$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3761303a3a2f34342d3438203d3e20313531313934.roa File: 326131343a373538303a3761303a3a2f34342d3438203d3e20313531313934.roa (raw, json) Hash identifier: MhfSMgOUdMy7zOQbQ7utCWK4Xb73mUPNGp3jE9+Q0vs= Subject key identifier: 04:6C:90:D5:04:37:76:81:16:D5:F6:13:6D:F9:86:5A:99:87:95:50 Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Certificate serial: 7031AA928A999D2455C2F2754D086484978AB7E0 Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3761303a3a2f34342d3438203d3e20313531313934.roa Signing time: Thu 31 Jul 2025 15:07:46 +0000 ROA not before: Thu 31 Jul 2025 15:02:46 +0000 ROA not after: Thu 30 Jul 2026 15:07:46 +0000 asID: 151194 IP address blocks: 2a14:7580:7a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 11:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:31:aa:92:8a:99:9d:24:55:c2:f2:75:4d:08:64:84:97:8a:b7:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Validity Not Before: Jul 31 15:02:46 2025 GMT Not After : Jul 30 15:07:46 2026 GMT Subject: CN=046C90D50437768116D5F6136DF9865A99879550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2a:4d:5c:e4:b2:4f:2a:bc:3b:34:ef:df:06: ea:7b:8b:ff:d6:15:95:10:d2:d3:ce:16:a0:0a:78: 2c:08:1a:cf:46:22:d3:5a:26:63:68:e8:4a:a8:73: 10:1b:a4:f8:21:c2:9a:fb:3c:ff:ad:90:c3:e1:9d: 1e:4c:ad:f9:20:7a:f4:b9:32:17:1a:d4:36:26:3f: a4:49:6a:3f:e9:bb:86:14:be:8f:b2:2c:34:62:d7: 77:80:58:b9:5e:b9:5d:67:c4:8f:8b:0d:a1:76:9e: 45:55:9f:06:7e:ed:d0:38:13:da:ec:53:22:c0:15: 17:c7:b3:34:9f:3a:02:9d:9f:95:74:f1:42:97:f1: 0c:f5:df:0a:9a:d7:fa:95:c2:f4:1a:51:17:0b:0a: 2a:45:a0:a9:c9:05:d0:25:55:e9:ba:49:a9:10:ff: 66:02:86:4a:6e:c5:32:a6:dd:4d:0d:fd:10:0e:18: 4e:b2:d5:35:45:12:80:13:ad:e1:0c:4d:38:d0:bd: f2:62:12:bc:a0:d7:1d:fb:ea:ab:57:0d:d3:e0:3b: eb:2b:ae:a0:c9:08:61:30:b0:f5:db:c5:92:6e:ee: 99:bb:2d:58:47:71:0e:c5:01:e8:5f:4c:57:61:d2: 34:bd:cd:c3:29:5f:77:ba:ee:e9:3c:74:c3:e3:15: 1e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:6C:90:D5:04:37:76:81:16:D5:F6:13:6D:F9:86:5A:99:87:95:50 X509v3 Authority Key Identifier: keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3761303a3a2f34342d3438203d3e20313531313934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:7a0::/44 Signature Algorithm: sha256WithRSAEncryption 3b:9a:3c:ad:22:6d:f2:d7:77:9c:4e:7d:01:7d:7d:3d:b7:12: 06:5d:a0:5f:3b:b2:66:74:90:5a:d1:a9:87:47:14:ff:27:de: ce:8b:36:58:2a:3c:d3:fc:e1:5f:dd:ed:f8:9c:10:4a:29:6e: 9a:44:bd:94:1d:14:25:8e:48:4a:8f:2d:c5:35:0e:c4:fd:da: a0:3c:d3:07:15:1a:cf:c9:b9:b2:7f:4e:bc:fb:45:c7:55:42: 04:9a:84:87:80:d9:c7:e9:1e:c3:71:16:92:cd:38:db:1e:21: 52:27:ce:06:cb:d3:0a:5a:5c:65:6c:20:84:13:ff:d2:c2:db: 8e:5a:a4:c2:4d:a5:d5:21:86:92:d1:77:bc:bd:dd:19:f8:b7: 1b:81:cf:42:ce:13:f3:9e:5a:e7:75:cc:8e:a7:0b:b7:b2:12: 12:3c:68:be:e8:b5:3c:11:22:c5:fd:11:99:c8:a1:5d:e6:f1: 91:2b:1c:ae:bb:ee:c8:80:4e:18:94:87:16:4a:9c:42:1d:ea: ad:9d:b4:22:8f:fa:90:48:78:a3:2e:95:0f:9b:63:e9:27:44: 41:15:6f:c8:e3:3b:0a:c2:f8:6a:9d:69:8c:40:f2:4c:db:1f: e7:3a:1d:4c:99:09:ee:cb:ec:5e:7d:ff:e7:14:20:35:7b:6b: 42:37:88:78 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUcDGqkoqZnSRVwvJ1TQhkhJeKt+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdB MDA1M0M3OTAeFw0yNTA3MzExNTAyNDZaFw0yNjA3MzAxNTA3NDZaMDMxMTAvBgNV BAMTKDA0NkM5MEQ1MDQzNzc2ODExNkQ1RjYxMzZERjk4NjVBOTk4Nzk1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCKk1c5LJPKrw7NO/fBup7i//W FZUQ0tPOFqAKeCwIGs9GItNaJmNo6EqocxAbpPghwpr7PP+tkMPhnR5MrfkgevS5 Mhca1DYmP6RJaj/pu4YUvo+yLDRi13eAWLleuV1nxI+LDaF2nkVVnwZ+7dA4E9rs UyLAFRfHszSfOgKdn5V08UKX8Qz13wqa1/qVwvQaURcLCipFoKnJBdAlVem6SakQ /2YChkpuxTKm3U0N/RAOGE6y1TVFEoATreEMTTjQvfJiEryg1x376qtXDdPgO+sr rqDJCGEwsPXbxZJu7pm7LVhHcQ7FAehfTFdh0jS9zcMpX3e67uk8dMPjFR6FAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUBGyQ1QQ3doEW1fYTbfmGWpmHlVAwHwYDVR0j BBgwFoAUG4BIUxz+0l3t5O+Ty+69N6AFPHkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzZmZDRlYTEtYTI2Ni00ZGVhLWI0OGEtMTVkYTM1NDUy MTA5LzIvMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdBMDA1M0M3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xQjgwNDg1MzFDRkVEMjVERURFNEVGOTND QkVFQkQzN0EwMDUzQzc5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNmZkNGVhMS1hMjY2LTRkZWEtYjQ4YS0xNWRhMzU0NTIxMDkvMi8zMjYxMzEz NDNhMzczNTM4MzAzYTM3NjEzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMxMzUz MTMxMzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYAHoDANBgkqhkiG9w0BAQsFAAOCAQEAO5o8 rSJt8td3nE59AX19PbcSBl2gXzuyZnSQWtGph0cU/yfezos2WCo80/zhX93t+JwQ SilumkS9lB0UJY5ISo8txTUOxP3aoDzTBxUaz8m5sn9OvPtFx1VCBJqEh4DZx+ke w3EWks042x4hUifOBsvTClpcZWwghBP/0sLbjlqkwk2l1SGGktF3vL3dGfi3G4HP Qs4T855a53XMjqcLt7ISEjxovui1PBEixf0RmcihXebxkSscrrvuyIBOGJSHFkqc Qh3qrZ20Io/6kEh4oy6VD5tj6SdEQRVvyOM7CsL4ap1pjEDyTNsf5zodTJkJ7svs Xn3/5xQgNXtrQjeIeA== -----END CERTIFICATE-----Generated at Wed Aug 6 00:39:11 2025 by rpki-client