$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa File: 326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa (raw, json) Hash identifier: d4zl7cmcGUAAv9RizmWWAY0eQtY35rFHYQeuDAs5cgc= Subject key identifier: 29:57:9B:9E:D2:33:B3:1E:2F:E3:CA:BF:D0:2F:04:ED:0C:0B:09:D5 Certificate issuer: /CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Certificate serial: 4B7A6EC2B1649CB2AEB95EDFD6FD475D8B61DEE2 Authority key identifier: 5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa Signing time: Mon 23 Jun 2025 12:49:33 +0000 ROA not before: Mon 23 Jun 2025 12:44:33 +0000 ROA not after: Mon 22 Jun 2026 12:49:33 +0000 asID: 207427 IP address blocks: 2a14:7580:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:7a:6e:c2:b1:64:9c:b2:ae:b9:5e:df:d6:fd:47:5d:8b:61:de:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Validity Not Before: Jun 23 12:44:33 2025 GMT Not After : Jun 22 12:49:33 2026 GMT Subject: CN=29579B9ED233B31E2FE3CABFD02F04ED0C0B09D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:61:49:ec:66:7f:50:b7:ab:5f:3c:fb:18:ff: 47:90:1a:c0:8e:cc:d2:35:ed:de:e0:85:f7:49:cd: 70:c8:7f:e1:c2:38:b7:14:fa:a1:f0:44:d1:f1:9e: 91:f4:a0:ba:73:d3:c4:e8:6e:ce:bb:01:3f:95:82: 18:52:aa:5e:74:aa:8f:fb:d6:50:f7:ec:c2:11:5a: dc:20:49:0b:2f:f7:94:94:05:0c:c2:28:77:c0:b8: 05:d2:61:b5:d6:7f:62:de:07:f0:d0:0b:83:5b:67: 19:3e:ca:a9:28:e8:0e:64:1a:28:33:4d:c4:be:8f: b4:e1:47:eb:3c:ad:fc:0c:07:7b:a2:a8:52:8d:8d: ed:cd:2c:87:dd:9c:d5:85:fa:9e:cd:9e:f5:33:29: 87:89:f4:ab:e5:50:b1:03:66:c8:06:de:2b:28:b9: e3:4e:5e:04:e7:76:5c:91:26:6d:0a:d3:f6:3f:88: a5:11:a7:df:3b:ab:76:18:7b:cf:c1:47:de:42:54: 2b:69:30:d7:4f:01:dc:d0:c1:56:3c:5a:85:04:72: 7e:af:1f:0e:7d:03:25:8b:56:3f:40:2d:a4:1b:98: aa:78:07:75:6c:82:09:06:ce:c0:ec:f2:29:94:39: 6d:f2:e4:bf:36:e2:8e:8d:4b:79:24:a6:48:89:cc: 42:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:57:9B:9E:D2:33:B3:1E:2F:E3:CA:BF:D0:2F:04:ED:0C:0B:09:D5 X509v3 Authority Key Identifier: keyid:5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:300::/48 Signature Algorithm: sha256WithRSAEncryption 76:0f:97:5e:d7:e3:12:53:ec:f8:25:34:ed:a9:2a:35:e2:a8: 71:0f:15:4b:ed:be:d9:b6:16:80:04:54:ff:ab:fe:e8:bb:a7: 15:23:04:d2:35:30:64:a6:6c:48:ab:ae:e3:83:f4:e9:4b:19: 82:bb:b2:ce:aa:1d:24:66:32:b6:cb:a2:dd:ed:c3:cd:81:a7: 86:42:2f:b2:28:0e:14:ba:96:e7:a5:8f:66:7a:0d:50:2a:87: 66:c0:b9:5a:a5:6e:0f:37:51:12:c6:81:ae:63:4d:b7:ce:af: fd:75:d3:5f:63:de:78:28:a0:c4:8d:a0:9f:78:d3:2f:57:57: cd:24:53:5e:fb:94:f8:8a:82:94:c7:3f:6b:a0:f9:87:bc:93: 9b:e2:cc:6e:f4:ba:b1:cf:a9:67:83:9e:d5:9e:9e:06:fc:48: 20:85:6d:32:81:76:56:e5:ea:39:45:32:ae:e3:1f:89:2b:15: 72:bc:d7:e6:da:95:e8:58:1e:a9:1a:0e:b4:19:eb:e0:63:bf: 7a:d6:1d:f7:c9:c4:9c:11:f1:cb:e4:b4:9e:d8:76:2a:8a:dc: 2d:60:0b:e4:b0:45:47:d7:ac:89:03:a1:d8:3e:d3:4a:64:c5: 16:24:0a:75:64:c0:cc:0a:08:e4:b9:49:2b:37:7d:c7:6f:a3: ec:66:0f:a8 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUS3puwrFknLKuuV7f1v1HXYth3uIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRF RDkxMTU5MjAeFw0yNTA2MjMxMjQ0MzNaFw0yNjA2MjIxMjQ5MzNaMDMxMTAvBgNV BAMTKDI5NTc5QjlFRDIzM0IzMUUyRkUzQ0FCRkQwMkYwNEVEMEMwQjA5RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrYUnsZn9Qt6tfPPsY/0eQGsCO zNI17d7ghfdJzXDIf+HCOLcU+qHwRNHxnpH0oLpz08Tobs67AT+VghhSql50qo/7 1lD37MIRWtwgSQsv95SUBQzCKHfAuAXSYbXWf2LeB/DQC4NbZxk+yqko6A5kGigz TcS+j7ThR+s8rfwMB3uiqFKNje3NLIfdnNWF+p7NnvUzKYeJ9KvlULEDZsgG3iso ueNOXgTndlyRJm0K0/Y/iKURp987q3YYe8/BR95CVCtpMNdPAdzQwVY8WoUEcn6v Hw59AyWLVj9ALaQbmKp4B3VsggkGzsDs8imUOW3y5L824o6NS3kkpkiJzEJfAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUKVebntIzsx4v48q/0C8E7QwLCdUwHwYDVR0j BBgwFoAUW+bweBw6enT5k8U9wH/EJO2RFZIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDJhZWQwYTQtM2U3Ni00ODMwLWJiYjQtMWNiYzIwNDM1 MmIzLzAvNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRFRDkxMTU5Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81QkU2RjA3ODFDM0E3QTc0Rjk5M0M1M0RD MDdGQzQyNEVEOTExNTkyLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wMmFlZDBhNC0zZTc2LTQ4MzAtYmJiNC0xY2JjMjA0MzUyYjMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTMzMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz NzM0MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYADADANBgkqhkiG9w0BAQsFAAOCAQEAdg+X XtfjElPs+CU07akqNeKocQ8VS+2+2bYWgARU/6v+6LunFSME0jUwZKZsSKuu44P0 6UsZgruyzqodJGYytsui3e3DzYGnhkIvsigOFLqW56WPZnoNUCqHZsC5WqVuDzdR EsaBrmNNt86v/XXTX2PeeCigxI2gn3jTL1dXzSRTXvuU+IqClMc/a6D5h7yTm+LM bvS6sc+pZ4Oe1Z6eBvxIIIVtMoF2VuXqOUUyruMfiSsVcrzX5tqV6FgeqRoOtBnr 4GO/etYd98nEnBHxy+S0nth2KorcLWAL5LBFR9esiQOh2D7TSmTFFiQKdWTAzAoI 5LlJKzd9x2+j7GYPqA== -----END CERTIFICATE-----Generated at Sun Jun 29 17:11:42 2025 by rpki-client