$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa File: 326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa (raw, json) Hash identifier: HxvdekWDniqUROXJ3YOPd7kMDR81qja1R4es7Rc0gNE= Subject key identifier: E0:FD:ED:64:19:8E:54:1C:BF:0D:6B:C7:74:4D:61:17:9F:76:4F:C2 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 67EFF15A8C512953CCE4D3BA39EB72697137093E Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa Signing time: Fri 13 Jun 2025 06:28:33 +0000 ROA not before: Fri 13 Jun 2025 06:23:33 +0000 ROA not after: Fri 12 Jun 2026 06:28:33 +0000 asID: 215364 IP address blocks: 2a14:7581:9300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ef:f1:5a:8c:51:29:53:cc:e4:d3:ba:39:eb:72:69:71:37:09:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 13 06:23:33 2025 GMT Not After : Jun 12 06:28:33 2026 GMT Subject: CN=E0FDED64198E541CBF0D6BC7744D61179F764FC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:df:dc:27:11:5b:5c:a0:a2:58:8f:04:29:b5: 1c:e8:0a:3b:b0:04:77:79:ea:61:ed:4e:d2:47:fa: 9e:4a:fb:86:ce:c0:bc:f6:31:4c:47:fc:78:56:c7: db:91:41:52:65:66:aa:6d:e3:f6:62:3e:aa:ef:ba: e7:6e:18:c4:10:9f:0e:21:5a:18:20:ef:e9:a3:fa: dc:e1:64:4f:44:21:44:8c:0a:42:97:8d:d7:48:e5: bc:38:a3:d8:d8:bf:e9:a8:78:5f:aa:6e:b4:cf:4f: 2e:3c:53:d2:48:da:8a:e4:9c:0e:31:16:0a:f1:53: 23:fc:15:8f:1f:a4:ae:7e:5f:5b:02:77:4c:99:39: 5a:a8:65:f0:60:c3:b7:c1:70:8d:8d:35:cc:4a:c5: 04:06:c1:4e:3e:4e:90:1a:80:5c:8b:75:7e:c1:a5: 7a:93:2c:8d:97:36:5a:e6:40:d5:82:ee:89:ad:c9: 1c:6d:e0:b1:d5:3b:55:28:70:96:01:6f:22:23:1f: 58:39:2c:5b:a5:9f:47:11:74:d9:90:2b:53:38:b2: b2:72:d8:06:98:7e:27:c0:57:3c:d0:b9:f8:ba:74: 3d:01:6b:f4:ac:31:c9:7b:50:78:7a:d9:64:98:e4: 0b:e6:6e:89:25:58:b0:97:14:dd:6e:58:23:49:96: c1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FD:ED:64:19:8E:54:1C:BF:0D:6B:C7:74:4D:61:17:9F:76:4F:C2 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9300::/40 Signature Algorithm: sha256WithRSAEncryption 7f:07:05:c7:2c:e9:e4:9c:04:a0:f4:7a:65:c3:d6:bf:2a:53: b5:91:1a:e7:ef:09:99:ff:b1:67:c5:15:16:64:97:5f:f5:84: fc:ee:b2:01:ce:3a:98:79:63:d9:66:79:60:d3:bd:d9:c8:22: 2c:5b:cf:9f:90:26:13:0c:ae:99:59:6a:2a:02:f5:ca:8f:91: 39:d5:0a:55:24:ca:4b:60:74:32:33:4e:87:24:0e:79:0e:25: 9f:f5:9f:ae:09:e5:3e:23:39:de:72:61:f5:21:c5:46:fd:34: 70:2d:e4:bb:ae:dc:23:e2:30:d8:bd:0e:cd:ae:8e:b5:16:af: 65:45:66:63:65:7a:21:20:75:07:44:e7:bd:04:86:ec:39:25: 6a:8d:1d:7a:f7:94:cb:7c:a0:f2:28:17:18:96:23:f0:fd:1a: a5:c9:d3:da:e0:97:2c:c7:e7:04:18:08:64:d5:83:e3:fc:a8: c4:26:b5:58:a1:f7:11:4f:31:5f:86:c4:df:18:dc:c3:f8:1c: f8:f4:23:4d:be:97:27:b4:59:bf:03:9f:a5:c9:ab:34:0b:36: 20:89:29:f0:ca:c9:e6:25:5e:df:5c:8c:61:cc:d6:d9:02:77: 88:49:0c:33:26:48:9c:e2:1a:d2:e6:5f:24:a3:8b:65:d1:3e: 9d:55:b9:bc -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUZ+/xWoxRKVPM5NO6OetyaXE3CT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA2MTMwNjIzMzNaFw0yNjA2MTIwNjI4MzNaMDMxMTAvBgNV BAMTKEUwRkRFRDY0MTk4RTU0MUNCRjBENkJDNzc0NEQ2MTE3OUY3NjRGQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC639wnEVtcoKJYjwQptRzoCjuw BHd56mHtTtJH+p5K+4bOwLz2MUxH/HhWx9uRQVJlZqpt4/ZiPqrvuuduGMQQnw4h Whgg7+mj+tzhZE9EIUSMCkKXjddI5bw4o9jYv+moeF+qbrTPTy48U9JI2orknA4x FgrxUyP8FY8fpK5+X1sCd0yZOVqoZfBgw7fBcI2NNcxKxQQGwU4+TpAagFyLdX7B pXqTLI2XNlrmQNWC7omtyRxt4LHVO1UocJYBbyIjH1g5LFuln0cRdNmQK1M4srJy 2AaYfifAVzzQufi6dD0Ba/SsMcl7UHh62WSY5AvmboklWLCXFN1uWCNJlsGpAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU4P3tZBmOVBy/DWvHdE1hF592T8IwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gZMwDQYJKoZIhvcNAQELBQADggEBAH8H Bccs6eScBKD0emXD1r8qU7WRGufvCZn/sWfFFRZkl1/1hPzusgHOOph5Y9lmeWDT vdnIIixbz5+QJhMMrplZaioC9cqPkTnVClUkyktgdDIzTockDnkOJZ/1n64J5T4j Od5yYfUhxUb9NHAt5Luu3CPiMNi9Ds2ujrUWr2VFZmNleiEgdQdE570Ehuw5JWqN HXr3lMt8oPIoFxiWI/D9GqXJ09rglyzH5wQYCGTVg+P8qMQmtVih9xFPMV+GxN8Y 3MP4HPj0I02+lye0Wb8Dn6XJqzQLNiCJKfDKyeYlXt9cjGHM1tkCd4hJDDMmSJzi GtLmXySji2XRPp1Vubw= -----END CERTIFICATE-----Generated at Sun Jun 15 17:22:15 2025 by rpki-client