsP0QLk6wLr4F8BlApWUBEmV3WD8Bde/YpS+r VekQOtv/aVblqy6TtB+TeH02zJaCvdKS3x77aI+C1N/rT4H8y1Hu3tYVYH30ipNL 2MMAXVrXYzGQgGfnlkM38YDwm7WgLo4KM3Mx8yEzfdC+OgDs8UZmHbVYHz/BAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUuOK8dM/UWGDF8/AusW0Qs3ffXfQwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NTY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZDuMA0GCSqGSIb3DQEBCwUAA4IBAQAP uCN0dw72JsbjUe9OlQlc2SAF0eTwMCVfq46f4cUwc7IJqptFeIuHfdUC7d1DICte Rh08b6bYI64iwyyYTOWd7GqF21d4ETyJ/3z/15lpT2XkLicv5ufhES6hrI8R+DH/ 13zQF2GjtcKLzZl5Bxn6mr4wW/7GnvzFNjK4mO/5kMPotYYpCC2Pc5LZbuXSiWZ4 RjfffDO0nNBrl79BG88SQiaNmefLZScXclZXwtyhOJYINRT/Aspb+pTXMr2zNVuH WxYmOICzbs1wowN98PDBhQ3ToKyBrgfE8CDUffpDgmv0+QddcirduQaLJlqFSY/2 eLOJS9pi2kf1xhPPsZBE -----END CERTIFICATE-----Generated at Sun Jun 15 17:11:04 2025 by rpki-client