$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa File: 326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa (raw, json) Hash identifier: ikRuOA2n8u4zq4qR5S8PkgRSZxYIGPGee0tyFklQIEM= Subject key identifier: 7A:BD:7D:FA:71:84:65:2D:A9:B4:B8:FF:41:1B:87:E7:B2:31:25:65 Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 50F18B836B9FD342019A6F8C817FC70F2AB26CC4 Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa Signing time: Sat 07 Jun 2025 21:44:15 +0000 ROA not before: Sat 07 Jun 2025 21:39:15 +0000 ROA not after: Sat 06 Jun 2026 21:44:15 +0000 asID: 215084 IP address blocks: 2a14:7581:f20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f1:8b:83:6b:9f:d3:42:01:9a:6f:8c:81:7f:c7:0f:2a:b2:6c:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: Jun 7 21:39:15 2025 GMT Not After : Jun 6 21:44:15 2026 GMT Subject: CN=7ABD7DFA7184652DA9B4B8FF411B87E7B2312565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:3c:ea:8a:37:b4:e5:57:f6:f2:01:8a:19: 4f:ac:e9:66:3c:e3:84:57:5a:86:d8:91:b2:34:20: 98:3c:df:5b:7f:55:aa:19:d3:81:9a:04:73:4d:5e: 0e:0c:5f:6c:73:2e:6a:21:f8:d8:d9:51:72:12:f6: 23:70:02:e8:c4:23:a9:2c:4e:0b:c2:78:b4:22:ea: ea:e8:f7:b2:c5:c3:f5:15:b8:4a:cd:c0:85:f0:19: b4:20:24:c1:93:ea:6e:9e:bf:4e:ea:55:cd:92:4e: 1c:b3:83:7e:12:38:82:ff:d2:f2:99:f6:ff:b3:6b: 34:16:b2:55:db:61:91:60:0e:06:ad:d3:1e:49:30: 21:2a:40:45:1d:19:b8:83:34:66:b7:61:02:77:c8: cb:d7:9d:f9:66:9f:3e:c1:3f:24:eb:d7:89:d7:f5: e6:fc:c7:f5:76:cf:fa:b3:50:33:53:b1:7c:56:2a: 2e:1b:99:22:43:b6:26:12:0c:bf:f4:c6:e7:da:42: 52:fa:cb:6d:81:2f:97:68:42:e3:11:f9:c3:fa:79: 38:d6:31:a9:29:23:03:46:40:a9:55:ae:f2:68:c5: 17:43:76:67:3a:f2:5b:a5:78:fe:5d:6d:cb:a7:bc: 1e:5f:99:ec:c2:09:17:10:44:ed:85:39:e5:b1:55: 99:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:BD:7D:FA:71:84:65:2D:A9:B4:B8:FF:41:1B:87:E7:B2:31:25:65 X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:f20::/44 Signature Algorithm: sha256WithRSAEncryption 8f:64:01:c9:6f:91:3f:54:a2:f9:a7:54:21:f7:c4:bb:18:33: 7d:13:f4:3e:5c:dd:c4:0d:6d:ff:84:fc:ac:0a:28:52:f5:54: 91:57:75:49:dc:de:d1:c6:ce:08:1b:c8:11:1b:f2:bb:d9:7a: 46:b0:e4:2d:fe:e0:da:a9:df:01:23:66:ec:aa:85:fd:e6:37: 0c:70:c7:a0:4c:80:d5:dc:e6:67:5e:77:56:7b:10:ee:db:e9: 28:ad:da:20:e1:cd:84:70:83:49:ad:4c:f0:48:99:0c:f1:bf: c7:77:2e:8e:9d:f5:bd:35:4e:69:2b:01:ed:fd:42:b9:3e:3a: 23:ae:07:09:72:8b:ef:28:c2:63:52:f2:2a:a2:15:0d:2b:af: 1f:34:4b:29:83:53:62:76:e8:c0:ce:82:30:77:81:0a:28:3c: 1a:d8:d8:b1:47:ed:58:4b:a1:f0:39:41:52:c6:82:a0:46:e9: 15:26:50:8c:1e:c1:0b:b3:76:dc:fe:f3:c8:e7:56:c1:37:9d: 72:ce:e0:0a:b6:d3:57:2d:35:c6:49:2c:59:d8:82:64:b8:42: 75:20:67:d2:0a:69:96:d0:13:7d:0c:e9:fa:11:83:f1:0e:b1: 2c:97:59:8e:c3:1e:a5:41:38:62:69:38:5c:13:ca:55:c5:1c: 4a:87:84:96 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUUPGLg2uf00IBmm+MgX/HDyqybMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNTA2MDcyMTM5MTVaFw0yNjA2MDYyMTQ0MTVaMDMxMTAvBgNV BAMTKDdBQkQ3REZBNzE4NDY1MkRBOUI0QjhGRjQxMUI4N0U3QjIzMTI1NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Njzqije05Vf28gGKGU+s6WY8 44RXWobYkbI0IJg831t/VaoZ04GaBHNNXg4MX2xzLmoh+NjZUXIS9iNwAujEI6ks TgvCeLQi6uro97LFw/UVuErNwIXwGbQgJMGT6m6ev07qVc2SThyzg34SOIL/0vKZ 9v+zazQWslXbYZFgDgat0x5JMCEqQEUdGbiDNGa3YQJ3yMvXnflmnz7BPyTr14nX 9eb8x/V2z/qzUDNTsXxWKi4bmSJDtiYSDL/0xufaQlL6y22BL5doQuMR+cP6eTjW MakpIwNGQKlVrvJoxRdDdmc68luleP5dbcunvB5fmezCCRcQRO2FOeWxVZmdAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUer19+nGEZS2ptLj/QRuH57IxJWUwHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY2MzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEz NTMwMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYEPIDANBgkqhkiG9w0BAQsFAAOCAQEAj2QB yW+RP1Si+adUIffEuxgzfRP0PlzdxA1t/4T8rAooUvVUkVd1Sdze0cbOCBvIERvy u9l6RrDkLf7g2qnfASNm7KqF/eY3DHDHoEyA1dzmZ153VnsQ7tvpKK3aIOHNhHCD Sa1M8EiZDPG/x3cujp31vTVOaSsB7f1CuT46I64HCXKL7yjCY1LyKqIVDSuvHzRL KYNTYnbowM6CMHeBCig8GtjYsUftWEuh8DlBUsaCoEbpFSZQjB7BC7N23P7zyOdW wTedcs7gCrbTVy01xkksWdiCZLhCdSBn0gppltATfQzp+hGD8Q6xLJdZjsMepUE4 Ymk4XBPKVcUcSoeElg== -----END CERTIFICATE-----Generated at Sun Jun 15 18:57:56 2025 by rpki-client