$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: hLe/TrmIP6kzrBHetdBf2bqTLSBZiaNnu0hk97FpfTU= Subject key identifier: 1C:3B:E9:E1:8F:04:55:2F:89:43:EA:82:7D:CA:B1:7B:81:16:97:15 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 4050CC2A564086C6036961CB80A83A884A1C5274 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:08 +0000 ROA not before: Fri 15 Aug 2025 05:58:08 +0000 ROA not after: Fri 14 Aug 2026 06:03:08 +0000 asID: 216324 IP address blocks: 2a14:7581:202::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:50:cc:2a:56:40:86:c6:03:69:61:cb:80:a8:3a:88:4a:1c:52:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:08 2025 GMT Not After : Aug 14 06:03:08 2026 GMT Subject: CN=1C3BE9E18F04552F8943EA827DCAB17B81169715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:63:56:26:e1:2b:df:18:66:f3:43:4e:90: c8:1c:5b:09:4e:bd:b6:34:d0:a0:0b:6e:59:5d:26: 83:e2:cd:8d:4f:36:67:26:56:f0:a8:39:f4:7a:93: ff:14:8e:69:f8:bb:99:14:5a:24:a7:7b:da:73:4d: 3a:d3:59:bb:22:0c:ff:76:56:c9:c5:a0:64:84:e3: ae:ff:3a:33:b6:5f:7e:0f:a8:71:8c:85:1f:7d:24: 81:dc:4e:8d:43:1c:2d:d6:6a:8f:84:f6:3a:d3:67: 26:16:59:0c:f1:f7:f8:34:9a:24:84:75:93:b7:1e: e9:3f:f3:5a:f9:8c:05:c5:bb:c1:b6:ba:3e:9f:61: 0b:07:7b:ee:4f:36:5f:03:e3:08:ec:10:e7:10:41: f6:8e:7a:d3:83:9b:38:19:39:74:c8:14:a7:3e:51: 0c:84:df:4f:0c:a8:a0:da:c5:e2:62:47:6e:a0:b2: 53:cb:5f:d5:d3:ab:7f:b9:e3:fc:16:b4:38:59:f2: 92:22:e8:0b:80:93:f7:02:a5:97:00:9c:d8:a6:42: 05:0a:73:fc:f3:d8:ed:c3:a5:af:21:76:17:90:d6: 14:52:e1:cf:11:7b:17:6a:68:cc:3a:bb:37:11:db: c8:4e:dc:5e:c6:09:7e:9f:e4:89:02:70:1c:4d:27: 39:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3B:E9:E1:8F:04:55:2F:89:43:EA:82:7D:CA:B1:7B:81:16:97:15 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:202::/48 Signature Algorithm: sha256WithRSAEncryption 7b:71:73:b5:b1:8d:3a:de:96:d8:ca:f0:80:21:fe:1f:45:3b: ab:07:d8:98:d8:52:f5:e0:97:97:11:77:db:f0:4b:ab:45:3f: fe:51:2d:8f:38:a9:f2:95:e9:59:e0:8d:80:e0:6c:5e:ac:94: 6b:6c:86:51:f2:a2:c9:e5:cd:07:5b:b8:95:ba:80:92:2e:12: d1:45:82:bd:04:e7:3f:b2:64:b9:3a:d6:c9:10:ef:9e:1f:c9: 27:55:04:29:c3:f4:a6:f9:2d:bf:7a:74:1d:e9:3d:2f:02:90: a9:2e:02:e6:dd:16:93:fa:79:e2:68:ba:8f:47:24:5a:05:f4: 9d:a4:3a:09:7a:ce:40:35:0d:ba:a0:d5:40:f0:ab:50:41:76: 7f:95:2e:1b:33:bf:83:60:84:99:5b:3e:16:bc:a8:ed:b5:c5: 1d:cd:01:01:e0:1b:9d:ee:22:58:fd:41:98:13:3e:9f:56:01: 7e:ec:b1:eb:de:41:77:c4:ed:04:77:f7:81:5b:f2:19:7e:50: 3a:95:f6:2a:0f:bd:ca:87:16:6a:9c:ff:93:dc:b4:d3:da:59: 52:26:8e:5d:49:1d:0e:38:e4:43:cd:27:44:37:19:e8:b5:cb: 40:b1:e0:a2:d8:cf:e5:b5:ea:5d:74:d5:5f:bb:2d:e0:3e:09: 17:c8:e7:fc -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUQFDMKlZAhsYDaWHLgKg6iEocUnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MDhaFw0yNjA4MTQwNjAzMDhaMDMxMTAvBgNV BAMTKDFDM0JFOUUxOEYwNDU1MkY4OTQzRUE4MjdEQ0FCMTdCODExNjk3MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyLWNWJuEr3xhm80NOkMgcWwlO vbY00KALblldJoPizY1PNmcmVvCoOfR6k/8Ujmn4u5kUWiSne9pzTTrTWbsiDP92 VsnFoGSE467/OjO2X34PqHGMhR99JIHcTo1DHC3Wao+E9jrTZyYWWQzx9/g0miSE dZO3Huk/81r5jAXFu8G2uj6fYQsHe+5PNl8D4wjsEOcQQfaOetODmzgZOXTIFKc+ UQyE308MqKDaxeJiR26gslPLX9XTq3+54/wWtDhZ8pIi6AuAk/cCpZcAnNimQgUK c/zz2O3Dpa8hdheQ1hRS4c8RexdqaMw6uzcR28hO3F7GCX6f5IkCcBxNJzlfAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUHDvp4Y8EVS+JQ+qCfcqxe4EWlxUwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECAjANBgkqhkiG9w0BAQsFAAOCAQEAe3Fz tbGNOt6W2MrwgCH+H0U7qwfYmNhS9eCXlxF32/BLq0U//lEtjzip8pXpWeCNgOBs XqyUa2yGUfKiyeXNB1u4lbqAki4S0UWCvQTnP7JkuTrWyRDvnh/JJ1UEKcP0pvkt v3p0Hek9LwKQqS4C5t0Wk/p54mi6j0ckWgX0naQ6CXrOQDUNuqDVQPCrUEF2f5Uu GzO/g2CEmVs+Fryo7bXFHc0BAeAbne4iWP1BmBM+n1YBfuyx695Bd8TtBHf3gVvy GX5QOpX2Kg+9yocWapz/k9y009pZUiaOXUkdDjjkQ80nRDcZ6LXLQLHgotjP5bXq XXTVX7st4D4JF8jn/A== -----END CERTIFICATE-----Generated at Sun Aug 24 03:49:03 2025 by rpki-client