$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538353a3a2f33342d3438203d3e20323134343531.roa File: 326131343a373538353a3a2f33342d3438203d3e20323134343531.roa (raw, json) Hash identifier: yjNthGbbmW0Ge+31mmqVYbuaafw7Gi25y1PPXI63utw= Subject key identifier: 9D:20:D1:05:BD:F4:C6:1F:0E:2C:23:D7:49:F9:3D:F4:38:91:49:9F Certificate issuer: /CN=41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B Certificate serial: 2BA59BB3E22BB78E73E94B77348ABAC04791BF16 Authority key identifier: 41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538353a3a2f33342d3438203d3e20323134343531.roa Signing time: Sun 15 Jun 2025 12:25:42 +0000 ROA not before: Sun 15 Jun 2025 12:20:42 +0000 ROA not after: Sun 14 Jun 2026 12:25:42 +0000 asID: 214451 IP address blocks: 2a14:7585::/34 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 16:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:a5:9b:b3:e2:2b:b7:8e:73:e9:4b:77:34:8a:ba:c0:47:91:bf:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B Validity Not Before: Jun 15 12:20:42 2025 GMT Not After : Jun 14 12:25:42 2026 GMT Subject: CN=9D20D105BDF4C61F0E2C23D749F93DF43891499F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b7:56:f8:b0:b6:59:9f:b0:6c:38:a3:43:14: ab:e8:85:76:e0:f1:72:e2:fe:29:da:65:82:b1:9f: 50:71:15:73:97:61:c4:72:69:27:be:97:51:0d:44: 41:fd:47:a5:59:d0:f8:1a:20:5a:00:75:40:25:21: 73:17:0d:46:5a:aa:29:1c:45:91:62:25:d3:26:89: dc:6f:3d:41:e6:44:94:0b:53:fc:11:fc:77:8d:32: 8c:3d:5d:19:cf:e1:15:bc:cc:e6:39:4e:3c:ea:9e: 19:3a:38:42:8f:39:30:82:7e:c9:fd:a6:5d:2b:a6: f7:29:10:00:65:a0:93:82:87:07:be:7b:9b:65:62: be:e8:2e:69:49:4e:25:24:24:71:4e:30:b1:55:b1: dc:bf:e2:e3:13:ad:82:8b:e1:b6:c6:08:45:e2:0a: 0a:70:da:40:66:e1:a4:5b:a2:84:61:71:8a:6b:c1: e1:7d:e6:d7:ab:37:fb:34:68:6d:f8:2c:29:b8:51: c9:28:be:20:00:bc:54:5b:80:f1:eb:1d:93:d8:fc: 60:f2:64:9c:ad:10:8a:19:f2:2f:c0:9b:6c:91:e2: fd:f1:f6:55:29:77:2d:ce:a5:ed:f7:07:dd:05:35: 6a:10:a9:cd:93:ab:23:e6:b2:3a:2c:e7:47:0e:06: 27:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:20:D1:05:BD:F4:C6:1F:0E:2C:23:D7:49:F9:3D:F4:38:91:49:9F X509v3 Authority Key Identifier: keyid:41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538353a3a2f33342d3438203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7585::/34 Signature Algorithm: sha256WithRSAEncryption 02:6c:66:a6:91:72:83:52:17:15:83:7f:13:7a:4d:bf:ae:66: 3a:6f:b2:76:ec:fb:a1:c1:ec:91:e9:e8:de:8c:4e:ba:e7:ec: 06:06:b6:57:bd:bf:bd:cf:14:48:6d:1f:bc:bc:8d:ea:6f:a9: f9:b7:3b:01:bb:ea:81:9a:b9:87:e2:bf:0e:b1:0b:4a:69:fc: 81:c3:02:77:cf:a9:f8:6a:7c:02:fc:5a:1c:22:4a:82:31:cf: 04:ad:39:8c:70:b1:60:62:cc:6a:e6:34:91:ae:0d:40:09:6c: cb:0e:fa:95:bf:8b:b4:7c:0a:f8:6b:5c:0f:86:ca:91:b0:d8: 06:48:80:bd:7a:cc:9e:2d:b0:62:74:8b:a5:57:6f:9a:49:fc: be:a4:89:9f:ad:5e:0f:b7:bb:db:dc:ce:fc:f7:17:4f:08:3a: 2b:28:c4:77:68:f1:ee:e0:ce:fa:d2:74:9f:1f:70:36:2e:4e: f0:fa:56:96:ea:90:d0:81:bb:db:d7:1d:f1:a9:ba:15:a3:0f: 1f:6d:d8:c4:f8:e7:0a:65:98:2f:f5:cf:36:3c:f8:46:00:85: 59:35:a5:01:04:46:80:bc:53:75:e0:f9:23:ec:a6:3e:f4:b5: cc:ca:4e:40:96:70:03:77:0c:99:89:a0:15:a1:76:c8:25:0b: 4f:f0:c3:e7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUK6Wbs+Irt45z6Ut3NIq6wEeRvxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFDNkI1NTY3QURCNzY0NjIyMkExQjlGMUFBNzAzOEYw QzJENEI0QjAeFw0yNTA2MTUxMjIwNDJaFw0yNjA2MTQxMjI1NDJaMDMxMTAvBgNV BAMTKDlEMjBEMTA1QkRGNEM2MUYwRTJDMjNENzQ5RjkzREY0Mzg5MTQ5OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwt1b4sLZZn7BsOKNDFKvohXbg 8XLi/inaZYKxn1BxFXOXYcRyaSe+l1ENREH9R6VZ0PgaIFoAdUAlIXMXDUZaqikc RZFiJdMmidxvPUHmRJQLU/wR/HeNMow9XRnP4RW8zOY5Tjzqnhk6OEKPOTCCfsn9 pl0rpvcpEABloJOChwe+e5tlYr7oLmlJTiUkJHFOMLFVsdy/4uMTrYKL4bbGCEXi Cgpw2kBm4aRbooRhcYprweF95terN/s0aG34LCm4UckoviAAvFRbgPHrHZPY/GDy ZJytEIoZ8i/Am2yR4v3x9lUpdy3Ope33B90FNWoQqc2TqyPmsjos50cOBic1AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUnSDRBb30xh8OLCPXSfk99DiRSZ8wHwYDVR0j BBgwFoAUQca1VnrbdkYiKhufGqcDjwwtS0swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzEvNDFDNkI1NTY3QURCNzY0NjIyMkExQjlGMUFBNzAzOEYwQzJENEI0Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC80MUM2QjU1NjdBREI3NjQ2MjIyQTFCOUYx QUE3MDM4RjBDMkQ0QjRCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yMmNmOGJhNy1jYjAyLTQxOGItYmUwNC00ZDlmM2EwN2U5NTAvMS8zMjYxMzEz NDNhMzczNTM4MzUzYTNhMmYzMzM0MmQzNDM4MjAzZDNlMjAzMjMxMzQzNDM1MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQ MA4EAgACMAgDBgYqFHWFADANBgkqhkiG9w0BAQsFAAOCAQEAAmxmppFyg1IXFYN/ E3pNv65mOm+yduz7ocHskeno3oxOuufsBga2V72/vc8USG0fvLyN6m+p+bc7Abvq gZq5h+K/DrELSmn8gcMCd8+p+Gp8AvxaHCJKgjHPBK05jHCxYGLMauY0ka4NQAls yw76lb+LtHwK+GtcD4bKkbDYBkiAvXrMni2wYnSLpVdvmkn8vqSJn61eD7e729zO /PcXTwg6KyjEd2jx7uDO+tJ0nx9wNi5O8PpWluqQ0IG729cd8am6FaMPH23YxPjn CmWYL/XPNjz4RgCFWTWlAQRGgLxTdeD5I+ymPvS1zMpOQJZwA3cMmYmgFaF2yCUL T/DD5w== -----END CERTIFICATE-----Generated at Mon Jun 30 07:25:28 2025 by rpki-client