$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393261303a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393261303a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: vpFkcPB4ncBh9VZRsIiAgJdk+akiA1X6oI9yFkMsGRg= Subject key identifier: F2:36:1B:4C:05:30:57:88:DE:6D:91:7E:01:D2:7E:92:91:51:98:84 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 3C85D49EA9A53D379F74B1524D563FFFE0836DCE Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393261303a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 13 Jun 2025 06:28:35 +0000 ROA not before: Fri 13 Jun 2025 06:23:35 +0000 ROA not after: Fri 12 Jun 2026 06:28:35 +0000 asID: 215364 IP address blocks: 2a14:7581:92a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:85:d4:9e:a9:a5:3d:37:9f:74:b1:52:4d:56:3f:ff:e0:83:6d:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:35 2025 GMT Not After : Jun 12 06:28:35 2026 GMT Subject: CN=F2361B4C05305788DE6D917E01D27E9291519884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:52:ea:1f:a5:d4:64:e3:9c:fd:2c:a8:40: ee:4d:41:62:83:83:dd:b1:be:64:2c:9f:92:d0:9b: 39:24:7b:c7:81:c0:cd:52:41:61:6e:00:de:02:e7: a1:b2:1d:01:42:73:10:30:a3:b9:00:8c:b1:31:6c: 5b:54:96:a8:19:08:74:35:85:09:6c:e8:2b:f4:a9: f7:9f:9e:19:4f:31:2d:81:f1:ca:27:d8:c0:cf:2e: 93:a7:6d:c7:0b:d1:89:8b:65:d3:51:a0:34:c0:44: 94:ae:25:c4:11:0b:5e:da:da:41:1e:74:75:45:d5: d9:a8:03:0f:56:4c:48:6b:83:ed:5e:97:3f:b2:0f: 07:35:df:0a:4c:ff:55:02:d5:e0:7d:4e:f9:c0:8e: 3d:98:5c:f9:8c:76:98:42:9b:44:8d:53:5e:29:89: ae:bc:14:b8:f8:f0:ee:4b:f5:7f:71:7b:2b:6b:7a: 48:1d:eb:39:5b:61:85:ba:95:e8:18:93:29:09:74: 83:94:7e:98:d9:3d:61:b2:5e:43:a6:6e:24:3e:25: dd:82:b9:89:16:98:14:e7:3c:28:b4:60:82:35:95: 24:ef:7a:ad:b4:8d:ab:09:4a:91:16:3a:ec:3d:6f: 29:c3:ab:42:c0:86:bd:8a:30:6d:63:93:fa:e1:b0: aa:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:36:1B:4C:05:30:57:88:DE:6D:91:7E:01:D2:7E:92:91:51:98:84 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393261303a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:92a0::/48 Signature Algorithm: sha256WithRSAEncryption 01:7d:30:f2:e4:12:36:9c:0e:3f:bf:7d:67:f1:95:59:7f:19: bf:4b:40:22:c8:6f:d7:3e:74:d2:74:2e:c5:08:a7:d8:eb:e4: 10:52:c0:c4:bf:c9:bc:76:d8:05:74:fc:e4:54:d0:bb:87:f9: 5b:35:38:53:fb:8e:92:80:eb:9e:28:04:cd:23:c1:b6:c4:47: a2:b5:f9:4b:18:dd:e2:ea:74:57:50:42:a6:59:34:d8:09:10: 0c:63:a6:6c:e6:2b:76:e7:2c:71:9e:a6:85:ff:f7:9b:30:75: 3a:48:da:f7:fe:7d:b9:77:1c:e3:7b:2d:0b:51:93:ba:ad:a3: 43:df:a3:50:db:e5:61:54:a7:16:3b:80:61:82:c2:f8:9d:35: ec:bc:a5:37:53:f5:57:2b:46:2e:30:b1:46:c8:d4:93:ec:4c: 7b:71:46:e7:26:aa:ae:2e:a5:b0:fc:c2:1c:9c:5e:73:14:73: 77:99:61:0d:f3:01:5c:1b:16:4b:4e:5d:e1:8e:7b:f8:c5:f4: 73:89:77:20:46:23:5d:21:4c:40:89:26:d8:54:f7:55:a0:ac: a6:3e:0c:6e:6f:38:f6:12:e7:02:d9:b3:2c:fd:d9:9f:92:cc: 41:a9:3d:c3:2b:cc:07:6a:62:9f:37:4a:c4:8a:1e:5c:0f:6c: 65:d1:29:9f -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUPIXUnqmlPTefdLFSTVY//+CDbc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzVaFw0yNjA2MTIwNjI4MzVaMDMxMTAvBgNV BAMTKEYyMzYxQjRDMDUzMDU3ODhERTZEOTE3RTAxRDI3RTkyOTE1MTk4ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/v1LqH6XUZOOc/SyoQO5NQWKD g92xvmQsn5LQmzkke8eBwM1SQWFuAN4C56GyHQFCcxAwo7kAjLExbFtUlqgZCHQ1 hQls6Cv0qfefnhlPMS2B8con2MDPLpOnbccL0YmLZdNRoDTARJSuJcQRC17a2kEe dHVF1dmoAw9WTEhrg+1elz+yDwc13wpM/1UC1eB9TvnAjj2YXPmMdphCm0SNU14p ia68FLj48O5L9X9xeytrekgd6zlbYYW6legYkykJdIOUfpjZPWGyXkOmbiQ+Jd2C uYkWmBTnPCi0YII1lSTveq20jasJSpEWOuw9bynDq0LAhr2KMG1jk/rhsKpLAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU8jYbTAUwV4jebZF+AdJ+kpFRmIQwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzI2MTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZKgMA0GCSqGSIb3DQEBCwUAA4IBAQAB fTDy5BI2nA4/v31n8ZVZfxm/S0AiyG/XPnTSdC7FCKfY6+QQUsDEv8m8dtgFdPzk VNC7h/lbNThT+46SgOueKATNI8G2xEeitflLGN3i6nRXUEKmWTTYCRAMY6Zs5it2 5yxxnqaF//ebMHU6SNr3/n25dxzjey0LUZO6raND36NQ2+VhVKcWO4BhgsL4nTXs vKU3U/VXK0YuMLFGyNST7Ex7cUbnJqquLqWw/MIcnF5zFHN3mWEN8wFcGxZLTl3h jnv4xfRziXcgRiNdIUxAiSbYVPdVoKymPgxubzj2EucC2bMs/dmfksxBqT3DK8wH amKfN0rEih5cD2xl0Smf -----END CERTIFICATE-----Generated at Sun Jun 15 17:36:28 2025 by rpki-client