$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa File: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (raw, json) Hash identifier: CM6yYKZbtILEkjFEjxVgY2XszlZITvyYfxEqji4AD0c= Subject key identifier: 99:2F:2F:ED:18:45:4C:F5:1B:A3:FA:02:2D:1F:11:82:13:28:DA:CB Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 5FFDB09D49D33CB85C91081ED956DDCD75D8A56C Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa Signing time: Sun 12 Oct 2025 15:31:24 +0000 ROA not before: Sun 12 Oct 2025 15:26:24 +0000 ROA not after: Sun 11 Oct 2026 15:31:24 +0000 asID: 214084 IP address blocks: 2a14:7580:f310::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:fd:b0:9d:49:d3:3c:b8:5c:91:08:1e:d9:56:dd:cd:75:d8:a5:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Oct 12 15:26:24 2025 GMT Not After : Oct 11 15:31:24 2026 GMT Subject: CN=992F2FED18454CF51BA3FA022D1F11821328DACB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ac:74:0c:45:34:a3:de:db:e0:97:59:90:fa: f2:74:44:1b:6b:89:10:e3:d3:4f:78:71:16:6c:93: e6:a4:14:f4:24:a1:90:95:12:6e:86:69:1b:98:ad: 62:cc:74:6c:b7:08:e2:c6:f7:41:9f:f0:d0:e5:0a: b1:2d:4f:36:d1:a0:f3:9b:1d:c4:73:ee:27:94:de: ea:0c:55:00:3c:cc:40:c6:3e:df:d5:25:32:10:c4: 9c:9c:00:11:bc:ae:18:fe:bc:9f:17:29:70:4f:77: 78:e5:03:51:41:e2:76:40:df:6e:38:59:30:9c:98: 5b:ca:cc:6b:ba:42:32:76:0d:57:35:04:20:27:a9: c3:ff:c1:df:9e:8e:d8:c8:79:31:0e:bb:7e:6d:ba: b5:65:3b:96:1e:e9:84:83:b5:29:5c:d2:47:f8:9d: 8c:0c:78:73:f9:09:d4:ee:4c:ac:cc:db:97:6e:8f: a4:64:40:9c:a8:32:e1:a5:4c:33:92:1e:69:37:08: 54:93:95:74:0f:e6:bb:b8:75:c6:05:3e:9e:b8:9c: 15:fc:25:99:e3:07:2c:b9:87:23:e5:15:a7:68:47: ec:87:9b:07:b3:90:7d:94:37:4a:32:80:66:02:f8: cc:87:ab:87:a2:9c:8f:39:2b:8a:46:d3:ac:37:66: 4d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:2F:2F:ED:18:45:4C:F5:1B:A3:FA:02:2D:1F:11:82:13:28:DA:CB X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:f310::/44 Signature Algorithm: sha256WithRSAEncryption bb:c4:39:95:07:f1:6d:7c:eb:42:b5:96:15:e6:6d:41:31:76: a1:0f:13:1b:c8:86:c9:18:81:92:3f:ab:23:96:2f:31:e7:af: 1b:5b:7e:68:71:c8:3a:e7:87:62:cc:53:ad:97:c6:d8:b9:8e: 22:9f:7a:33:2f:ae:e6:be:88:8f:2d:34:ab:ed:95:90:d0:3b: ee:d3:30:ac:7f:db:1c:a5:39:8d:09:e3:84:ef:a5:0c:30:17: d2:3b:81:bd:d6:0f:d8:48:45:1f:21:c6:a5:26:01:19:2e:ef: 94:74:ce:dd:c0:8b:cc:86:8e:49:69:b9:1b:d7:b1:2f:b9:67: fe:de:70:e9:f4:82:32:c0:94:ab:5f:88:2a:5b:b2:e8:52:19: 16:23:d7:22:82:ee:9f:28:c5:92:33:6f:0b:a9:55:5f:f5:c4: 51:80:92:0a:6e:37:55:8b:46:e3:ea:17:0f:64:f5:55:24:a0: 46:75:9e:88:70:d6:7f:7b:9b:b5:58:2b:e7:0b:27:45:dd:12: 97:23:fd:74:f5:15:8b:da:10:8d:6e:97:98:6b:13:4e:e7:b4: 02:41:26:9c:c0:11:b6:68:d3:a5:6c:3d:61:42:93:8a:d5:bd: 0d:7c:10:67:1c:be:dc:8e:11:8f:4e:1b:40:70:e7:ed:a7:d1: ea:28:b8:38 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUX/2wnUnTPLhckQge2VbdzXXYpWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTEwMTIxNTI2MjRaFw0yNjEwMTExNTMxMjRaMDMxMTAvBgNV BAMTKDk5MkYyRkVEMTg0NTRDRjUxQkEzRkEwMjJEMUYxMTgyMTMyOERBQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8rHQMRTSj3tvgl1mQ+vJ0RBtr iRDj0094cRZsk+akFPQkoZCVEm6GaRuYrWLMdGy3COLG90Gf8NDlCrEtTzbRoPOb HcRz7ieU3uoMVQA8zEDGPt/VJTIQxJycABG8rhj+vJ8XKXBPd3jlA1FB4nZA3244 WTCcmFvKzGu6QjJ2DVc1BCAnqcP/wd+ejtjIeTEOu35turVlO5Ye6YSDtSlc0kf4 nYwMeHP5CdTuTKzM25duj6RkQJyoMuGlTDOSHmk3CFSTlXQP5ru4dcYFPp64nBX8 JZnjByy5hyPlFadoR+yHmwezkH2UN0oygGYC+MyHq4einI85K4pG06w3Zk19AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUmS8v7RhFTPUbo/oCLR8RghMo2sswHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xOWFhOWRhNy1mMWU0LTRkOTgtYmY5NS05ZmRmY2Y0NDhmNzcvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2MzMzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzAzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gPMQMA0GCSqGSIb3DQEBCwUAA4IBAQC7 xDmVB/FtfOtCtZYV5m1BMXahDxMbyIbJGIGSP6sjli8x568bW35occg654dizFOt l8bYuY4in3ozL67mvoiPLTSr7ZWQ0Dvu0zCsf9scpTmNCeOE76UMMBfSO4G91g/Y SEUfIcalJgEZLu+UdM7dwIvMho5Jabkb17EvuWf+3nDp9IIywJSrX4gqW7LoUhkW I9cigu6fKMWSM28LqVVf9cRRgJIKbjdVi0bj6hcPZPVVJKBGdZ6IcNZ/e5u1WCvn CydF3RKXI/109RWL2hCNbpeYaxNO57QCQSacwBG2aNOlbD1hQpOK1b0NfBBnHL7c jhGPThtAcOftp9HqKLg4 -----END CERTIFICATE-----Generated at Mon Oct 20 03:17:14 2025 by rpki-client