$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa File: 326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa (raw, json) Hash identifier: TejNBoLvDqd6zzS1lptpFez+EdbwzXYJ6yM06vDQ9j0= Subject key identifier: AE:58:5B:30:F9:5F:BA:E7:63:52:39:73:E4:C0:68:C8:92:03:EA:85 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 0DA3D2F15536E3BCAB9895DEA840E780C96D5D10 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa Signing time: Fri 13 Jun 2025 06:28:34 +0000 ROA not before: Fri 13 Jun 2025 06:23:34 +0000 ROA not after: Fri 12 Jun 2026 06:28:34 +0000 asID: 214841 IP address blocks: 2a14:7581:9100::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a3:d2:f1:55:36:e3:bc:ab:98:95:de:a8:40:e7:80:c9:6d:5d:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:34 2025 GMT Not After : Jun 12 06:28:34 2026 GMT Subject: CN=AE585B30F95FBAE763523973E4C068C89203EA85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:06:2b:17:49:70:8c:f7:d1:5a:80:c0:ac:68: 79:f0:11:72:9f:77:c2:0c:3c:75:d0:fc:22:46:7e: b5:77:f6:df:7d:04:f1:dc:e3:f4:3f:0d:b7:0b:d6: 3b:0d:8b:07:16:6f:8c:a6:32:81:05:a9:a8:03:ac: 83:b0:13:f5:37:a4:aa:b6:dd:2b:92:4d:fe:73:bb: 88:98:b5:c6:69:f8:70:bd:d2:13:c5:b0:48:e0:ac: 67:54:e2:43:83:39:72:14:48:8c:fc:a4:d9:36:83: 7c:6f:a0:7b:27:b4:25:42:8b:29:0c:95:a1:93:1f: a9:c5:0e:90:fe:ce:e6:8c:05:af:ba:37:71:77:90: 6e:66:33:d8:59:60:ac:8f:82:fb:96:36:d3:ee:f5: a9:a4:36:d6:bf:4c:d8:de:1d:83:40:58:ae:12:a2: be:10:fb:97:e9:b4:19:81:9e:f3:9d:46:5e:a4:f8: 46:6c:79:a2:76:74:80:2b:b8:c6:f1:d0:c2:88:12: 50:b4:d6:58:c7:16:6a:be:aa:72:30:ae:35:04:3d: 78:26:da:2f:d0:60:a0:66:2d:75:bc:e6:46:41:8e: d3:4d:aa:f4:a8:81:28:03:dd:af:20:8a:62:9d:e8: cd:08:5b:2c:30:e6:0c:be:4a:c4:67:2a:21:bb:48: 9e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:58:5B:30:F9:5F:BA:E7:63:52:39:73:E4:C0:68:C8:92:03:EA:85 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9100::/48 Signature Algorithm: sha256WithRSAEncryption 55:bb:7e:f4:29:20:da:d8:c1:ea:27:f3:05:73:1f:4f:c7:db: b1:1f:10:7a:92:2d:20:3d:34:ac:07:7b:89:11:c4:5a:c6:6e: af:23:d0:f0:ca:34:4e:f5:25:66:5f:4a:5a:78:61:3d:e2:04: 8b:94:5d:cf:60:82:1c:9c:68:15:2e:5a:69:a3:2e:3f:6c:22: fd:86:db:28:6b:53:51:98:13:db:ae:c7:95:a1:7c:cf:bd:d2: 6f:e2:8f:fc:ae:6e:29:8e:47:41:b5:ff:68:c1:81:c6:3c:a3: 60:e4:1f:e1:51:9c:69:f4:e6:e8:f3:ed:97:e3:28:9f:02:8e: e4:47:b5:bb:01:f1:58:ca:27:bd:9d:34:10:f2:ae:ae:ef:f8: 90:68:8a:4c:5f:d8:ff:e8:24:fe:73:88:09:76:97:5b:f9:e8: 65:30:1d:57:1d:23:51:02:2a:b9:84:48:18:fb:4d:34:59:de: ad:f4:e2:df:9b:a3:91:f5:82:44:8c:65:0a:0a:f2:01:2f:02: 5e:f5:88:81:e1:9d:df:ac:28:b2:4d:b8:f3:49:8e:93:51:bd: 71:ed:94:6b:a3:c5:00:06:ce:6c:6b:32:4a:5f:a8:a0:2c:41: 4f:51:2c:a4:01:2e:82:7a:ec:97:71:7c:42:f1:d3:41:24:8f: f4:be:93:3a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUDaPS8VU247yrmJXeqEDngMltXRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzRaFw0yNjA2MTIwNjI4MzRaMDMxMTAvBgNV BAMTKEFFNTg1QjMwRjk1RkJBRTc2MzUyMzk3M0U0QzA2OEM4OTIwM0VBODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoBisXSXCM99FagMCsaHnwEXKf d8IMPHXQ/CJGfrV39t99BPHc4/Q/DbcL1jsNiwcWb4ymMoEFqagDrIOwE/U3pKq2 3SuSTf5zu4iYtcZp+HC90hPFsEjgrGdU4kODOXIUSIz8pNk2g3xvoHsntCVCiykM laGTH6nFDpD+zuaMBa+6N3F3kG5mM9hZYKyPgvuWNtPu9amkNta/TNjeHYNAWK4S or4Q+5fptBmBnvOdRl6k+EZseaJ2dIAruMbx0MKIElC01ljHFmq+qnIwrjUEPXgm 2i/QYKBmLXW85kZBjtNNqvSogSgD3a8gimKd6M0IWyww5gy+SsRnKiG7SJ5RAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUrlhbMPlfuudjUjlz5MBoyJID6oUwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzEzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZEAMA0GCSqGSIb3DQEBCwUAA4IBAQBV u370KSDa2MHqJ/MFcx9Px9uxHxB6ki0gPTSsB3uJEcRaxm6vI9DwyjRO9SVmX0pa eGE94gSLlF3PYIIcnGgVLlppoy4/bCL9htsoa1NRmBPbrseVoXzPvdJv4o/8rm4p jkdBtf9owYHGPKNg5B/hUZxp9Obo8+2X4yifAo7kR7W7AfFYyie9nTQQ8q6u7/iQ aIpMX9j/6CT+c4gJdpdb+ehlMB1XHSNRAiq5hEgY+000Wd6t9OLfm6OR9YJEjGUK CvIBLwJe9YiB4Z3frCiyTbjzSY6TUb1x7ZRro8UABs5sazJKX6igLEFPUSykAS6C euyXcXxC8dNBJI/0vpM6 -----END CERTIFICATE-----Generated at Sun Jun 15 20:31:33 2025 by rpki-client