$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366430303a3a2f34302d3438203d3e20313938393534.roa File: 326131343a373538313a366430303a3a2f34302d3438203d3e20313938393534.roa (raw, json) Hash identifier: NmrQPtPqQ5DR+bRREzqc39K13XAtIuFNU1TKAHSAJAY= Subject key identifier: 51:75:60:45:EE:CF:87:DD:47:BF:5B:BA:9B:C4:7D:B3:B0:5B:C5:F0 Certificate issuer: /CN=893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B Certificate serial: 0CC705CBD477BEB99AA75C52EF5F8B6DDD198F56 Authority key identifier: 89:3F:D4:1B:DE:22:6C:54:F2:AD:2B:3D:DA:19:C1:A0:B8:F1:20:6B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366430303a3a2f34302d3438203d3e20313938393534.roa Signing time: Sun 10 Aug 2025 07:23:32 +0000 ROA not before: Sun 10 Aug 2025 07:18:32 +0000 ROA not after: Sun 09 Aug 2026 07:23:32 +0000 asID: 198954 IP address blocks: 2a14:7581:6d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.crl rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 Aug 2025 18:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c7:05:cb:d4:77:be:b9:9a:a7:5c:52:ef:5f:8b:6d:dd:19:8f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B Validity Not Before: Aug 10 07:18:32 2025 GMT Not After : Aug 9 07:23:32 2026 GMT Subject: CN=51756045EECF87DD47BF5BBA9BC47DB3B05BC5F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d8:c0:4a:69:f8:97:1d:30:24:3c:3d:13:37: 4f:22:9f:b3:cd:7d:29:1f:92:ac:97:90:f3:4b:e4: 62:a3:bb:be:9f:38:f9:2a:c2:b9:b0:b9:78:e0:76: be:d6:43:dd:94:b3:b6:1c:84:32:00:3e:ad:43:eb: 5d:6f:23:98:63:15:a6:57:52:2f:d0:89:d4:29:00: d4:0d:9a:9d:82:94:c4:8e:f0:6c:88:13:96:5b:f1: 0d:12:15:8e:f6:30:58:41:64:e6:37:a9:66:dd:c5: 06:7f:f5:14:76:3b:55:85:14:e7:c3:f4:93:67:c5: 24:11:bc:af:29:b5:32:d0:9a:b0:21:15:b5:d1:07: 7e:cb:0c:f8:f1:37:f3:d0:62:df:25:88:fa:09:6f: 20:fb:13:99:9d:7e:e3:a6:98:92:16:ad:f5:34:63: 0d:9a:e0:12:20:a8:21:f3:0b:9d:8e:6f:b8:8e:b1: d8:a2:16:52:d8:8f:f4:a2:cb:7b:f5:92:3b:29:3f: da:2e:e9:f6:b4:e0:0b:bb:4a:17:9f:45:d2:1c:31: df:17:02:4e:d5:1b:a8:c7:97:bc:5c:34:5f:78:bf: b6:b0:1a:fc:a4:70:e6:aa:8d:28:a5:e3:30:f1:af: b5:45:50:d1:8a:a9:0f:b5:4f:b7:ea:cd:6a:ff:44: 7c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:75:60:45:EE:CF:87:DD:47:BF:5B:BA:9B:C4:7D:B3:B0:5B:C5:F0 X509v3 Authority Key Identifier: keyid:89:3F:D4:1B:DE:22:6C:54:F2:AD:2B:3D:DA:19:C1:A0:B8:F1:20:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366430303a3a2f34302d3438203d3e20313938393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6d00::/40 Signature Algorithm: sha256WithRSAEncryption 5c:08:7f:22:d8:42:c4:0c:2e:25:ea:6e:d7:39:31:83:88:46: 3a:39:c2:b7:d7:5b:4a:8c:c7:25:70:31:33:a8:8b:ae:46:74: aa:f0:91:7a:90:82:3b:ec:0c:b9:45:4c:27:4e:62:0c:ff:3a: 53:4a:93:42:4c:4b:5f:d9:c8:78:23:b7:d9:e4:d2:eb:34:9c: 49:e9:a8:d9:84:3d:fe:ce:dc:c1:6d:a5:f6:e3:2e:32:a5:8a: 2c:3a:f6:7c:14:c6:85:ba:37:37:2d:6d:26:a9:a3:10:6c:ad: af:5f:15:16:02:20:4b:d7:11:f2:55:90:19:8e:05:5b:fc:35: 7d:37:8e:4d:c5:4c:1f:b6:a8:7b:18:99:6f:29:c5:16:ba:fd: e1:91:78:db:ad:6a:22:48:f2:9e:e5:3c:7e:04:e6:86:09:0c: 4a:59:d0:69:bd:1a:c3:d0:2f:77:aa:d1:5b:ae:37:54:48:f2: 3e:cd:3d:27:7f:3a:d6:19:70:3b:8c:d0:78:6e:0f:d2:83:6e: be:b3:48:7f:81:fd:f7:a0:2c:06:42:61:6a:51:fc:00:74:aa: 85:eb:24:9d:e6:a8:d6:f7:97:37:46:8a:3e:ae:b8:d2:5a:8c: ef:b2:87:e3:c1:8d:66:f9:4f:4b:29:99:78:61:ab:4e:e5:77: 74:ad:5e:e0 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUDMcFy9R3vrmap1xS71+Lbd0Zj1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzRkQ0MUJERTIyNkM1NEYyQUQyQjNEREExOUMxQTBC OEYxMjA2QjAeFw0yNTA4MTAwNzE4MzJaFw0yNjA4MDkwNzIzMzJaMDMxMTAvBgNV BAMTKDUxNzU2MDQ1RUVDRjg3REQ0N0JGNUJCQTlCQzQ3REIzQjA1QkM1RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS2MBKafiXHTAkPD0TN08in7PN fSkfkqyXkPNL5GKju76fOPkqwrmwuXjgdr7WQ92Us7YchDIAPq1D611vI5hjFaZX Ui/QidQpANQNmp2ClMSO8GyIE5Zb8Q0SFY72MFhBZOY3qWbdxQZ/9RR2O1WFFOfD 9JNnxSQRvK8ptTLQmrAhFbXRB37LDPjxN/PQYt8liPoJbyD7E5mdfuOmmJIWrfU0 Yw2a4BIgqCHzC52Ob7iOsdiiFlLYj/Siy3v1kjspP9ou6fa04Au7ShefRdIcMd8X Ak7VG6jHl7xcNF94v7awGvykcOaqjSil4zDxr7VFUNGKqQ+1T7fqzWr/RHxhAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUUXVgRe7Ph91Hv1u6m8R9s7BbxfAwHwYDVR0j BBgwFoAUiT/UG94ibFTyrSs92hnBoLjxIGswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFjZmEzMTgtMmE1Yy00MjQxLWFmYmItMzg3ZDcxZThj NTk2LzEvODkzRkQ0MUJERTIyNkM1NEYyQUQyQjNEREExOUMxQTBCOEYxMjA2Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84OTNGRDQxQkRFMjI2QzU0RjJBRDJCM0RE QTE5QzFBMEI4RjEyMDZCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84YWNmYTMxOC0yYTVjLTQyNDEtYWZiYi0zODdkNzFlOGM1OTYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM2NjQzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzEz OTM4MzkzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gW0wDQYJKoZIhvcNAQELBQADggEBAFwI fyLYQsQMLiXqbtc5MYOIRjo5wrfXW0qMxyVwMTOoi65GdKrwkXqQgjvsDLlFTCdO Ygz/OlNKk0JMS1/ZyHgjt9nk0us0nEnpqNmEPf7O3MFtpfbjLjKliiw69nwUxoW6 NzctbSapoxBsra9fFRYCIEvXEfJVkBmOBVv8NX03jk3FTB+2qHsYmW8pxRa6/eGR eNutaiJI8p7lPH4E5oYJDEpZ0Gm9GsPQL3eq0VuuN1RI8j7NPSd/OtYZcDuM0Hhu D9KDbr6zSH+B/fegLAZCYWpR/AB0qoXrJJ3mqNb3lzdGij6uuNJajO+yh+PBjWb5 T0spmXhhq07ld3StXuA= -----END CERTIFICATE-----Generated at Wed Aug 13 00:11:58 2025 by rpki-client