$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: +Gu0hFKpsBJE6Nk0P3t6Myve+RW0iqZq35paeOwfFAE= Subject key identifier: 5F:21:0D:E7:A4:5F:94:9A:F7:BC:45:9C:5E:73:3B:61:3C:6F:A2:84 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3AB300B64FDB42AB52A48A4E1082CE6BF7CC1AC7 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:09 +0000 ROA not before: Fri 15 Aug 2025 05:58:09 +0000 ROA not after: Fri 14 Aug 2026 06:03:09 +0000 asID: 216324 IP address blocks: 2a14:7581:201::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b3:00:b6:4f:db:42:ab:52:a4:8a:4e:10:82:ce:6b:f7:cc:1a:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:09 2025 GMT Not After : Aug 14 06:03:09 2026 GMT Subject: CN=5F210DE7A45F949AF7BC459C5E733B613C6FA284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e1:13:3e:c8:d6:1e:3a:69:1b:05:da:e5:fa: 3b:0b:b0:33:e5:c8:e7:27:9e:e4:ab:d4:1e:1c:df: 10:71:f2:f3:1d:41:f7:b7:00:ad:12:ae:8c:4a:ff: b6:33:3c:a1:10:97:5c:fa:09:80:da:e5:ef:9c:14: 44:07:d4:8e:32:c2:5a:81:bd:b9:f6:08:f7:a8:9a: 62:bb:96:8e:50:7b:e2:19:0d:79:1f:01:c9:0f:e7: cd:b0:b0:d1:3f:20:89:95:2f:66:99:05:d1:bb:80: c6:d6:79:3a:23:8f:f9:44:1d:23:3d:62:17:b0:8b: a7:f5:b4:e8:c8:18:66:21:f6:ae:c3:eb:56:68:bb: 65:8f:15:f3:bc:5b:a8:7d:2a:33:6e:bf:9e:a1:20: d8:e4:a9:cc:ed:41:6e:d9:69:0d:d4:33:dd:ca:c8: 2b:03:a3:58:02:31:a8:57:bf:fa:6b:0a:34:0b:db: e5:12:10:91:cd:d2:a9:fc:ef:ce:ee:0a:b2:b4:e6: 38:f0:6b:6b:cc:36:39:33:e2:1f:39:6a:89:b7:f2: 07:b9:96:08:e5:eb:e3:84:56:3f:da:72:d5:b2:ad: 9a:80:1c:9f:2b:69:a9:e4:c6:5c:3a:e3:42:1b:38: 51:12:34:b5:6a:7f:5a:b3:bd:c4:91:df:c8:09:68: 67:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:21:0D:E7:A4:5F:94:9A:F7:BC:45:9C:5E:73:3B:61:3C:6F:A2:84 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:201::/48 Signature Algorithm: sha256WithRSAEncryption 93:46:ca:dc:52:15:24:84:7e:e0:18:43:95:84:27:af:13:cb: 44:aa:c3:b1:d7:76:be:25:8f:4d:7a:ff:b3:a3:c8:b1:cc:fb: bc:69:30:39:38:0b:27:d8:5d:34:27:c0:66:f8:4b:68:1b:48: db:d5:57:1e:33:9e:ea:cb:05:0a:a9:c2:93:0f:19:e1:86:b7: a6:3e:81:c5:46:32:2f:f0:56:08:75:a4:71:57:76:c6:dd:eb: b4:90:cc:99:55:cc:38:02:a7:ae:95:1d:63:d8:fd:24:3d:12: f0:92:6f:92:67:a3:b9:1a:6c:11:fb:db:db:54:6b:4e:7d:18: 0f:15:64:c9:3d:c5:41:53:6e:e5:21:ff:0a:ad:4e:62:75:a7: 8c:f4:2d:0a:fa:86:bc:d1:be:be:e3:c7:00:22:c2:50:13:4e: b4:d2:6e:63:20:60:4f:93:7c:a7:73:c0:be:9b:2a:e8:b6:ae: fa:50:59:90:29:a8:48:9f:06:84:67:de:47:8f:d9:9b:56:9f: b0:4f:fc:27:82:5d:d7:7b:d3:ba:fb:63:9d:ae:b4:88:16:7a: 23:cf:0f:86:73:ab:77:64:ae:8a:6b:12:7b:21:d2:94:91:66: 05:8b:d5:92:ea:ad:56:31:31:46:90:af:3b:27:38:04:72:b5: e0:05:03:a0 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUOrMAtk/bQqtSpIpOEILOa/fMGscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MDlaFw0yNjA4MTQwNjAzMDlaMDMxMTAvBgNV BAMTKDVGMjEwREU3QTQ1Rjk0OUFGN0JDNDU5QzVFNzMzQjYxM0M2RkEyODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN4RM+yNYeOmkbBdrl+jsLsDPl yOcnnuSr1B4c3xBx8vMdQfe3AK0SroxK/7YzPKEQl1z6CYDa5e+cFEQH1I4ywlqB vbn2CPeommK7lo5Qe+IZDXkfAckP582wsNE/IImVL2aZBdG7gMbWeTojj/lEHSM9 Yhewi6f1tOjIGGYh9q7D61Zou2WPFfO8W6h9KjNuv56hINjkqcztQW7ZaQ3UM93K yCsDo1gCMahXv/prCjQL2+USEJHN0qn8787uCrK05jjwa2vMNjkz4h85aom38ge5 lgjl6+OEVj/actWyrZqAHJ8raankxlw640IbOFESNLVqf1qzvcSR38gJaGfVAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUXyEN56RflJr3vEWcXnM7YTxvooQwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECATANBgkqhkiG9w0BAQsFAAOCAQEAk0bK 3FIVJIR+4BhDlYQnrxPLRKrDsdd2viWPTXr/s6PIscz7vGkwOTgLJ9hdNCfAZvhL aBtI29VXHjOe6ssFCqnCkw8Z4Ya3pj6BxUYyL/BWCHWkcVd2xt3rtJDMmVXMOAKn rpUdY9j9JD0S8JJvkmejuRpsEfvb21RrTn0YDxVkyT3FQVNu5SH/Cq1OYnWnjPQt CvqGvNG+vuPHACLCUBNOtNJuYyBgT5N8p3PAvpsq6Lau+lBZkCmoSJ8GhGfeR4/Z m1afsE/8J4Jd13vTuvtjna60iBZ6I88PhnOrd2SuimsSeyHSlJFmBYvVkuqtVjEx RpCvOyc4BHK14AUDoA== -----END CERTIFICATE-----Generated at Sun Aug 24 03:46:47 2025 by rpki-client