$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: MyeYfbLc0//rjwnR8ZJ3TnxqQq4JflTHlrUTLQvk3gU= Subject key identifier: 4F:88:0C:E9:E1:85:74:BB:98:0C:9B:08:8B:25:A2:3A:EC:4A:D9:3E Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 2986700A7B410849DC959D9D609A80EA53D33A0E Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 13 Jun 2025 06:28:34 +0000 ROA not before: Fri 13 Jun 2025 06:23:34 +0000 ROA not after: Fri 12 Jun 2026 06:28:34 +0000 asID: 215364 IP address blocks: 2a14:7581:90fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:86:70:0a:7b:41:08:49:dc:95:9d:9d:60:9a:80:ea:53:d3:3a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:34 2025 GMT Not After : Jun 12 06:28:34 2026 GMT Subject: CN=4F880CE9E18574BB980C9B088B25A23AEC4AD93E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b1:a7:b5:e8:98:ae:7d:5e:2c:66:0d:1c:24: 53:06:9a:93:1a:ac:9e:ce:bb:26:07:46:93:a4:95: 83:c9:d6:9d:06:56:63:ea:a4:38:8a:f3:7a:88:45: 0a:6b:5f:9e:35:fc:a4:0c:87:62:b8:6c:9c:85:88: 23:3a:9c:2b:55:5e:c9:70:2d:0f:96:82:cd:e9:ea: 59:41:a8:7d:06:9e:fa:f1:53:4d:b8:64:b3:88:2f: 9a:8d:ac:ff:ff:ff:1b:00:90:16:e6:32:27:bc:82: 93:3b:a8:f8:6e:34:99:68:f9:2f:db:82:60:c8:d4: 94:d5:3f:15:c7:6c:76:55:18:9b:04:b5:a4:5b:3e: e4:1a:4b:43:3e:fa:c8:ac:25:01:16:09:ec:78:d3: 61:33:c2:1c:c5:e2:a7:76:e4:6d:8c:87:2a:66:7f: 32:0e:1f:d0:67:46:27:b6:02:b1:41:ce:a6:b2:7f: 4f:5d:56:7e:06:65:05:4d:a9:3f:83:5c:ff:56:df: e2:b4:ef:72:66:90:86:2d:8d:fb:dd:ef:c2:75:1e: 83:21:7b:52:14:ea:36:46:dc:58:23:fd:c3:ba:12: e5:23:d3:c1:c1:f6:4a:08:2c:9e:37:96:39:5f:a4: 57:dd:e5:a2:3d:51:6d:7c:7b:02:ba:28:b9:ae:12: 23:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:88:0C:E9:E1:85:74:BB:98:0C:9B:08:8B:25:A2:3A:EC:4A:D9:3E X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90fe::/48 Signature Algorithm: sha256WithRSAEncryption 6d:e5:f8:a2:e5:fd:47:62:72:d3:d5:e5:00:db:d2:76:fc:65: 5f:89:bd:23:07:23:d8:b5:de:f8:62:99:72:bd:03:1c:35:a5: be:21:84:d2:45:38:64:39:7c:0b:a5:fd:25:a7:12:b6:21:2b: 6f:1f:53:15:bd:38:e9:d3:89:71:de:64:17:18:ef:2d:16:a4: ed:94:93:20:c7:25:5c:ef:48:71:05:4d:93:fd:86:b1:45:8f: 04:65:d8:41:31:fd:67:ae:66:18:1d:c4:2d:75:10:a3:04:d9: b5:2b:2d:2c:cc:38:6c:6b:bb:a2:e6:5a:87:e3:df:3b:85:e5: 8b:66:b5:37:53:a9:f1:35:9e:05:e1:2e:70:ab:ad:78:c6:8b: f1:45:7f:a3:6f:8c:b0:2f:20:fa:ab:63:94:18:df:b7:f3:e3: 6d:15:ff:72:1b:70:b1:08:4c:9a:0b:d4:27:89:93:22:0f:b3: fa:c7:a9:91:c2:14:9f:ff:cc:9a:a5:e1:d4:9c:56:1b:60:11: 8b:67:9b:f4:8f:8b:bb:04:4a:45:de:29:93:d2:a2:f5:08:13: 15:59:2f:37:c2:63:c0:b8:b3:7c:93:26:3e:4a:71:e1:73:59: b5:45:a6:44:bd:47:e2:ab:d9:f6:d2:3a:b3:1c:37:80:3b:cc: ab:38:6e:e5 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUKYZwCntBCEnclZ2dYJqA6lPTOg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzRaFw0yNjA2MTIwNjI4MzRaMDMxMTAvBgNV BAMTKDRGODgwQ0U5RTE4NTc0QkI5ODBDOUIwODhCMjVBMjNBRUM0QUQ5M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4sae16JiufV4sZg0cJFMGmpMa rJ7OuyYHRpOklYPJ1p0GVmPqpDiK83qIRQprX541/KQMh2K4bJyFiCM6nCtVXslw LQ+Wgs3p6llBqH0GnvrxU024ZLOIL5qNrP///xsAkBbmMie8gpM7qPhuNJlo+S/b gmDI1JTVPxXHbHZVGJsEtaRbPuQaS0M++sisJQEWCex402EzwhzF4qd25G2Mhypm fzIOH9BnRie2ArFBzqayf09dVn4GZQVNqT+DXP9W3+K073JmkIYtjfvd78J1HoMh e1IU6jZG3Fgj/cO6EuUj08HB9koILJ43ljlfpFfd5aI9UW18ewK6KLmuEiPdAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUT4gM6eGFdLuYDJsIiyWiOuxK2T4wHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZD+MA0GCSqGSIb3DQEBCwUAA4IBAQBt 5fii5f1HYnLT1eUA29J2/GVfib0jByPYtd74YplyvQMcNaW+IYTSRThkOXwLpf0l pxK2IStvH1MVvTjp04lx3mQXGO8tFqTtlJMgxyVc70hxBU2T/YaxRY8EZdhBMf1n rmYYHcQtdRCjBNm1Ky0szDhsa7ui5lqH4987heWLZrU3U6nxNZ4F4S5wq614xovx RX+jb4ywLyD6q2OUGN+38+NtFf9yG3CxCEyaC9QniZMiD7P6x6mRwhSf/8yapeHU nFYbYBGLZ5v0j4u7BEpF3imT0qL1CBMVWS83wmPAuLN8kyY+SnHhc1m1RaZEvUfi q9n20jqzHDeAO8yrOG7l -----END CERTIFICATE-----Generated at Sun Jun 15 17:23:47 2025 by rpki-client