$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa File: 326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa (raw, json) Hash identifier: JYfFIGSSsdhSc4V2wOJu9QFkSSC76MmCAjKsdTBmtQA= Subject key identifier: 2F:E0:F1:E4:D6:39:CC:68:66:B4:A0:3F:C5:75:2C:F5:91:15:24:BA Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 14F34CD44D61FEAD2FDF4DDFD1AFA5021CB85F4F Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa Signing time: Fri 13 Jun 2025 06:28:35 +0000 ROA not before: Fri 13 Jun 2025 06:23:35 +0000 ROA not after: Fri 12 Jun 2026 06:28:35 +0000 asID: 215617 IP address blocks: 2a14:7581:90ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f3:4c:d4:4d:61:fe:ad:2f:df:4d:df:d1:af:a5:02:1c:b8:5f:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:35 2025 GMT Not After : Jun 12 06:28:35 2026 GMT Subject: CN=2FE0F1E4D639CC6866B4A03FC5752CF5911524BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:00:01:65:3d:b6:1c:76:e0:a2:3c:5a:c6:a6: dd:a3:6c:00:cd:a8:8f:cb:38:ae:71:ed:8d:84:ab: 58:89:4d:ad:8f:db:e3:4f:09:16:d4:36:93:7e:ba: c4:38:fe:fc:63:3d:35:3e:b1:a9:18:06:bc:6b:3d: e8:eb:10:a5:48:22:3e:23:cc:d2:f5:8b:6d:cb:2d: c2:b0:b0:80:21:dd:58:f7:1a:44:98:4f:db:e0:1b: 3a:af:c6:ad:2a:2f:cc:84:84:93:18:af:c9:9e:b2: 74:45:ee:26:fd:04:d8:5e:ae:aa:e5:ef:b0:be:2d: e2:8d:d2:d8:bb:e3:da:3c:6c:c0:92:b0:46:d7:ef: 37:97:a6:9b:5a:a6:eb:a7:9d:60:35:25:6b:bb:fc: 4d:94:3e:72:25:3f:20:03:57:fa:38:ec:1d:32:12: 49:ed:0d:09:e8:62:ed:00:24:0f:97:00:d4:88:48: 4e:f2:b8:21:d9:c8:82:e0:7f:29:c8:03:28:a8:60: 98:77:05:af:b5:f3:82:4b:39:dc:c9:66:b0:57:5c: cb:3d:9c:f0:d5:8e:00:ca:19:e8:2c:37:5d:69:c6: c2:d0:f1:96:51:4a:30:4f:1a:b9:c0:e4:d6:9e:7b: a6:04:3f:89:68:d0:20:0f:20:c5:22:34:81:81:3a: d8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:E0:F1:E4:D6:39:CC:68:66:B4:A0:3F:C5:75:2C:F5:91:15:24:BA X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90ff::/48 Signature Algorithm: sha256WithRSAEncryption 9e:9e:ea:c8:90:48:01:bc:94:34:a0:e9:4d:05:37:c5:5a:ae: 4d:bb:a4:09:f5:28:6a:e1:6d:c9:67:40:12:f6:c2:ad:08:76: b0:ab:64:e6:2a:bc:8f:e6:4b:ca:9d:27:52:08:47:00:b4:9d: 04:19:74:b2:80:b5:9e:5b:f5:a8:d2:60:f2:da:48:3b:b1:66: 33:91:4b:78:38:9e:98:4f:d1:22:64:92:e9:83:91:6e:fa:43: 06:f6:84:ce:18:65:38:2f:82:0f:cd:dd:6d:8f:a1:77:6e:21: fe:2a:4b:fe:2d:d8:2d:61:8f:80:65:44:a6:b1:84:24:1f:d8: c9:94:38:7e:53:95:76:9d:85:1b:70:0e:ed:fe:2a:ab:6d:39: 83:ec:b9:ae:8a:62:dd:6a:86:f6:3f:c2:c7:1b:5a:f1:7d:37: 42:46:5d:6b:b6:64:09:20:7d:c1:57:c7:3f:fd:eb:a5:27:e0: 44:da:87:27:bd:1f:89:ee:d8:42:d1:f9:dd:04:fb:6d:79:9d: 87:c1:14:a3:f5:d5:8d:19:27:04:b5:e1:ae:45:1b:56:99:d7: 40:8c:8b:41:b6:9e:e1:9f:fe:cd:7a:82:02:77:a4:de:33:b5: 68:26:60:c0:d2:67:e1:dd:90:6d:47:79:20:ee:40:00:c6:09: 56:fc:77:b5 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFPNM1E1h/q0v303f0a+lAhy4X08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzVaFw0yNjA2MTIwNjI4MzVaMDMxMTAvBgNV BAMTKDJGRTBGMUU0RDYzOUNDNjg2NkI0QTAzRkM1NzUyQ0Y1OTExNTI0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQAAFlPbYcduCiPFrGpt2jbADN qI/LOK5x7Y2Eq1iJTa2P2+NPCRbUNpN+usQ4/vxjPTU+sakYBrxrPejrEKVIIj4j zNL1i23LLcKwsIAh3Vj3GkSYT9vgGzqvxq0qL8yEhJMYr8mesnRF7ib9BNherqrl 77C+LeKN0ti749o8bMCSsEbX7zeXpptapuunnWA1JWu7/E2UPnIlPyADV/o47B0y EkntDQnoYu0AJA+XANSISE7yuCHZyILgfynIAyioYJh3Ba+184JLOdzJZrBXXMs9 nPDVjgDKGegsN11pxsLQ8ZZRSjBPGrnA5Naee6YEP4lo0CAPIMUiNIGBOtjLAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUL+Dx5NY5zGhmtKA/xXUs9ZEVJLowHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NjY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzYzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZD/MA0GCSqGSIb3DQEBCwUAA4IBAQCe nurIkEgBvJQ0oOlNBTfFWq5Nu6QJ9Shq4W3JZ0AS9sKtCHawq2TmKryP5kvKnSdS CEcAtJ0EGXSygLWeW/Wo0mDy2kg7sWYzkUt4OJ6YT9EiZJLpg5Fu+kMG9oTOGGU4 L4IPzd1tj6F3biH+Kkv+LdgtYY+AZUSmsYQkH9jJlDh+U5V2nYUbcA7t/iqrbTmD 7LmuimLdaob2P8LHG1rxfTdCRl1rtmQJIH3BV8c//eulJ+BE2ocnvR+J7thC0fnd BPtteZ2HwRSj9dWNGScEteGuRRtWmddAjItBtp7hn/7NeoICd6TeM7VoJmDA0mfh 3ZBtR3kg7kAAxglW/He1 -----END CERTIFICATE-----Generated at Sun Jun 15 22:04:54 2025 by rpki-client