$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa File: 326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa (raw, json) Hash identifier: 7syqL2b6B4hFc1tTh/9QPvKN2SjHSufNn4c9hT7wZns= Subject key identifier: 20:43:56:95:E2:1C:8C:EC:C7:18:A9:C8:42:6F:16:07:8E:F8:E1:BA Certificate issuer: /CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Certificate serial: 3B1AF0855A0AD4158B125A05CBDE53FC4EC669EF Authority key identifier: 15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa Signing time: Thu 15 May 2025 14:33:30 +0000 ROA not before: Thu 15 May 2025 14:28:30 +0000 ROA not after: Thu 14 May 2026 14:33:30 +0000 asID: 213430 IP address blocks: 2a14:7581:9fb0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:1a:f0:85:5a:0a:d4:15:8b:12:5a:05:cb:de:53:fc:4e:c6:69:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Validity Not Before: May 15 14:28:30 2025 GMT Not After : May 14 14:33:30 2026 GMT Subject: CN=20435695E21C8CECC718A9C8426F16078EF8E1BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d5:ef:8d:97:cc:b0:16:4e:1e:ad:7b:59:0a: 6a:45:c4:11:b1:52:6c:ef:d4:4b:92:a6:08:d4:54: cf:22:a6:9f:bd:c2:26:61:c5:27:7f:20:20:e4:65: 9e:e1:81:e5:b8:e7:3e:b6:32:d2:a8:06:82:09:91: 22:22:bc:82:08:ac:2b:c8:e2:47:ac:c1:84:28:2b: 02:e4:eb:e5:6d:fd:94:b8:48:41:52:35:49:d7:4f: 0c:d6:3e:26:e9:83:04:a5:4d:55:6b:08:c5:de:6b: 1c:06:32:12:c0:9f:a8:31:fd:a8:f3:07:84:3a:d2: 68:8a:22:90:d2:e9:eb:84:4f:e5:8f:07:34:b2:d4: 3b:3b:97:b4:27:b2:1f:ee:60:3e:cd:ca:ec:96:c1: d3:2b:54:d0:d4:8c:af:94:a4:b6:00:9b:e6:56:63: 15:d0:b2:28:6e:65:bc:8b:40:bd:46:d6:0a:75:08: ae:45:36:14:f5:da:6b:04:5d:3f:f9:96:83:94:d7: 5d:f8:79:c0:7d:3b:3b:da:7c:c3:ff:50:2f:f8:47: 3b:a1:2e:42:9f:09:8f:92:75:29:24:b7:d5:25:91: 09:6d:9a:5a:47:b7:38:ce:be:7b:2f:0d:be:1d:40: 3e:46:24:b8:29:22:d8:3f:1c:f4:89:09:84:6d:09: 79:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:43:56:95:E2:1C:8C:EC:C7:18:A9:C8:42:6F:16:07:8E:F8:E1:BA X509v3 Authority Key Identifier: keyid:15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9fb0::/44 Signature Algorithm: sha256WithRSAEncryption 65:17:83:38:29:5c:1e:1a:2f:c2:7e:b8:e2:03:d5:82:34:12: 43:76:31:fa:a8:f8:56:02:dd:91:53:50:01:63:c2:8f:57:e9: ee:fb:b3:72:39:12:37:a4:b9:b8:31:c2:45:41:6b:48:f8:f9: cd:14:dc:59:37:e6:d4:81:40:86:86:aa:38:2a:db:95:29:01: 6c:1c:ad:9e:20:0b:db:04:9e:42:cf:6b:90:a9:ee:57:21:db: 6b:2c:0e:a6:ff:38:95:66:ec:13:88:cc:40:64:7b:3c:75:43: 76:f3:cb:d6:99:bb:6e:f0:16:7e:1b:54:f7:3e:ad:2d:ef:fa: 07:34:7f:86:9f:0b:87:d3:10:78:c7:f7:e8:94:6c:f6:a1:c6: c6:56:38:0f:dd:60:2a:ed:44:ec:ef:76:95:2f:0c:cc:08:1e: dd:7d:75:82:fa:1e:0a:a4:96:43:0e:c3:1f:19:b6:06:e0:e0: a9:42:43:a8:67:aa:f0:20:e1:db:a6:0d:33:6a:b2:f1:a6:48: be:6a:2a:85:39:77:bd:63:19:d7:00:40:14:a2:5f:71:7a:4a: b3:47:d3:3e:51:9c:41:3a:82:8f:b9:22:f9:92:1f:f3:e6:f8: 8b:5c:58:6b:8d:4a:74:50:e7:e2:13:cc:54:12:43:6a:af:47: 66:8d:76:d1 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUOxrwhVoK1BWLEloFy95T/E7Gae8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIx NTRENzZDNTAeFw0yNTA1MTUxNDI4MzBaFw0yNjA1MTQxNDMzMzBaMDMxMTAvBgNV BAMTKDIwNDM1Njk1RTIxQzhDRUNDNzE4QTlDODQyNkYxNjA3OEVGOEUxQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd1e+Nl8ywFk4erXtZCmpFxBGx Umzv1EuSpgjUVM8ipp+9wiZhxSd/ICDkZZ7hgeW45z62MtKoBoIJkSIivIIIrCvI 4keswYQoKwLk6+Vt/ZS4SEFSNUnXTwzWPibpgwSlTVVrCMXeaxwGMhLAn6gx/ajz B4Q60miKIpDS6euET+WPBzSy1Ds7l7Qnsh/uYD7NyuyWwdMrVNDUjK+UpLYAm+ZW YxXQsihuZbyLQL1G1gp1CK5FNhT12msEXT/5loOU1134ecB9OzvafMP/UC/4Rzuh LkKfCY+SdSkkt9UlkQltmlpHtzjOvnsvDb4dQD5GJLgpItg/HPSJCYRtCXlTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUIENWleIcjOzHGKnIQm8WB4744bowHwYDVR0j BBgwFoAUFbzXXgLghesIo9LyLIcpchVNdsUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjY3NDY5MDEtMjNkMy00MzAxLWIyOGQtOGIwOTgyYjA2 YzA4LzEvMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIxNTRENzZDNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xNUJDRDc1RTAyRTA4NUVCMDhBM0QyRjIy Qzg3Mjk3MjE1NEQ3NkM1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNjc0NjkwMS0yM2QzLTQzMDEtYjI4ZC04YjA5ODJiMDZjMDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5NjY2MjMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTMzMzQzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZ+wMA0GCSqGSIb3DQEBCwUAA4IBAQBl F4M4KVweGi/CfrjiA9WCNBJDdjH6qPhWAt2RU1ABY8KPV+nu+7NyORI3pLm4McJF QWtI+PnNFNxZN+bUgUCGhqo4KtuVKQFsHK2eIAvbBJ5Cz2uQqe5XIdtrLA6m/ziV ZuwTiMxAZHs8dUN288vWmbtu8BZ+G1T3Pq0t7/oHNH+GnwuH0xB4x/folGz2ocbG VjgP3WAq7UTs73aVLwzMCB7dfXWC+h4KpJZDDsMfGbYG4OCpQkOoZ6rwIOHbpg0z arLxpki+aiqFOXe9YxnXAEAUol9xekqzR9M+UZxBOoKPuSL5kh/z5viLXFhrjUp0 UOfiE8xUEkNqr0dmjXbR -----END CERTIFICATE-----Generated at Sun Jun 15 19:08:12 2025 by rpki-client