$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3762303a3a2f34342d3438203d3e20313938303235.roa File: 326131343a373538303a3762303a3a2f34342d3438203d3e20313938303235.roa (raw, json) Hash identifier: JAE7lucu4kiMGAKTCYpftvBPLTlJBVnkXPYkQPr6BDU= Subject key identifier: 9B:71:68:79:6B:75:4D:C9:8C:34:87:8C:67:D3:89:68:B3:C2:D4:67 Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Certificate serial: 1455F525BEAD9B45067C128570D6DCBE36DE4952 Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3762303a3a2f34342d3438203d3e20313938303235.roa Signing time: Thu 31 Jul 2025 15:07:58 +0000 ROA not before: Thu 31 Jul 2025 15:02:58 +0000 ROA not after: Thu 30 Jul 2026 15:07:58 +0000 asID: 198025 IP address blocks: 2a14:7580:7b0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 11:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:55:f5:25:be:ad:9b:45:06:7c:12:85:70:d6:dc:be:36:de:49:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Validity Not Before: Jul 31 15:02:58 2025 GMT Not After : Jul 30 15:07:58 2026 GMT Subject: CN=9B7168796B754DC98C34878C67D38968B3C2D467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:1f:f5:54:de:81:d1:32:09:aa:a4:94:65:7d: 63:4e:ab:b3:56:ec:2d:5c:a9:4b:d6:bc:7a:40:77: 55:86:d3:f2:74:7d:4d:1a:db:7c:5c:34:9a:b3:48: d4:d8:f5:9e:ee:e8:7b:b3:87:21:18:33:94:5a:04: 99:b6:16:cb:dc:ba:06:ae:fa:0c:b3:15:80:32:35: 1d:30:71:a0:3c:5e:91:6a:83:92:d5:46:38:c7:58: 1b:c5:c6:c2:93:1f:90:ae:7b:f8:ba:50:09:6d:6f: fc:1f:35:9f:7d:25:3a:5d:3e:01:4e:57:3c:c1:81: 48:14:7c:3e:25:68:4a:98:eb:de:3c:f9:b7:df:4b: fa:ac:02:ec:e3:ce:c6:cb:c6:3a:e9:49:5f:41:14: 81:92:0e:bf:59:69:a6:63:51:67:1f:8f:6d:67:21: e1:aa:e0:92:9e:12:73:34:ac:96:14:d2:04:a5:bc: e9:14:f9:e7:67:a4:61:f5:8b:bf:fa:02:a0:71:59: d6:ab:0b:be:bf:6c:f2:85:8e:82:b7:94:e9:ff:47: 65:e2:5f:94:a6:95:bc:29:c9:a3:22:6a:e7:25:e9: 10:16:dd:66:ae:f4:34:a2:bb:77:40:3a:bf:92:30: a0:ca:19:db:d9:2a:25:8b:d1:c6:51:22:1e:76:2a: 6c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:71:68:79:6B:75:4D:C9:8C:34:87:8C:67:D3:89:68:B3:C2:D4:67 X509v3 Authority Key Identifier: keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3762303a3a2f34342d3438203d3e20313938303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:7b0::/44 Signature Algorithm: sha256WithRSAEncryption 13:6a:50:fb:fb:5d:d9:ab:a2:40:ea:88:f2:56:b2:8c:2f:73: 60:dc:36:9e:66:db:22:61:c7:87:fd:53:07:3f:ca:b0:d6:57: 04:83:6d:37:2a:3d:f4:e6:ee:7f:07:5a:06:66:36:d5:f1:2a: 85:84:61:2f:04:e2:9e:71:21:2c:33:dc:a7:5c:db:cb:ad:71: f2:e9:80:28:48:8c:24:f7:67:43:06:94:c5:3f:2f:cb:25:46: 4e:cf:13:30:90:30:bf:28:1c:70:70:bf:52:e1:28:53:88:ac: a1:ba:c0:2f:44:cb:af:57:f4:53:1d:38:ed:39:47:56:b2:88: 53:b8:80:d3:10:51:bc:0a:11:c1:45:69:f6:1d:8d:a8:f4:2d: c0:8d:f0:6e:5f:cb:9f:b9:14:db:2b:85:99:00:90:5e:9b:0f: a1:a3:f7:74:12:48:d1:ea:de:59:fe:8f:da:03:86:4c:b8:92: 2a:7b:ce:69:6a:96:17:31:05:bd:08:62:46:9d:0f:80:f8:77: bc:0d:98:0f:61:95:e6:9a:ca:29:9c:1f:18:b2:79:c0:c3:87: 04:22:8d:ce:9a:3f:70:6b:b7:2e:f3:72:e4:66:53:7f:04:c7: b9:f1:80:22:75:cf:db:ee:86:c5:39:c3:6a:75:bf:05:ff:f7: d8:07:1c:45 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUFFX1Jb6tm0UGfBKFcNbcvjbeSVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdB MDA1M0M3OTAeFw0yNTA3MzExNTAyNThaFw0yNjA3MzAxNTA3NThaMDMxMTAvBgNV BAMTKDlCNzE2ODc5NkI3NTREQzk4QzM0ODc4QzY3RDM4OTY4QjNDMkQ0NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIH/VU3oHRMgmqpJRlfWNOq7NW 7C1cqUvWvHpAd1WG0/J0fU0a23xcNJqzSNTY9Z7u6HuzhyEYM5RaBJm2Fsvcugau +gyzFYAyNR0wcaA8XpFqg5LVRjjHWBvFxsKTH5Cue/i6UAltb/wfNZ99JTpdPgFO VzzBgUgUfD4laEqY6948+bffS/qsAuzjzsbLxjrpSV9BFIGSDr9ZaaZjUWcfj21n IeGq4JKeEnM0rJYU0gSlvOkU+ednpGH1i7/6AqBxWdarC76/bPKFjoK3lOn/R2Xi X5SmlbwpyaMiaucl6RAW3Wau9DSiu3dAOr+SMKDKGdvZKiWL0cZRIh52KmyXAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUm3FoeWt1TcmMNIeMZ9OJaLPC1GcwHwYDVR0j BBgwFoAUG4BIUxz+0l3t5O+Ty+69N6AFPHkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzZmZDRlYTEtYTI2Ni00ZGVhLWI0OGEtMTVkYTM1NDUy MTA5LzIvMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdBMDA1M0M3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xQjgwNDg1MzFDRkVEMjVERURFNEVGOTND QkVFQkQzN0EwMDUzQzc5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNmZkNGVhMS1hMjY2LTRkZWEtYjQ4YS0xNWRhMzU0NTIxMDkvMi8zMjYxMzEz NDNhMzczNTM4MzAzYTM3NjIzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMxMzkz ODMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYAHsDANBgkqhkiG9w0BAQsFAAOCAQEAE2pQ +/td2auiQOqI8layjC9zYNw2nmbbImHHh/1TBz/KsNZXBINtNyo99ObufwdaBmY2 1fEqhYRhLwTinnEhLDPcp1zby61x8umAKEiMJPdnQwaUxT8vyyVGTs8TMJAwvygc cHC/UuEoU4isobrAL0TLr1f0Ux047TlHVrKIU7iA0xBRvAoRwUVp9h2NqPQtwI3w bl/Ln7kU2yuFmQCQXpsPoaP3dBJI0ereWf6P2gOGTLiSKnvOaWqWFzEFvQhiRp0P gPh3vA2YD2GV5prKKZwfGLJ5wMOHBCKNzpo/cGu3LvNy5GZTfwTHufGAInXP2+6G xTnDanW/Bf/32AccRQ== -----END CERTIFICATE-----Generated at Tue Aug 5 23:03:19 2025 by rpki-client