$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766323a3a2f34382d3438203d3e20323135323432.roa File: 326130663a383563313a3766323a3a2f34382d3438203d3e20323135323432.roa (raw, json) Hash identifier: sEiHLlrRoeeUa4AJCYCoXBnr24SESsEbTviJLVfMEys= Subject key identifier: A4:F4:5E:85:CC:62:00:1A:17:18:97:80:0B:1E:BD:C8:B2:5D:87:20 Certificate issuer: /CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Certificate serial: 5246B38293C506228D467C036D756B796FE01556 Authority key identifier: 1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766323a3a2f34382d3438203d3e20323135323432.roa Signing time: Mon 30 Jun 2025 21:33:58 +0000 ROA not before: Mon 30 Jun 2025 21:28:58 +0000 ROA not after: Mon 29 Jun 2026 21:33:58 +0000 asID: 215242 IP address blocks: 2a0f:85c1:7f2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 23:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:46:b3:82:93:c5:06:22:8d:46:7c:03:6d:75:6b:79:6f:e0:15:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Validity Not Before: Jun 30 21:28:58 2025 GMT Not After : Jun 29 21:33:58 2026 GMT Subject: CN=A4F45E85CC62001A171897800B1EBDC8B25D8720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:87:aa:57:50:62:43:02:aa:64:ff:a7:59:69: aa:8a:f3:8a:59:bb:6e:4b:df:0c:c4:56:66:9e:d8: d3:0a:b9:ed:31:75:29:fd:17:b0:75:ee:3d:00:d7: 64:b9:60:17:f4:80:85:5b:31:16:12:22:33:c1:21: cf:e7:98:24:c5:16:57:c0:c3:66:a8:47:15:08:6d: 78:7b:f5:2a:71:9f:aa:23:d0:8a:3f:42:b6:f6:41: 78:59:dc:4d:6f:88:64:a1:c3:d3:86:3f:d2:3b:ee: 48:16:3a:62:6d:d0:a2:e0:29:a0:a9:6b:d6:15:0b: cd:cf:69:09:69:d2:2d:b0:0c:c1:b2:34:2e:32:22: 7e:3a:9c:e2:07:14:93:70:bd:df:eb:9d:38:db:15: f9:eb:c5:a9:16:b4:28:cd:ac:d1:c3:50:e5:95:a8: 36:f3:3b:4c:2f:f0:ca:8c:09:02:f6:b1:67:7b:aa: a6:b1:0d:fb:34:11:4d:a5:6c:6e:f2:4f:ce:04:aa: 8e:ca:3e:53:fc:9a:83:c1:5c:55:62:0f:64:19:5d: 3b:3d:9c:94:7a:75:ea:3d:ee:9d:e1:a2:2e:8a:25: 6d:2d:c8:da:af:29:f3:5f:94:86:0a:55:54:40:ed: a3:6e:88:51:58:5c:b3:24:18:0f:a4:d5:37:fb:36: 84:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F4:5E:85:CC:62:00:1A:17:18:97:80:0B:1E:BD:C8:B2:5D:87:20 X509v3 Authority Key Identifier: keyid:1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766323a3a2f34382d3438203d3e20323135323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:7f2::/48 Signature Algorithm: sha256WithRSAEncryption 11:ef:f8:76:be:79:8a:c2:78:da:df:e4:77:e1:d1:38:98:37: f3:09:9d:45:be:c1:ad:f7:1e:d7:f7:61:95:60:53:ad:85:b5: b3:bd:ed:be:7a:82:3c:13:d4:17:bd:9a:eb:3b:ef:47:85:76: 52:b6:76:a6:a1:87:f2:78:61:7e:f2:9d:d8:1b:e0:88:24:03: 12:15:6e:ff:50:96:bf:25:f1:c6:c9:39:d7:b4:fd:d4:a3:b3: aa:8a:02:36:95:bc:4b:d9:1d:28:59:df:c7:ca:83:5a:0b:76: 89:c9:13:fd:f8:29:52:90:16:73:e7:0c:ec:34:f8:09:7e:78: 87:2c:a7:56:0d:6e:79:2a:f3:b4:0f:f9:b2:0f:5c:fd:aa:63: fd:b7:67:5c:36:0a:ca:a8:e6:d5:7c:86:fd:fc:c1:f2:17:02: e0:aa:3a:0f:d1:71:61:86:ea:5f:b9:33:83:f6:f7:8b:09:fc: 36:f8:d7:d9:b4:69:c6:d6:75:15:d3:79:96:b4:11:7a:78:78: 69:37:e1:19:38:c5:88:50:c2:8e:b8:dd:8c:4a:48:86:24:3d: e5:24:fb:ff:a3:f8:d8:6c:e5:40:5d:17:a0:22:a2:7d:54:21: e4:f7:d2:3c:c0:1e:06:7f:cb:46:50:37:fb:eb:5d:60:39:27: 4c:f7:43:a8 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUUkazgpPFBiKNRnwDbXVreW/gFVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0 OUMxODM3NzAeFw0yNTA2MzAyMTI4NThaFw0yNjA2MjkyMTMzNThaMDMxMTAvBgNV BAMTKEE0RjQ1RTg1Q0M2MjAwMUExNzE4OTc4MDBCMUVCREM4QjI1RDg3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzh6pXUGJDAqpk/6dZaaqK84pZ u25L3wzEVmae2NMKue0xdSn9F7B17j0A12S5YBf0gIVbMRYSIjPBIc/nmCTFFlfA w2aoRxUIbXh79Spxn6oj0Io/Qrb2QXhZ3E1viGShw9OGP9I77kgWOmJt0KLgKaCp a9YVC83PaQlp0i2wDMGyNC4yIn46nOIHFJNwvd/rnTjbFfnrxakWtCjNrNHDUOWV qDbzO0wv8MqMCQL2sWd7qqaxDfs0EU2lbG7yT84Eqo7KPlP8moPBXFViD2QZXTs9 nJR6deo97p3hoi6KJW0tyNqvKfNflIYKVVRA7aNuiFFYXLMkGA+k1Tf7NoT5AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUpPRehcxiABoXGJeACx69yLJdhyAwHwYDVR0j BBgwFoAUGpCmrhVCo1PMp0l36yv+KknBg3cwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDA2MzMzYzYtOTQ2ZC00YjBiLTk1ZWYtZGFiYTI2MmE0 MmUxLzEvMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0OUMxODM3Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC8xQTkwQTZBRTE1NDJBMzUzQ0NBNzQ5NzdF QjJCRkUyQTQ5QzE4Mzc3LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kMDYzMzNjNi05NDZkLTRiMGItOTVlZi1kYWJhMjYyYTQyZTEvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTM3NjYzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NTMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcEH8jANBgkqhkiG9w0BAQsFAAOCAQEAEe/4 dr55isJ42t/kd+HROJg38wmdRb7Brfce1/dhlWBTrYW1s73tvnqCPBPUF72a6zvv R4V2UrZ2pqGH8nhhfvKd2BvgiCQDEhVu/1CWvyXxxsk517T91KOzqooCNpW8S9kd KFnfx8qDWgt2ickT/fgpUpAWc+cM7DT4CX54hyynVg1ueSrztA/5sg9c/apj/bdn XDYKyqjm1XyG/fzB8hcC4Ko6D9FxYYbqX7kzg/b3iwn8NvjX2bRpxtZ1FdN5lrQR enh4aTfhGTjFiFDCjrjdjEpIhiQ95ST7/6P42GzlQF0XoCKifVQh5PfSPMAeBn/L RlA3++tdYDknTPdDqA== -----END CERTIFICATE-----Generated at Wed Aug 6 08:00:16 2025 by rpki-client