$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333062363a3a2f34382d3438203d3e203331383938.roa File: 326131343a373538313a333062363a3a2f34382d3438203d3e203331383938.roa (raw, json) Hash identifier: EiykYxl+6FaTNBSgNTe5hk8ztAyCkiKmYpqs3J6XV7E= Subject key identifier: 81:85:5F:6B:4A:0E:51:60:3B:58:49:87:3E:85:04:73:B2:53:80:8D Certificate issuer: /CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Certificate serial: 08E19D43E113B21F5F9EE8E61EDB52D7E3B77A96 Authority key identifier: 20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333062363a3a2f34382d3438203d3e203331383938.roa Signing time: Fri 31 Oct 2025 15:49:02 +0000 ROA not before: Fri 31 Oct 2025 15:44:02 +0000 ROA not after: Fri 30 Oct 2026 15:49:02 +0000 asID: 31898 IP address blocks: 2a14:7581:30b6::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 14:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e1:9d:43:e1:13:b2:1f:5f:9e:e8:e6:1e:db:52:d7:e3:b7:7a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Validity Not Before: Oct 31 15:44:02 2025 GMT Not After : Oct 30 15:49:02 2026 GMT Subject: CN=81855F6B4A0E51603B5849873E850473B253808D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3a:52:31:b7:76:7f:f8:0b:98:39:60:50:e3: 34:f2:66:d0:64:a1:d2:26:3b:cf:47:da:7f:5d:e8: 6f:b5:cc:83:4b:0f:06:cf:49:29:b9:07:47:b6:d2: de:56:b2:f6:10:0d:e6:f3:27:82:b5:5c:47:8e:61: 9f:a7:0a:ef:5d:2e:c1:0c:71:92:2e:98:12:53:a9: ee:97:2d:86:a0:8b:5b:52:e1:07:a4:9d:7b:cd:a9: b4:6a:37:8a:9c:50:9d:a9:f6:05:40:cf:39:34:d2: 31:37:a3:23:7d:26:23:dd:cb:a6:e5:4d:d1:e1:44: a0:13:4b:f0:fb:96:e3:ad:3e:45:1f:c1:c0:e4:c5: 6d:fd:10:d5:fd:b2:3f:23:10:61:49:b4:a1:9d:34: 82:f9:da:99:e8:6e:b0:16:c1:ac:bf:1d:e9:12:ff: d5:da:e1:93:15:2a:bc:d8:2b:fb:b8:23:88:f4:4b: 5a:92:27:ee:d0:34:ac:90:3b:97:60:93:45:db:ad: 0e:25:01:67:f6:d6:80:68:94:4a:43:1e:13:75:6c: 27:59:0c:30:f9:10:77:12:15:3c:e1:f4:02:c9:c4: e3:fa:bf:46:57:ef:39:87:b3:3d:73:22:a7:be:fa: 49:8a:05:58:9a:88:19:64:e8:d2:10:38:53:26:d2: 64:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:85:5F:6B:4A:0E:51:60:3B:58:49:87:3E:85:04:73:B2:53:80:8D X509v3 Authority Key Identifier: keyid:20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333062363a3a2f34382d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:30b6::/48 Signature Algorithm: sha256WithRSAEncryption 21:0a:4e:9b:7a:70:38:1e:aa:70:cd:d2:83:a2:76:ae:07:6a: ad:4e:f1:f2:f5:49:ab:d9:27:3e:d9:ca:2c:ff:a2:8b:86:c2: d6:fb:81:10:5e:5a:bb:3d:66:86:8f:c8:b0:30:21:de:89:e2: 56:01:a6:a1:c8:56:83:90:42:9d:e2:78:7c:f8:4e:ec:8d:f6: f4:6b:ef:a6:50:ba:2b:65:ae:c5:c7:eb:08:81:fe:2d:e4:58: 0e:1c:5a:aa:86:d1:0b:5a:ed:4a:4e:2c:80:7e:f1:e2:51:89: cb:60:92:5b:9c:5b:bb:9f:c6:d5:a9:91:9c:2c:45:79:63:0a: 00:ca:ac:40:d1:63:3e:31:6f:2c:5b:60:08:8f:68:35:e9:21: b8:a0:4e:32:dc:75:d3:9b:b2:c4:8f:a6:20:91:43:72:9f:20: 3d:7a:da:cd:59:15:04:eb:86:0f:a3:40:e4:39:d8:c6:6f:b4: ae:af:f4:f3:88:5c:f4:c1:6c:55:72:5d:fd:1a:a2:22:11:90: 1b:ab:21:25:31:ad:64:28:c7:77:2c:24:02:32:dc:57:a1:05: 0b:55:b6:2a:97:4f:48:61:c8:f3:0c:0c:68:14:13:c0:61:73: a2:14:b5:cc:2e:c6:eb:c0:cc:57:56:65:8e:6e:6f:8f:cb:19: 7c:05:14:dd -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUCOGdQ+ETsh9fnujmHttS1+O3epYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZD ODg5MjNGMDAeFw0yNTEwMzExNTQ0MDJaFw0yNjEwMzAxNTQ5MDJaMDMxMTAvBgNV BAMTKDgxODU1RjZCNEEwRTUxNjAzQjU4NDk4NzNFODUwNDczQjI1MzgwOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfOlIxt3Z/+AuYOWBQ4zTyZtBk odImO89H2n9d6G+1zINLDwbPSSm5B0e20t5WsvYQDebzJ4K1XEeOYZ+nCu9dLsEM cZIumBJTqe6XLYagi1tS4QeknXvNqbRqN4qcUJ2p9gVAzzk00jE3oyN9JiPdy6bl TdHhRKATS/D7luOtPkUfwcDkxW39ENX9sj8jEGFJtKGdNIL52pnobrAWway/HekS /9Xa4ZMVKrzYK/u4I4j0S1qSJ+7QNKyQO5dgk0XbrQ4lAWf21oBolEpDHhN1bCdZ DDD5EHcSFTzh9ALJxOP6v0ZX7zmHsz1zIqe++kmKBViaiBlk6NIQOFMm0mSjAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUgYVfa0oOUWA7WEmHPoUEc7JTgI0wHwYDVR0j BBgwFoAUICqC2m5zzkJi4Yuu1go/psiJI/AwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDliZDM4ODgtOTMwMi00YjZmLWEwMTctMmI0YmJhNWU1 N2JiLzEvMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZDODg5MjNGMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMDJBODJEQTZFNzNDRTQyNjJFMThCQUVE NjBBM0ZBNkM4ODkyM0YwLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kOWJkMzg4OC05MzAyLTRiNmYtYTAxNy0yYjRiYmE1ZTU3YmIvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzA2MjM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMz MTM4MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEwtjANBgkqhkiG9w0BAQsFAAOCAQEAIQpO m3pwOB6qcM3Sg6J2rgdqrU7x8vVJq9knPtnKLP+ii4bC1vuBEF5auz1mho/IsDAh 3oniVgGmochWg5BCneJ4fPhO7I329GvvplC6K2WuxcfrCIH+LeRYDhxaqobRC1rt Sk4sgH7x4lGJy2CSW5xbu5/G1amRnCxFeWMKAMqsQNFjPjFvLFtgCI9oNekhuKBO Mtx105uyxI+mIJFDcp8gPXrazVkVBOuGD6NA5DnYxm+0rq/084hc9MFsVXJd/Rqi IhGQG6shJTGtZCjHdywkAjLcV6EFC1W2KpdPSGHI8wwMaBQTwGFzohS1zC7G68DM V1Zljm5vj8sZfAUU3Q== -----END CERTIFICATE-----Generated at Tue Nov 4 20:36:13 2025 by rpki-client