$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 2aDuD/D+lIpzPYcnGpfR3f4GvH7bzD6tXNlt4SzLv7s= Subject key identifier: E3:A8:44:26:B0:56:9E:B6:F8:06:BC:85:1D:94:86:18:47:E3:0E:D1 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 58B56007AEF77D9582E616879B9AA5BB0B91009A Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 13 Jun 2025 06:28:35 +0000 ROA not before: Fri 13 Jun 2025 06:23:35 +0000 ROA not after: Fri 12 Jun 2026 06:28:35 +0000 asID: 215364 IP address blocks: 2a14:7581:91e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b5:60:07:ae:f7:7d:95:82:e6:16:87:9b:9a:a5:bb:0b:91:00:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:35 2025 GMT Not After : Jun 12 06:28:35 2026 GMT Subject: CN=E3A84426B0569EB6F806BC851D94861847E30ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:96:b4:6b:c7:9a:9e:fa:14:60:51:7f:6c:2b: 60:7a:29:a4:72:a1:b9:7e:1e:45:2b:54:53:4e:58: 90:7c:0e:a7:ab:2d:a4:91:39:55:a7:3b:7d:20:27: 9f:b0:54:5b:ea:f6:f5:20:b4:fc:fb:0c:2c:4d:b6: 81:1f:47:a8:f1:51:d7:22:4e:f2:23:49:28:9f:5c: 72:a5:3d:00:c1:4b:75:7d:43:e5:9f:be:4e:9c:81: eb:91:6a:9e:61:4e:38:e2:5f:e4:80:78:80:dc:70: 27:e4:32:17:30:f7:0a:f7:f2:92:82:ce:ec:a6:75: 9c:9b:96:19:08:e2:85:46:ef:fc:aa:f1:87:62:57: eb:a1:2b:ee:26:99:b9:71:f3:cb:02:9b:71:2c:bd: 4a:d9:dc:b6:97:3d:d7:dc:1a:ad:bd:45:2b:bf:f4: 7a:34:60:8f:b8:50:af:94:18:90:35:f9:59:f9:49: 28:61:36:8f:8b:1c:84:c9:b1:4c:b0:b4:6b:37:a6: 8b:a6:0f:94:69:c4:cb:0d:fb:cb:ca:3f:68:c2:d2: 0c:c5:a0:2e:e6:57:bc:e2:b4:c9:d4:a6:b7:d7:5d: e3:f4:07:f4:77:fd:27:e9:be:c3:3a:61:3b:75:d8: 3e:8d:19:5e:b0:d1:1c:9f:f7:c7:88:f8:a4:e4:99: 53:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A8:44:26:B0:56:9E:B6:F8:06:BC:85:1D:94:86:18:47:E3:0E:D1 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:91e0::/48 Signature Algorithm: sha256WithRSAEncryption 65:3b:44:89:19:c9:31:18:c6:35:b0:7b:56:b0:b6:cb:fb:5b: b6:63:8b:79:64:c4:ea:9d:31:d6:0f:5b:fb:cb:71:a9:d6:dd: 06:9a:05:07:3c:49:9f:06:fa:43:f5:a1:af:90:73:5f:aa:8b: 96:e4:a7:88:ca:b1:b1:74:f4:a6:2e:b4:d8:a5:4c:48:fe:79: 12:d7:19:20:c7:c5:bc:6f:01:f1:50:d7:70:1f:a9:52:a9:a6: 11:b4:0b:03:23:8a:e1:a4:95:ea:05:7f:27:71:db:5b:b2:18: 49:5f:44:56:32:7f:fc:53:0e:3b:5f:7f:08:0a:6f:33:f5:ad: bc:b1:27:1e:cf:04:c7:71:d9:db:fd:56:31:40:d0:b9:fc:27: 11:19:ef:b1:90:cc:ab:b9:69:38:f5:70:e0:50:5d:28:bf:6b: dc:9b:3f:76:8d:d7:34:66:f3:54:f0:67:67:d8:f2:a0:45:96: 2a:ea:f4:4c:af:91:8f:33:d7:24:02:7a:bb:6e:0b:5a:f7:e1: b5:9e:2f:50:f0:da:8d:82:5c:29:17:45:12:98:08:b1:90:17: 6c:a1:ce:c1:d6:9d:dc:6c:37:93:6a:bf:3d:5b:dd:69:ac:ec: d8:52:af:9a:55:6e:9c:18:0f:99:5d:7b:e1:9a:82:75:5d:e3: 7c:db:75:7e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUWLVgB673fZWC5haHm5qluwuRAJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzVaFw0yNjA2MTIwNjI4MzVaMDMxMTAvBgNV BAMTKEUzQTg0NDI2QjA1NjlFQjZGODA2QkM4NTFEOTQ4NjE4NDdFMzBFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTlrRrx5qe+hRgUX9sK2B6KaRy obl+HkUrVFNOWJB8DqerLaSROVWnO30gJ5+wVFvq9vUgtPz7DCxNtoEfR6jxUdci TvIjSSifXHKlPQDBS3V9Q+Wfvk6cgeuRap5hTjjiX+SAeIDccCfkMhcw9wr38pKC zuymdZyblhkI4oVG7/yq8YdiV+uhK+4mmblx88sCm3EsvUrZ3LaXPdfcGq29RSu/ 9Ho0YI+4UK+UGJA1+Vn5SShhNo+LHITJsUywtGs3poumD5RpxMsN+8vKP2jC0gzF oC7mV7zitMnUprfXXeP0B/R3/SfpvsM6YTt12D6NGV6w0Ryf98eI+KTkmVPdAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU46hEJrBWnrb4BryFHZSGGEfjDtEwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzE2NTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZHgMA0GCSqGSIb3DQEBCwUAA4IBAQBl O0SJGckxGMY1sHtWsLbL+1u2Y4t5ZMTqnTHWD1v7y3Gp1t0GmgUHPEmfBvpD9aGv kHNfqouW5KeIyrGxdPSmLrTYpUxI/nkS1xkgx8W8bwHxUNdwH6lSqaYRtAsDI4rh pJXqBX8ncdtbshhJX0RWMn/8Uw47X38ICm8z9a28sScezwTHcdnb/VYxQNC5/CcR Ge+xkMyruWk49XDgUF0ov2vcmz92jdc0ZvNU8Gdn2PKgRZYq6vRMr5GPM9ckAnq7 bgta9+G1ni9Q8NqNglwpF0USmAixkBdsoc7B1p3cbDeTar89W91prOzYUq+aVW6c GA+ZXXvhmoJ1XeN823V+ -----END CERTIFICATE-----Generated at Mon Jun 16 05:31:49 2025 by rpki-client