$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: F9b5BNgK8TO7NWcYalz+qyjvcxyYqlq+/TYg6mk1sTI= Subject key identifier: BF:48:4C:91:CB:0D:33:49:6D:29:50:E0:12:6B:95:DE:60:A2:FE:76 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 54922FFE77A013FCE434A9E96461527DA2D8B101 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 13 Jun 2025 06:28:34 +0000 ROA not before: Fri 13 Jun 2025 06:23:34 +0000 ROA not after: Fri 12 Jun 2026 06:28:34 +0000 asID: 215364 IP address blocks: 2a14:7581:91e1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:92:2f:fe:77:a0:13:fc:e4:34:a9:e9:64:61:52:7d:a2:d8:b1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:34 2025 GMT Not After : Jun 12 06:28:34 2026 GMT Subject: CN=BF484C91CB0D33496D2950E0126B95DE60A2FE76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:72:4f:78:9c:74:fb:45:5b:7d:40:cc:82:fb: ec:22:62:2c:79:d3:78:5f:b8:7c:b5:48:6a:9a:b5: 0f:bb:a9:5f:cd:9d:91:19:b9:f5:02:26:a1:a5:68: 87:82:89:65:b2:b5:66:86:8e:39:3e:3c:22:94:a8: 77:e3:42:3b:a1:f1:30:36:df:3a:79:11:4f:92:00: a5:56:3a:44:d8:b5:a1:20:9e:46:bb:60:ba:92:ff: fb:9b:9f:fa:56:96:da:ce:68:59:03:03:51:d6:46: c5:72:d8:86:ef:52:aa:b9:66:ee:ce:2c:23:b5:fc: ff:38:59:10:68:9e:a7:27:25:7f:ca:56:74:3b:3c: a7:aa:d3:c3:ac:0f:44:74:65:a3:33:e5:83:a8:24: eb:74:d1:0b:eb:35:98:44:69:44:48:28:f1:01:ef: 97:3e:21:58:ed:52:54:88:af:59:5a:1f:e9:cc:ad: d2:48:f4:65:1a:79:06:8a:dd:2d:5c:52:48:87:85: 87:a8:1a:de:a6:22:e9:38:b4:c1:c4:61:8f:5a:35: 7f:93:4b:08:61:c6:17:5f:04:bd:10:5a:93:5d:ec: 22:e4:49:e6:39:d7:da:b7:9f:f8:1a:0f:95:d8:66: 63:df:e2:4a:fc:88:fc:11:e8:5a:8c:67:02:d0:7c: 46:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:48:4C:91:CB:0D:33:49:6D:29:50:E0:12:6B:95:DE:60:A2:FE:76 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:91e1::/48 Signature Algorithm: sha256WithRSAEncryption 62:7e:70:01:03:0f:cc:e1:96:ec:73:e6:19:39:09:0a:91:58: 48:69:0e:fb:06:21:10:64:a1:11:83:96:96:0b:3d:71:79:4d: 44:5a:c7:c4:87:ab:5c:ed:2e:13:e9:a0:99:1c:47:f8:0b:43: 5f:6c:6f:5f:f8:11:9c:81:52:1e:4f:71:b1:54:ba:74:68:d0: 39:2c:35:ff:11:e3:69:27:35:ec:18:18:8b:f7:65:ba:4e:1c: 82:a2:7e:34:ea:45:83:cf:6e:92:3b:9b:aa:24:23:93:fc:b3: 88:f2:f1:bb:0a:79:25:1d:fb:a4:5d:1e:d4:3e:bd:c2:b6:94: 34:32:85:35:8f:b4:29:8b:ee:07:5f:b2:e3:e3:13:7f:58:c1: 4c:99:af:6b:45:69:f8:0c:96:d1:c9:64:c4:49:eb:53:2c:21: 12:b2:5d:6f:64:1b:77:12:29:c4:9d:c5:2a:9f:91:a7:d3:85: 15:73:f1:81:4d:75:9e:8b:d8:9f:c3:e2:0c:18:f1:21:6d:0b: a7:1d:ff:6c:e1:5e:64:bc:52:63:de:90:4b:04:35:10:1e:67: 84:bf:75:04:b3:e3:69:8d:48:25:7c:cf:fe:4d:73:fd:bb:f8: b0:53:a1:62:ad:26:18:9e:f5:67:60:58:4e:66:6f:4e:33:ff: c4:9d:5a:26 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVJIv/negE/zkNKnpZGFSfaLYsQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzRaFw0yNjA2MTIwNjI4MzRaMDMxMTAvBgNV BAMTKEJGNDg0QzkxQ0IwRDMzNDk2RDI5NTBFMDEyNkI5NURFNjBBMkZFNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXck94nHT7RVt9QMyC++wiYix5 03hfuHy1SGqatQ+7qV/NnZEZufUCJqGlaIeCiWWytWaGjjk+PCKUqHfjQjuh8TA2 3zp5EU+SAKVWOkTYtaEgnka7YLqS//ubn/pWltrOaFkDA1HWRsVy2IbvUqq5Zu7O LCO1/P84WRBonqcnJX/KVnQ7PKeq08OsD0R0ZaMz5YOoJOt00QvrNZhEaURIKPEB 75c+IVjtUlSIr1laH+nMrdJI9GUaeQaK3S1cUkiHhYeoGt6mIuk4tMHEYY9aNX+T SwhhxhdfBL0QWpNd7CLkSeY519q3n/gaD5XYZmPf4kr8iPwR6FqMZwLQfEbrAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUv0hMkcsNM0ltKVDgEmuV3mCi/nYwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzE2NTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZHhMA0GCSqGSIb3DQEBCwUAA4IBAQBi fnABAw/M4Zbsc+YZOQkKkVhIaQ77BiEQZKERg5aWCz1xeU1EWsfEh6tc7S4T6aCZ HEf4C0NfbG9f+BGcgVIeT3GxVLp0aNA5LDX/EeNpJzXsGBiL92W6ThyCon406kWD z26SO5uqJCOT/LOI8vG7CnklHfukXR7UPr3CtpQ0MoU1j7Qpi+4HX7Lj4xN/WMFM ma9rRWn4DJbRyWTESetTLCESsl1vZBt3EinEncUqn5Gn04UVc/GBTXWei9ifw+IM GPEhbQunHf9s4V5kvFJj3pBLBDUQHmeEv3UEs+NpjUglfM/+TXP9u/iwU6FirSYY nvVnYFhOZm9OM//EnVom -----END CERTIFICATE-----Generated at Sun Jun 15 17:29:56 2025 by rpki-client