$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa File: 326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa (raw, json) Hash identifier: WTHPZzisRdhMFsVY7FNSDBkHvxdDxaXeABaBJ5Y3ZZQ= Subject key identifier: 9F:27:23:46:9B:AA:1F:72:67:C9:EC:E5:D3:78:2C:19:35:E0:A3:E2 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 129F2DE13354DA49BC905D4089FA1D1A5234C53F Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 09:03:17 +0000 ROA not before: Fri 15 Aug 2025 08:58:17 +0000 ROA not after: Fri 14 Aug 2026 09:03:17 +0000 asID: 216324 IP address blocks: 2a14:7581:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:9f:2d:e1:33:54:da:49:bc:90:5d:40:89:fa:1d:1a:52:34:c5:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 08:58:17 2025 GMT Not After : Aug 14 09:03:17 2026 GMT Subject: CN=9F2723469BAA1F7267C9ECE5D3782C1935E0A3E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:d4:3e:01:44:cd:0c:6c:94:09:74:36:04: 21:b4:2d:49:73:6f:52:b8:3d:4d:13:ac:9c:21:3f: 49:28:68:dd:47:fb:54:3e:b2:a5:55:b9:0e:01:f2: 49:b4:3c:08:7a:2d:06:9e:3f:4b:5b:be:14:d8:d1: a1:3b:23:14:44:44:b1:af:03:10:43:f4:72:d3:42: 1f:d2:93:38:c8:45:c1:c4:d7:9d:2b:ab:ea:f3:6f: b8:3e:a2:e5:11:0a:76:81:89:ff:7f:ff:00:c5:35: 3f:82:50:09:92:60:bd:f3:b6:28:ac:81:1d:04:a8: 6f:8c:81:97:52:27:c7:16:09:35:95:53:cf:da:78: 93:79:fc:8c:f1:68:db:dc:d8:55:d5:1c:d6:8b:29: 00:b0:7c:03:fe:f3:cb:17:5c:f9:1d:52:b3:8e:17: 3c:e4:d0:76:8d:43:8b:ee:2b:e1:1a:d2:66:7c:58: cd:5a:f4:fb:b0:47:5b:d6:cb:d6:b3:fc:52:8b:7b: 14:e2:73:09:28:8f:8d:98:79:e1:31:89:41:e4:05: 82:c1:76:3e:ae:8b:e4:b4:c6:c4:80:02:27:91:a2: 79:01:da:ff:af:8a:8c:11:9f:68:46:00:59:35:dc: 2a:5c:9a:f5:b4:57:8c:14:b5:e4:00:67:7c:01:b3: 3c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:27:23:46:9B:AA:1F:72:67:C9:EC:E5:D3:78:2C:19:35:E0:A3:E2 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:200::/40 Signature Algorithm: sha256WithRSAEncryption 85:51:d3:f8:44:34:bd:59:db:3f:83:7c:d5:0a:d5:fb:b9:8b: cb:e4:4a:41:ba:0e:77:2c:33:95:22:13:38:6a:9a:a3:0a:d9: ce:60:77:3c:c1:df:01:99:c8:da:b5:6e:99:c1:cc:02:2b:ba: f5:b4:a6:a0:f1:7c:0a:e7:87:93:c5:1f:f2:e3:1a:65:94:c3: 1c:52:ee:ab:b2:82:56:bb:9e:67:38:e9:08:8a:ae:dc:06:73: f6:6c:82:f6:ec:4f:43:d6:f2:76:80:c7:c8:bc:0f:e1:c8:3b: ea:e6:5d:08:61:0f:c7:12:95:31:88:a8:f1:55:5f:76:ab:14: 16:02:bf:11:b5:3f:4d:02:c1:96:9b:21:53:d3:bc:28:dd:d9: 9d:b1:c8:aa:eb:f0:c9:39:e9:85:ec:f4:45:b5:91:bb:1f:ef: 5d:ca:5f:da:86:3f:ef:18:bd:73:8b:c2:bf:54:de:15:02:2e: ec:bb:af:39:47:f2:3b:48:6d:65:86:d6:eb:f5:1a:23:c2:d5: 9f:f0:86:2f:27:44:56:bb:7f:8a:7d:f6:d3:fe:ad:f8:2e:04: 4b:24:ef:0a:ab:95:39:57:12:27:be:0c:1e:dc:15:fd:03:ee: 5a:85:88:7b:f9:9c:78:6e:b8:ab:75:42:f2:d8:ad:6d:cd:34: 3f:99:56:86 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUEp8t4TNU2km8kF1AifodGlI0xT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwODU4MTdaFw0yNjA4MTQwOTAzMTdaMDMxMTAvBgNV BAMTKDlGMjcyMzQ2OUJBQTFGNzI2N0M5RUNFNUQzNzgyQzE5MzVFMEEzRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnqNQ+AUTNDGyUCXQ2BCG0LUlz b1K4PU0TrJwhP0koaN1H+1Q+sqVVuQ4B8km0PAh6LQaeP0tbvhTY0aE7IxRERLGv AxBD9HLTQh/SkzjIRcHE150rq+rzb7g+ouURCnaBif9//wDFNT+CUAmSYL3ztiis gR0EqG+MgZdSJ8cWCTWVU8/aeJN5/IzxaNvc2FXVHNaLKQCwfAP+88sXXPkdUrOO Fzzk0HaNQ4vuK+Ea0mZ8WM1a9PuwR1vWy9az/FKLexTicwkoj42YeeExiUHkBYLB dj6ui+S0xsSAAieRonkB2v+viowRn2hGAFk13CpcmvW0V4wUteQAZ3wBszxHAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUnycjRpuqH3Jnyezl03gsGTXgo+IwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYECMA0GCSqGSIb3DQEBCwUAA4IBAQCFUdP4 RDS9Wds/g3zVCtX7uYvL5EpBug53LDOVIhM4apqjCtnOYHc8wd8BmcjatW6ZwcwC K7r1tKag8XwK54eTxR/y4xpllMMcUu6rsoJWu55nOOkIiq7cBnP2bIL27E9D1vJ2 gMfIvA/hyDvq5l0IYQ/HEpUxiKjxVV92qxQWAr8RtT9NAsGWmyFT07wo3dmdsciq 6/DJOemF7PRFtZG7H+9dyl/ahj/vGL1zi8K/VN4VAi7su685R/I7SG1lhtbr9Roj wtWf8IYvJ0RWu3+KffbT/q34LgRLJO8Kq5U5VxInvgwe3BX9A+5ahYh7+Zx4brir dULy2K1tzTQ/mVaG -----END CERTIFICATE-----Generated at Sun Aug 24 03:50:44 2025 by rpki-client