$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa File: 326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa (raw, json) Hash identifier: 8Iv1HdyRUhjcvQFIVfomOSyv77EzHn71qEiaLSvjvAE= Subject key identifier: 9E:10:46:C6:8E:38:E3:60:03:A6:11:BA:FA:23:1A:DA:E9:03:BB:0F Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 35D4CC2BD5E0766AD027F6669079E728B1631096 Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa Signing time: Sat 07 Jun 2025 21:44:15 +0000 ROA not before: Sat 07 Jun 2025 21:39:15 +0000 ROA not after: Sat 06 Jun 2026 21:44:15 +0000 asID: 215084 IP address blocks: 2a14:7581:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d4:cc:2b:d5:e0:76:6a:d0:27:f6:66:90:79:e7:28:b1:63:10:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: Jun 7 21:39:15 2025 GMT Not After : Jun 6 21:44:15 2026 GMT Subject: CN=9E1046C68E38E36003A611BAFA231ADAE903BB0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d0:b4:ff:1d:2c:0f:82:e1:84:88:ce:8a:74: 8a:1f:c2:f2:a6:77:79:ff:dd:2f:ad:b5:27:9c:8b: ba:01:04:6a:f7:ea:74:50:ec:f9:34:6e:94:1f:0d: bf:d6:a3:da:34:2b:62:7f:0f:15:c0:84:28:b5:b9: e8:5b:80:65:20:24:4e:84:b4:61:fe:d6:53:19:34: 71:24:6c:9a:34:b7:b1:9d:ce:ed:8e:51:0d:e8:a9: 9e:89:fb:0b:a3:d4:39:74:b7:f3:e6:27:0e:49:3a: 37:21:89:bf:69:0b:7f:da:1a:b0:ef:aa:84:07:5c: 3c:04:36:6e:0b:13:9d:c8:7e:67:74:8d:f8:70:06: e4:4f:4e:c3:1c:df:cd:0f:45:5e:eb:fd:b2:52:15: 8b:fe:28:f1:a7:f3:57:f7:7e:6d:1d:19:65:bb:6a: 20:fb:6d:b4:99:5d:b6:ad:c7:27:01:57:f5:e7:55: 73:2f:aa:ef:e9:75:89:79:4d:77:83:35:ee:e2:d4: bf:b2:90:a2:d3:d1:e6:5d:e8:fb:12:1d:db:ab:86: 88:a7:3f:6b:c6:79:02:27:9c:9c:7c:b9:b2:28:fe: dc:89:00:d6:b8:82:e1:28:d2:ea:a8:5b:92:50:97: e8:b8:0c:2c:54:a0:aa:72:a3:94:b7:e2:23:ae:80: a9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:10:46:C6:8E:38:E3:60:03:A6:11:BA:FA:23:1A:DA:E9:03:BB:0F X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:b000::/36 Signature Algorithm: sha256WithRSAEncryption 35:30:65:5d:29:0a:d2:8c:50:86:41:2a:1b:1d:5e:be:69:7c: 47:8c:69:89:d4:c6:6f:c6:65:e4:14:0b:38:1a:76:59:46:02: cf:c6:33:63:4a:88:0a:eb:4f:2c:7a:a6:b5:6b:15:0f:3e:25: 5e:c3:bb:24:5c:49:d1:16:f8:72:06:5c:e3:04:97:6f:16:7f: 39:34:9a:04:be:39:1f:2f:de:1f:bd:c5:3b:a0:15:8c:56:7e: 11:19:62:c9:a5:81:5a:05:bd:4a:c9:b6:f6:31:db:44:cc:3d: 40:ec:63:8c:45:63:e8:cf:14:33:26:68:21:30:ea:60:d7:ca: 77:4a:7a:23:1a:53:c0:d1:9c:c1:6f:48:bf:7b:dd:02:f0:5b: 27:74:f1:19:f6:7b:c6:c8:10:b4:6a:83:33:37:c5:ce:00:d6: ff:9d:58:55:23:2b:f0:15:46:f7:aa:94:22:db:2f:82:1d:68: b7:37:26:2a:1e:73:05:98:67:d4:20:41:c5:91:45:90:da:77: 25:22:d2:5c:65:63:dd:da:a0:10:a1:64:c3:28:c5:3f:66:fb: 50:d8:cc:d4:ef:90:7d:50:02:76:09:3f:65:5b:31:8c:a7:2f: 13:49:8b:21:36:b9:08:a6:3d:77:30:23:e4:9b:6b:76:33:55: 70:25:03:b7 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUNdTMK9XgdmrQJ/ZmkHnnKLFjEJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNTA2MDcyMTM5MTVaFw0yNjA2MDYyMTQ0MTVaMDMxMTAvBgNV BAMTKDlFMTA0NkM2OEUzOEUzNjAwM0E2MTFCQUZBMjMxQURBRTkwM0JCMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw0LT/HSwPguGEiM6KdIofwvKm d3n/3S+ttSeci7oBBGr36nRQ7Pk0bpQfDb/Wo9o0K2J/DxXAhCi1uehbgGUgJE6E tGH+1lMZNHEkbJo0t7Gdzu2OUQ3oqZ6J+wuj1Dl0t/PmJw5JOjchib9pC3/aGrDv qoQHXDwENm4LE53Ifmd0jfhwBuRPTsMc380PRV7r/bJSFYv+KPGn81f3fm0dGWW7 aiD7bbSZXbatxycBV/XnVXMvqu/pdYl5TXeDNe7i1L+ykKLT0eZd6PsSHdurhoin P2vGeQInnJx8ubIo/tyJANa4guEo0uqoW5JQl+i4DCxUoKpyo5S34iOugKmRAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUnhBGxo4442ADphG6+iMa2ukDuw8wHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTYyMzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM1MzAzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gbAwDQYJKoZIhvcNAQELBQADggEBADUw ZV0pCtKMUIZBKhsdXr5pfEeMaYnUxm/GZeQUCzgadllGAs/GM2NKiArrTyx6prVr FQ8+JV7DuyRcSdEW+HIGXOMEl28Wfzk0mgS+OR8v3h+9xTugFYxWfhEZYsmlgVoF vUrJtvYx20TMPUDsY4xFY+jPFDMmaCEw6mDXyndKeiMaU8DRnMFvSL973QLwWyd0 8Rn2e8bIELRqgzM3xc4A1v+dWFUjK/AVRveqlCLbL4IdaLc3JioecwWYZ9QgQcWR RZDadyUi0lxlY93aoBChZMMoxT9m+1DYzNTvkH1QAnYJP2VbMYynLxNJiyE2uQim PXcwI+Sba3YzVXAlA7c= -----END CERTIFICATE-----Generated at Sun Jun 15 19:05:05 2025 by rpki-client